this post was submitted on 20 Dec 2023
16 points (100.0% liked)

Buttcoin

399 readers
3 users here now

Buttcoin is the future of online butts. Buttcoin is a peer-to-peer butt. Peer-to-peer means that no central authority issues new butts or tracks butts.

A community for hurling ordure at cryptocurrency/blockchain dweebs of all sorts. We are only here for debate as long as it amuses us. Meme stocks are also on topic.

founded 11 months ago
MODERATORS
[email protected]
16
How all the TOP TIER apes were stolen: 1. get ape enthusiast to install your NFTTrader app. 2. lol. (threadreaderapp.com)
submitted 11 months ago by [email protected] to c/[email protected]
15 comments fedilink hide all child comments
top 15 comments
sorted by: hot top controversial new old
[–] [email protected] 13 points 11 months ago (4 children)

(TLDR; combination of reentrancy + old approvals that were never removed)

smart contracts are a genius-level invention! with the exact same security and threading model as a 90s PHP site, where every built-in function you can call has a laundry list of potential security issues, and fastening a new language and type system to the same broken API appears to provably be doing nothing to the combinatorial explosion of possible security issues

because none of this was ever about computer science; it was all always just affinity fraud targeted towards mediocre nerds

[–] [email protected] 9 points 11 months ago

The best part is that because of blockchain immutability fixing a buggy contract is simply not a thing, you need to deploy a new one, as well as replace any other contracts that refer to the original since they are now compromised as well, all the while paying for gas fees out the ass.

And also as far as I can tell you can't actually stop your users/exploiters from using the broken contract, you can only try to politely tell them not to.

[–] [email protected] 8 points 11 months ago (3 children)

all implemented as fucking database triggers, a thing you only know what it is from poor life choices

[–] [email protected] 7 points 11 months ago

Triggers, the exact thing you want more of when already working with footguns.

[–] [email protected] 4 points 11 months ago

Is that? Googles Oh

[–] [email protected] 4 points 11 months ago (1 children)

also urgent client calls because the database they rely on for literally every part of their business is slow and unreliable “for no reason” and you pop open the database and see the sheer volume of PL/SQL and immediately double your hourly rate

it’s worth noting that SQL as a language is basically an embedded COBOL data definition DSL. somehow it’s always arbitrary COBOL with financial programmers

[–] [email protected] 4 points 11 months ago (1 children)

i learned PL/SQL thirty years ago. thankfully i have forgotten every trace.

[–] [email protected] 5 points 11 months ago (1 children)

the last thing I did in college was learn COBOL as a joke, and I’ve been hiding it from my employers ever since

[–] [email protected] 4 points 11 months ago

I learnt COBOL in the same august institution I learnt PL/SQL

given y2k pay rates i almost wish i'd kept it up a bit longer

[–] [email protected] 5 points 11 months ago (1 children)

I'm glad I've never been a good enough programmer to believe I was a genius programmer.

[–] [email protected] 6 points 11 months ago

destroy imposter syndrome by realizing that there is no original

[–] [email protected] 3 points 11 months ago

But code is law. /s

[–] [email protected] 12 points 11 months ago

Someone needs to add a community note that the hack did not in fact result in "millions of dollars worth of NFTs stolen". It resulted in zero dollars worth of NFTs being legitimately transferred to another holder as specified in the smart contract approved by parties involved.

[–] [email protected] 10 points 11 months ago (1 children)

Code is law.

[–] [email protected] 7 points 11 months ago

code is lol