⚡
Lightning Node Management
🇺🇸 English
🇺🇸 English
  • Contents
  • Lightning basics
  • Create inbound liquidity
  • Create outbound liquidity
  • Comparison table of software implementations
  • Comparison table of lightning channel markets
  • Node Types
    • Merchant
    • Spending
    • Routing
  • Advanced Tools
    • lnd.conf example
    • Advanced and automated fee settings
    • Set up an LND watchtower and connect a client
    • Methods to create a balanced channel with a trusted peer
    • Pool usage notes
    • Bos Score
  • Technicals
    • Connecting to a lightning node remotely
    • High onchain fee environment
    • Compact the LND database (channel.db)
    • Manage the LND onchain funds in Electrum Wallet
  • Recovery
    • Resources for LND
    • Resources for Core Lightning
  • Privacy
    • Resources on Lightning privacy
    • VPN tunnels
  • Hardware deployment
    • Hardware recommendations
    • RaspiBolt
    • RaspiBlitz
      • charge-lnd
      • Balance of Satoshis Telegram Bot
      • LND updates
      • Bitcoin Core updates
      • VPN and firewall setup
    • TrueNAS (FreeBSD) node
      • aliases
      • Balance of Satoshis
      • Lightning Terminal
      • Circuitbreaker
      • LNtop
      • LND notes
      • stream-lnd-htlcs
      • Suez
      • Tailscale
      • Connect Zeus
  • Donate
    • Donations
Powered by GitBook
On this page
  • Receiver privacy with LNproxy
  • Unannounced channels - shadow liquidity
  • Open channels with improved privacy
  • Manual
  • Mutiny wallet
  • LN-vortex
  • Nolooking
  • LN wallets
  • Mobile wallets (LN node on the phone)
  • Custodial wallets
  • LN compatible chaumian (blinded) mints
  • LN protocol improvements
  • Attacks
  • Channel jamming
  • LNsploit
  • Probing
  • Reading list
  • Onion routing
  • Listening and videos

Was this helpful?

Edit on GitHub
  1. Privacy

Resources on Lightning privacy

PreviousResources for Core LightningNextVPN tunnels

Last updated 1 year ago

Was this helpful?

Receiver privacy with

  • lnproxy takes a bolt 11 invoice and generates a “wrapped” invoice that can be settled if and only if the original invoice is settled. The “wrapped” invoice has the same payment hash, expiry, and description, as the invoice it wraps but adds a small routing fee to the amount. The “wrapped” invoice can be used anywhere the original invoice would be used to trustlessly hide the destination of a payment.

  • use the in your .bashrc (available in the Raspiblitz v1.9.0 and above with a CLI shortcut as well):

    function lnproxy() {
  echo
  echo "Requesting a wrapped invoice from http://rdq6tvulanl7aqtupmoboyk2z3suzkdwurejwyjyjf4itr3zhxrm2lad.onion ..."
  echo
  torify curl http://rdq6tvulanl7aqtupmoboyk2z3suzkdwurejwyjyjf4itr3zhxrm2lad.onion/api/${1}
}

  • Code and how to run yourself:

  • Improved alias verifying the payment hash:

Unannounced channels - shadow liquidity

  • use parallel private channels to hide capacity and UTXOs

  • To hide public channel balances, a node may open unannounced channels in parallel to announced ones. Depending on the relation between the balances of announced and unannounced channels, the attacker may still be able to discover unannounced channel balances (e.g., if the balance of the unannounced channel exceeds the balances of announced channels). Even in that case, the standard probing technique needs to be modified

Open channels with improved privacy

Manual

  • create channels from coinjoin outputs

    • private channels are not announced, use them especially if there is a public channel to the peer already

    • open one channel at a time

    • create no change

    • avoid round amounts

  • close cooperatively to an external address (eg a Joinmarket wallet running as a Maker))

  • syntax for LND with Balance of Satoshis:

    bos open PUBKEY --amount SATS --coop-close-address EXTERNAL_ADDRESS --type private --external-funding

Mutiny wallet

  • LDK / Sensei based

  • a new node for every channel open

  • fund channels with an external wallet and no change

LN-vortex

Nolooking

  • Payjoin to channels. The receiver of a paymant can open channels in a payjoin.

LN wallets

Mobile wallets (LN node on the phone)

Tor support and private chain info

  • OBW - Tor + Electrum server support

    • optional custodial hosted channels support - payments are private from the provider

  • Breez - Tor and neutrino backend

  • Blixt - Neutrino block source

Custodial wallets

Traditional custodians provide no privacy from the maintainer.

  • Wallet of Satoshi

  • Bitcoin Beach Wallet (phone number required)

  • CoinOS (Liquid compatible LN <-> Liquid gateway)

LN compatible chaumian (blinded) mints

  • Fedimint with LN gateways - WIP

LN protocol improvements

Attacks

Channel jamming

LNsploit

Probing

Reading list

  • Make Lightning Payments Private Again (PLN)

Onion routing

  • BOLT #4: Onion Routing Protocol https://github.com/lightning/bolts/blob/master/04-onion-routing.md https://github.com/ellemouton/onion/blob/master/docs/onionRouting.pdf

  • Route Blinding proposal https://github.com/lightning/bolts/blob/route-blinding/proposals/route-blinding.md https://github.com/ellemouton/onion/blob/master/docs/routeBlinding.pdf

  • CLI tool for constructing & peeling onions both with and without route blinding. https://github.com/ellemouton/onion

Listening and videos

Creating a Core Lightning channel funded by JoinMarket:

Coinjoin to channels:

First mainnet transaction:

Cashu in browser - , LNbits extension

Alias SCIDs

Route blinding:

Trampoline routing:

PTLCs

A Lightning Network exploit toolkit:

- uses LDK to probe the lightning network to detect private channels

More details and conversation:

Lightning privacy: from Zero to Hero

Mastering the Lightning Network chapter:

Current State of Lightning Network Privacy in 2021 - Tony

BOLT12 proposal

Privacy on Lightning - Bastien Teinturier - Day 2 DEV Track - AB21

Lightning Privacy - Ficsor, Teinturier, Openoms - Day 2 DEV 2pXyaypeMThT5tM3MUWcgN

RecklessVR Cryptoanarchy weekend / HCPP20 : how and why to use bitcoin privately Slides:

LNproxy
API
https://github.com/lnproxy
https://github.com/lnproxy/lnproxy-cli
https://eprint.iacr.org/2021/384.pdf
https://gist.github.com/BitcoinWukong/0c04d9186251b0a6497fef3737e95ceb
https://github.com/BitcoinDevShop/pln
https://mutinywallet.com/
https://github.com/ln-vortex/ln-vortex
https://twitter.com/benthecarman/status/1590886577940889600
https://github.com/chaincase-app/nolooking
https://chaincase.app/words/lightning-payjoin
https://cashu.space
https://github.com/lightning/bolts/pull/910
https://github.com/lightning/bolts/pull/765
https://github.com/lightning/bolts/pull/836
https://lists.linuxfoundation.org/pipermail/lightning-dev/2021-October/003278.html
https://jamming-dev.github.io/book
https://twitter.com/ffstls/status/1559902528808140804
https://www.nakamoto.codes/BitcoinDevShop/LNsploit
hiddenlightningnetwork.com
https://lists.linuxfoundation.org/pipermail/lightning-dev/2022-June/003599.html
CD69: decentralized identifiers (DIDs), “web5,” and lightning privacy with tony
https://github.com/t-bast/lightning-docs/blob/master/lightning-privacy.md
https://github.com/lnbook/lnbook/blob/develop/16_security_privacy_ln.asciidoc
https://abytesjourney.com/lightning-privacy
https://bolt12.org
https://bc1984.com/make-lightning-payments-private-again/
https://bitcoinmagazine.com/technical/pln-makes-bitcoin-lightning-more-private
https://bitcointv.com/w/2pXyaypeMThT5tM3MUWcgN
https://bitcointv.com/w/xsj5AEx36Usqts8GuNw9b3
Citadel Dispatch e0.2.1 - the lightning network and bitcoin privacy with @openoms and @cycryptr
https://www.youtube.com/watch?v=NUlUQlgtWlM
https://keybase.pub/oms/slides/Running_a_Lightning_Node_Privately.pdf
SLP391 BEN CARMAN – BITCOIN PRIVACY, SURVEILLANCE, LN VORTEX, P2P & AUSTIN BITDEVS
CD70: using lightning privately with tony and @futurepaul