Comment on page
Ordisrespector spam filter
Ordinals is a project created to number sats. It also has a feature called inscriptions, which is the problematic part and what is mainly being touched on in this guide. An inscription is basically data stored onchain associated with a sat.
Difficulty: Medium
Why are they an attack on Bitcoin?
First of all, we probably should look at what Bitcoin is:
There is no mention of data storage on the chain and only financial transactions. Ordinals abuse the Bitcoin timechain which was meant to process financial transactions to store data, and this has some issues, such as:
- Pushing out financial transactions, such as ones that need immediate confirmation such as force closes with pending HTLCs or a sweep-all TX.
- Driving up fee rates for the sole reason of inscribing a JPEG.
- It makes it way more expensive to maintain their node in the long term.
- It makes them liable for any illegal content in their jurisdiction that they store on their disk and broadcast freely.
...while paying 4x less for the same bytes.
Ordisrespector is a spam patch filter that works by detecting the pattern of Ordinals transactions that are entering the mempool of the node and rejecting them. The original patch was created by Luke Dashjr, you can see it here. Archive
You enter commands and the PC answers by printing the results below your command. To clarify where a command begins, every command in this guide starts with the
"$" sign. The system response is marked with the ">" character.- Login as
adminuser (for a MiniBolt environment), or your assigned user withsudopermissions - Update and upgrade your OS
$ sudo apt update && sudo apt full-upgrade
- Install the next dependencies packages
$ sudo apt install autoconf automake build-essential libboost-filesystem-dev libboost-system-dev libboost-thread-dev libevent-dev libsqlite3-dev libtool pkg-config libzmq3-dev --no-install-recommends
- Change to the temporary directory which is cleared on reboot
$ cd /tmp
- Set the next environment variable
$ VERSION=25.1
- Get the latest source code, the list of cryptographic checksums, and the signatures attesting to the validity of the checksums
$ wget https://bitcoincore.org/bin/bitcoin-core-$VERSION/bitcoin-$VERSION.tar.gz
$ wget https://bitcoincore.org/bin/bitcoin-core-$VERSION/SHA256SUMS
$ wget https://bitcoincore.org/bin/bitcoin-core-$VERSION/SHA256SUMS.asc
If you already had Bitcoin Core installed and OTS client with the IBD completed, you could do the timestamp check verification
- Download the timestamp file
$ wget https://bitcoincore.org/bin/bitcoin-core-$VERSION/SHA256SUMS.ots
- Execute the OTS verification command (skip this step if you stay building a new node)
$ ots --no-cache verify SHA256SUMS.ots -f SHA256SUMS
The following output is just an example of one of the versions:
> Got 1 attestation(s) from https://btc.calendar.catallaxy.com
> Got 1 attestation(s) from https://finney.calendar.eternitywall.com
> Got 1 attestation(s) from https://bob.btc.calendar.opentimestamps.org
> Got 1 attestation(s) from https://alice.btc.calendar.opentimestamps.org
> Success! Bitcoin block 766964 attests existence as of 2022-12-11 UTC
Now, just check that the timestamp date is close to the release date of the version you're installing
- Check that the reference checksum in the file
SHA256SUMSmatches the checksum calculated by you (ignore the "lines are improperly formatted" warning)
$ sha256sum --ignore-missing --check SHA256SUMS
Expected output:
> bitcoin-$VERSION.tar.gz: OK
Bitcoin releases are signed by several individuals, each using its own key. To verify the validity of these signatures, you must first import the corresponding public keys into your GPG key database.
- The next command downloads and imports automatically all signatures from the Bitcoin Core release attestations (Guix) repository
$ curl -s "https://api.github.com/repositories/355107265/contents/builder-keys" | grep download_url | grep -oE "https://[a-zA-Z0-9./-]+" | while read url; do curl -s "$url" | gpg --import; done
Expected output:
> gpg: key 17565732E08E5E41: 29 signatures not checked due to missing keys
> gpg: /home/admin/.gnupg/trustdb.gpg: trustdb created
> gpg: key 17565732E08E5E41: public key "Andrew Chow <[email protected]>" imported
> gpg: Total number processed: 1
> gpg: imported: 1
> gpg: no ultimately trusted keys found
[...]
- Verify that the checksums file is cryptographically signed by the release signing keys. The following command prints signature checks for each of the public keys that signed the checksums
$ gpg --verify SHA256SUMS.asc
- Check that at least a few signatures show the following text
Expected output:
> gpg: Good signature from ...
> Primary key fingerprint: ...
[...]
- If you're satisfied with the checksum, signature, and timestamp checks, extract the Bitcoin Core source code, install them, and check the version
$ tar -xvf bitcoin-$VERSION.tar.gz
- Build BerkeleyDB 4.8 to allow for legacy wallets, necessary to use JoinMarket, Electrum Personal Server, and possibly other tools
$ wget -O bdb.sh https://raw.githubusercontent.com/bitcoin/bitcoin/aef8b4f43b0c4300aa6cf2c5cf5c19f55e73499c/contrib/install_db4.sh
$ chmod +x bdb.sh
$ ./bdb.sh bitcoin-$VERSION
- Enter the Bitcoin Core source code folder
$ cd bitcoin-$VERSION
- Execute the next command
$ ./autogen.sh
- The next command will pre-configure the installation, we will discard some features and include others. Enter the complete next command in the terminal and press enter
export BDB_PREFIX="/tmp/bitcoin-$VERSION/db4"
./configure \
BDB_LIBS="-L${BDB_PREFIX}/lib -ldb_cxx-4.8" BDB_CFLAGS="-I${BDB_PREFIX}/include" \
--disable-bench \
--disable-gui-tests \
--disable-maintainer-mode \
--disable-man \
--disable-tests \
--with-daemon=yes \
--with-gui=no \
--with-qrencode=no \
--with-utils=yes
Skip this step if you want only to build Bitcoin Core from the source code but not apply the Ordisrespector patch
- Download the Ordisrespector patch
$ wget https://raw.githubusercontent.com/minibolt-guide/minibolt/main/resources/ordisrespector.patch
- (Optional) Inspect
ordisrespector.patchfile to make sure it does not do bad things. If you see all OK, exit with Ctrl-X and continue with the next command
$ nano ordisrespector.patch
- Apply the patch
$ git apply ordisrespector.patch
- Enter the command to compile
$ make -j$(nproc)
This process can take quite a long time, 10-15 minutes or more, depending on the performance of your device. Please be patient until the prompt shows again
- Enter the next command to install the new binaries precompiled for yourself on the OS
$ sudo make install
- Check the correct installation requesting the output of the version
$ bitcoind --version
The following output is just an example of one of the versions:
> Bitcoin Core version v24.1.0
> Copyright (C) 2009-2022 The Bitcoin Core developers
> [...]
Now you can continue with the installation progress of the Bitcoin Client following the Create the bitcoin user section or if you already had it installed, only continue with the next steps
- Return to the
tmpfolder
$ cd ..
- Clean the installation files to be ready for the next update
$ sudo rm -r bitcoin-$VERSION && rm bdb.sh && rm bitcoin-$VERSION.tar.gz && rm db-4.8.30.NC.tar.gz & rm SHA256SUMS && rm SHA256SUMS.asc && rm SHA256SUMS.ots
- Restart your existing Bitcoin Core using the systemd or start a new instance with the Ordisrespector patch change
$ sudo systemctl restart bitcoind
- Monitor by the systemd journal and check the logging output. You can exit monitoring at any time with Ctrl+C and continue
$ journalctl -f -u bitcoind
After starting Bitcoin Core, wait a few minutes for Bitcoin Core to load the mempool, the indicator for this is the log: "Imported mempool transactions from disk: ...". It is possible that a rather high indicator of "failed" imported transactions has appeared, which is a good sign, it's the filter is taking effect and rejecting Ordinals transactions
- Put the pointer above the cube's dynamic graphic at the bottom right, and find transactions with for example 0.00010000 BTC, 0.00005000 BTC, 0.00000546 BTC, 0.00000330 BTC, 0.000005386 BTC... output amount, or similar recurrency amount and click on the cube of the transaction to do a second verification
- Look for "Taproot", "Segwit", "RBF" and "CPFP" tags (this last doesn't appear always)
- Click on the "copy to the clipboard" icon to copy the transaction id
(<txid>), and paste this on your own Bitcoin Explorer (BTC RPC Explorer / Mempool), in a BTC RPC Explorer running on a MiniBolt environment, go to https://minibolt.local:4000 - Search the
"<txid>"on the browser of your own Bitcoin Explorer
Mempool space expected output:
BTC RPC Explorer expected output:
Or if you prefer, check directly through the Bitcoin Core CLI command, doing
$ bitcoin-cli getmempoolentry <txid>
Expected output:
error code: -5
error message:
Transaction not in mempool
The before information indicates that the filter is working properly
Add "Bitcoin Barcelona node" as a peer in your node, or Ordisrespector runners community peers that shared their public addresses, in this way, it is easier to invade the network with Ordisrespector node runners.
- Edit and add on
"bitcoin.conf"file the next line/s at the end of the file
$ sudo nano /data/bitcoin/bitcoin.conf
If you have enabled the Tor network
addnode=.....2pk5umz5vieqwcp3ead.onion:8333
If you have enabled the I2P network, add this line as well
addnode=.....3q5hw6625xyqekprljz6uasa.b32.i2p:0
Last modified 16d ago