He didn't have to protest, he did that because he's a bleeding heart liberal. If I was running this forum and received a subpoena I'd roll you over in the clover every single time. Mainly because I don't have a reason to make your criminal behavior become my legal battle.
/thread |
|
|
|
multiple SQL injection vulnerabilities.
this is not anywhere close to professional.
But it is open-source now, so these vulnerabilities will be easy to find and fix. Yeah, but it still won't scale and its still succeptible to other vulnerabilities. |
|
|
|
Name change to Dildo Gaggins
fixt |
|
|
|
I dont see the problem here. Id rather ask why your other posts that are very similar are still up (see list below). Its certainly fine to thank someone for their help, but it shouldnt be all you do. I removed what you quoted and only checked the first page of your posts. 5 out of 20 posts are pretty much "+1" posts. haha, that's awesome, well done
-snip-
lolz
-snip-
Interesting. I still don't see support for alts there, but thanks for sharing.
-snip-
Agree and congrats to Robb!
-snip-
Awesome news, guys. Congrats. Looking forward to continued progress with your coin!
She's a cryptsy employee, just keeping up appearances |
|
|
|
If I can say my personal opinion (I hope the Us government is reading this thread !): that simple theymos is almost 'obliged' to satisfy their orders or he can risky the jail -/- fight it in court (he probably choose to send all the data, instead fight them). Someone of you have never sent a pm to BFL? I hope you have not (never) sent a sensitive message to them. It would be interesting to know if it's true and how it happened. I feel if it did happen there is a story to follow. But if they are using it to go after BFL, it's not really a bad thing. It might help some of the people that bfl scammed. Just out of curiosity I will it had a full list of who's information was given. I agree with the fact that it was a good call to comply and give up the PM's because it was helping the government with scammers like BFL, but I bet it doesn't stop there and it should scare some users knowing that their PM's aren't safe. By what is written in the article it seems it was BFL requesting the information, they might be going after some employees for disclosing information while under a NDA. i see someone wore their thinking cap today. |
|
|
|
|
Yeah, well you probably need to study for about 3 years before you try to do anything related to bitcoin. Take it from someone who learned the hard way
|
|
|
|
someone remind me again what the birth rate is for suckers?  |
|
|
|
lol, the neg should be removed, did VOD go in the future and predict what will happen? here is what VOD said
"Selling stolen MSDN Admin invites. They will stop working in the future. "
and did he know for sure that the accounts were stolen?
He works at Microsoft, so its possible he would have access to tools to determine the viability of the invites. |
|
|
|
Here's what i know about bcp19
I said something about BFL being a scam. then i got some pretty new red paint on my trust profile
Dude, take a look at Blazr's stats history by activity. Guess what shows up? Nah, I'll tell you: Korean. Who also knows Korean, is in love with himself and BFL and held a bullshit contest? Josh Zerlan. Now where is my cookie?  I'm not into lying, so i'll be honest and say that Blazr's feedback on my profile is atleast partially earned through past transgressions by myself. In the context of this discussion, i'd say that Blazr's feedback had nothing to do with BFL, and more to do with me not being able to let a sleeping dog lie. |
|
|
|
Probably because that account hasn't had activity since 2013, but who can really say for certain. |
|
|
|
|
multiple SQL injection vulnerabilities.
this is not anywhere close to professional.
|
|
|
|
I wonder when they will be requesting info on bcp19's alts. He's posted under: Pokokohua! badgerkiller bcpokey DaBitcoinGuy Maybe a couple others I can't remember, but the guy just totally lost his mind (probably because of the subpoena) and revealed his latest alt account. Meh, par for the course when BFL is involved. Here's what i know about bcp19 I said something about BFL being a scam. then i got some pretty new red paint on my trust profile |
|
|
|
It is open source.
publicly viewable? |
|
|
|
Kind of scary how they asked for all PM's mentioning BFL. I recall a while ago theymos discussed the idea of adding javascript PM encryption as a way to protect the forum from unreasonable searches and seizures. It isn't the best way to do it, as of course theymos could modify the javascript at anytime (he could even potentially be compelled to do so by law), but modifying the javascript is detectable, and messages that were sent and viewed with the unmodified javascript are still safe. It adds an extra layer of security, which should be sufficient for most PM's. It would also be very useful should BitcoinTalk's database ever get compromised... again. Anyone who has something really secret to tell should use something like PGP instead of this however.
I think we should consider adding this to the new forum software.
The new forum software should be an open source project. i'm sure there are hundreds of good web dev's here who would be thrilled to participate.(If going the way you suggest). |
|
|
|
|
Bitcoin changed my life. i was going nowhere fast.
|
|
|
|
And you lost me  __call() allows you to catch calls to a non existing class method and reroute them, perhaps to a parent method or child property method so if you called a non existent function from inside of __call() you would be calling the function recursively until the memory is exhausted (stack overflow) Commonly, it would be used for uniting multiple objects under a common interface, to prevent scoping problems in a large project, but still separating concerns of each class/library. Here's an example:
namespace App;
class App
{
private $slim; // slim is only accessible from \App\App
function __construct( $slim )
{
$this->slim = $slim;
}
// hmm, now i want to call a slim function but have no way to do so because slim is private
// __call() to the rescue!
public function __call($name, $args = false)
{
if(method_exists($this->slim,$name)){
if($args)
return call_user_func_array( [$this->slim,$name] , $args);
else
return call_user_func( [$this->slim,$name] );
}
// if we made it here, no method exists. lets call our logger function
$this->loggerr(); // notice the typo. infinite recursion results because you are recursively calling __call()
}
public function logger()
{
// something bad happened
throw new \exception('potato');
}
}
|
|
|
|
I suppose its not terrible for functional programming. I've certainly made similar mistakes.
Functional programming? The code shown above is clearly procedural programming and not spotting such a potentially obvious divide by zero error is "rookie" at best. I got the terminology mixed up, but yeah, it is a rookie mistake. like calling an non existing function inside of __call() |
|
|
|
|
I suppose its not terrible for functional programming. I've certainly made similar mistakes.
|
|
|
|
it is possible it was someone who knew TF in RL and knew that he was involved in those projects and was able to use social engineering to get the personal information that he had used on the accounts. Fake personal information is often not the actual identity of the person but the name/details often have some connection to the person. That... or he's just lying. To make things worse inputs.io was not the last website TF launched that lost all it's users funds, there was also hashie.co which was also hacked just a few months ago, though I suspect that hack was real but TF admits himself the hacker didn't take all of the BTC but claims he's entitled to the rest of the funds because he invested so much time into building the website. I am personally leaning towards him lying about the sites being hacked. If you ignore all the issues about his story how he got hacked there is still the issue that he had way too much money stored in the hot wallet and IIRC he was hacked right around the time that TF had increased the size of the hot wallet in order to prevent people from having to wait for withdrawing Plus he didn't learn from his mistake and did it again with hashie.co - he had too much in the hot wallet. His code introduced an exploit and he put too much in the hot wallet, extremely negligent on his part even if he was really hacked. It would be great if we could get a sample of his code to go over.. just a thought |
|
|
|
|
Show Posts
