San Diego County area code FWIW
|
|
|
You wanted proof of the password change at first
Well you said you wanted the IP proof, and thats exactly what I requested and got for you.
Twipple, it appears you will never STOP forcing me to repeat myself, never STOP ignoring what I actually said and never STOP engaging in revisionist history, so I'm done with your endless BS. /unwatch Ok, then the only PM I'm interested in at this point is from a mod/staff member who can show a preponderance of the evidence (logs, hostnames, etc) one way or the other. Don't PM me again Twipple, unless a mod/staff has told you they PMed me that first.
With only a log of these ridiculous password changes being inconclusive, the preponderance has not been reached. the preponderance has not been reached.
|
|
|
If anyone wants to change their IP address exposed in the hack, the method I just used was to edit the MAC ID that my modem sees, and rebooted everything. A new WAN IP was issued. Check https://whatismyip.com before and after this procedure. Even if you have a dynamically-assigned IP, you will likely get the same one again, if all you do is reboot without changing your MAC ID.
|
|
|
Well sir if you have any questions to Ume you can ask me .. i forgot the password lol ![Angry](https://bitcointalk.org/Smileys/default/angry.gif) also , if twipple ask for refund i can refund even more. but with negative feed i cant sorry. Negative feedback is irrelevant. Someone burned Twipple by begging from it the same day that it was sold (or "sold"). Twipple should be nuked/permabanned. *Because whoever did the begging on the Twipple account lit a time-delay fuse to detonate a bomb after the "account sale", which cannot be proven actually occurred, by a preponderance of evidence.
|
|
|
I thought in the shower, maybe it would be best if Ume refunded whoever bought Twipple, Twipple got nuked/permabanned*, and whoever's posting on Twipple now simply used one of their other accounts from now on.
This would. But if you look at it the other way, the trust that you and Quickseller added was in March, and the account was sold at January end, and is now a Snr Member. But Still yeah a refund would be fine. But would be better if you can sort it out, that I am willing to provide you all proof . Twipple is a Full Member as of now, NOT Senior. I don't foresee Quickseller removing his trust, so Twipple will remain screwed on trust no matter what. And I really FUCKING HATE HAVING TO REPEAT MYSELF: I could have sworn my initial negative on Twipple (which might have showed under untrusted feedback) was on Jan 31 2015, the day I got the begging PM, and I deleted/replaced it later to shorten my Dropbox URL. Is there a ratings log that shows removals?
|
|
|
However you could possibly explain the method of private key loss, ALL parties deny ANY fault.
The buck stops with the code that DOES NOT preserve all private keys no matter what. Who published the code? Blockchain.info
Like I said, you should only use small amounts with any web wallet and you should take precautions to ensure that you have personal control of a backup prior to using a new address. "small" is a subjective term. ![](https://ip.bitcointalk.org/?u=https%3A%2F%2Fthabto.files.wordpress.com%2F2014%2F04%2Fi-do-not-think-it-means-what-you-think.jpg&t=663&c=nd1NXNNT9NA9lg) I think it means: "a fraction of BTC that would cost more in fees than the entire amount of BTC in the wallet, to meet the minimum fee rule to be relayed let alone included in a block". I don't commit economic suicide, "small", "medium", or "large". I would further define ' small' as an amount equal to or less then what you would expect to spend on things like a coffee, lunch at work and dinner for two (what you would spend in one day) and be an amount that you would not fret over if an equal amount of cash were to fall out of your pocket, ect.. (it must meet both criteria), in other words be roughly equal to or less then an amount of cash you would expect to carry around with you. Obviously if you lost an amount via a web wallet one day, you should not replenish your funds the next day without first determining what happened and then taking steps to prevent that from happening again in the future. OK, Mister High Roller... I carry no irreversible currency on a daily basis. If my credit card (which I pay in full every month) gets stolen or miraculously leaves my secure control, it's reversible, so I don't fret over it. BTC and cash isn't, so I rarely put it in a place where I need to fret over it - and when I do, whoever tries to take it will be suicidal. What you described is a "medium" amount of cash for me. AFAIK, there is no final determination what happened with blockchain.info, nor have any steps been taken to prevent it from happening again in the future, nor any indication they will ever be taken (other than my not using Gli.ph Marketplace until they allow users to keep all their BTC in non-web wallets, and only using bc.i as a watch-only wallet).
|
|
|
What percentage of those homicides were justified in self-defense, committed by those only "guilty" of the totalitarian-defined "crime" of possessing a self-defense tool?
|
|
|
However you could possibly explain the method of private key loss, ALL parties deny ANY fault.
The buck stops with the code that DOES NOT preserve all private keys no matter what. Who published the code? Blockchain.info
Like I said, you should only use small amounts with any web wallet and you should take precautions to ensure that you have personal control of a backup prior to using a new address. "small" is a subjective term. ![](https://ip.bitcointalk.org/?u=https%3A%2F%2Fthabto.files.wordpress.com%2F2014%2F04%2Fi-do-not-think-it-means-what-you-think.jpg&t=663&c=nd1NXNNT9NA9lg) I think it means: "a fraction of BTC that would cost more in fees than the entire amount of BTC in the wallet, to meet the minimum fee rule to be relayed let alone included in a block". I don't commit economic suicide, "small", "medium", or "large".
|
|
|
However you could possibly explain the method of private key loss, ALL parties deny ANY fault.
The buck stops with the code that DOES NOT preserve all private keys no matter what. Who published the code? Blockchain.info
|
|
|
I thought in the shower, maybe it would be best if Ume refunded whoever bought Twipple, Twipple got nuked/permabanned*, and whoever's posting on Twipple now simply used one of their other accounts from now on.
*Because whoever did the begging on the Twipple account lit a time-delay fuse to detonate a bomb after the "account sale", which cannot be proven actually occurred, by a preponderance of evidence.
|
|
|
Hmmm. From the looks of it, your situation had something to do with Gilph with your BC.I wallet via an API and for some reason the private key was not saved (in encrypted format) after it was created. Rob at Gli.ph swore up and down that the private key could not have been deleted by Gli.ph's side of the API. Is that true? IDK. It's an 8 step process outside the API (user logs into own wallet) which I couldn't have executed. When Blockchain.info coded its API, it should have 1) had all API-generated private keys backed up instantly 2) never allowed private key deletion by API, regardless of backup status. If even 'the best web wallet available' can't be coded so as to preserve all private keys no matter what, you shouldn't use it. One way to get the majority (if not all) of the positives of using a web based wallet (ability to access your funds from multiple locations/computers) would be to use some kind of deterministic wallet. Although any labels you set for each address would not transfer from wallet to wallet, you would be able to 'restore' your wallet from your seed on an unlimited number of computers, and your funds would be available on all of your computers that you have a wallet containing your seed for.
YES.
|
|
|
The shitstorm about trust ratings is happening because: 1. Perfect opportunity to bump post count. The reason behind most posts nowadays. 2. This forum is no longer about Bitcoin, it's about scratching out a living from spam and second-rate drama.
Hmm... - We pay 0.0007 BTC per post (max 0.035/week). That's 50 paid posts per week max, but... Rules - You must have no negative feedback points
![](https://ip.bitcointalk.org/?u=https%3A%2F%2Fdl.dropboxusercontent.com%2Fu%2F16538039%2FTwippleProfilePage.jpg&t=663&c=WYsFYKwykO167w) So no posts can be claimed for pay. Why even have that sig on the account then?
|
|
|
I need a decent, online wallet where I control the keys. The user of a blockchain.info wallet DOES NOT "control the keys". blockchain.info does, and generates then subsequently deletes your funded private keys before they can possibly be backed up. blockchain.info wallet is NOT "decent". Google the massive amount of thefts and BTC loss from them! I use blockchain.info for 2 years now and never experience such a thing, you may be describing some old bug that affect very few users. Nope. 3 months ago. Your experience is not a substitute for anyone else's. Nope. Your experience is not a substitute for anyone else's.I don't use the API, I'm aware there were some problems in the past, I was just never affected by them. Bear in mind that when there a problem with generating addresses in Blockchain.info caused by some bug in android that affected quite a few Android users Blockchain.info reimbursed those users. In my case, despite it being marked "Solved", there was no reimbursement to me, no reimbursement to the sender/API admin (AFAIK), the API admin was not brought in to help fix, and so the API was not fixed (AFAIK). Who knows they won't push a buggy code again? However, till now, they are very trustworthy
https://www.youtube.com/watch?v=yAWpqz9EztE
|
|
|
-snip- If this was my forum, every sold account would be banned, with some sort of algorithm to detect it (password change forces logout and immediate relogin from same IP, perhaps).
-snip-Account sales should be banned here -snip- Obvious solution is obvious. And yet... It'll never happen. Maybe after we hit some magic number of Meta topics over account sales turning to shit. As I hinted at here, anybody can change their forum timezone to make screenshotted posts/PMs appear to be at different times (at intervals +/- 1 hour or more) without needing (and being detected as) Photoshops. Why the obsession with having multiple accounts with stale positive ratings and negs & neutrals most recently? Minor trust score algorithm change - https://bitcointalk.org/index.php?topic=1066857.0;all
|
|
|
No, it isn't, because one person can have multiple IP addresses across the globe if they want to.
Ofcourse they can, but you wanted the log for the password change, which I was able to get for you through theymos. Ok, then the only PM I'm interested in at this point is from a mod/staff member who can show a preponderance of the evidence (logs, hostnames, etc) one way or the other. Don't PM me again Twipple, unless a mod/staff has told you they PMed me that first.
With only a log of these ridiculous password changes being inconclusive, the preponderance has not been reached. I started a scam accusation against Ume, for couple of things. Which should make it obvious that he and I are not the same person. The thread was started before any negative trust came on either Ume or Twipple.
I could have sworn my initial negative on Twipple (which might have showed under untrusted feedback) was on Jan 31 2015, the day I got the begging PM, and I deleted/replaced it later to shorten my Dropbox URL. Is there a ratings log that shows removals? Assuming that none of the IP addresses can be linked to a known tor exit node or a VPN then it is most likely the account was sold.
Where can I input the IP addresses to detect those links?
|
|
|
theymos finally sent me an IP-redacted seclog AFTER Twipple quoted theymos sending the IP-unredacted one. +---------------------+---------------+----------+ | UTC Time | ip | type | +---------------------+---------------+----------+ | 2015-01-25 14:57:57 | x | Password | | 2015-01-25 17:53:01 | x | Password | | 2015-01-31 10:49:55 | x | Password | | 2015-01-31 10:53:13 | x | Password | +---------------------+---------------+----------+ Password events 2 & 3 were from IPs in a netblock with munir.ahmed @ ptcl.net.pk in the WHOIS. Googled that email and found http://pastebin.com/raw.php?i=CZPFGta1 - is that Ume? abuse @ rdsnet.ro in WHOIS for the first IP. jacek @ euronet.net.pl & piotrs @ euronet.net.pl in WHOIS for the last IP. In an account sale, I can see if seller password starts as x (their original password), is provided to an escrow as x, the escrow changes it to y, gives it to the buyer as y, and the buyer changes it to z. That's 2 changes. But why change the password 4 times? This all makes less sense as time goes on. Yes , thats Ume. So Twipple changed the password on 25th , and provided it to Ume (for the loan) . Then Ume changed the password himself. (2nd one). Then when he sold it to me, He changed the password to the one is the PM image(3rd one), and then I am the last one to change it(4th) . So this is the proof that the real Twipple, Ume and this Twipple are 3 individuals as their IPs are different, right? No, it isn't, because one person can have multiple IP addresses across the globe if they want to. How many hours of everyone's time has been wasted by account selling and throwing theories around about scammer alts, whether negs should be removed, etc? If this was my forum, every sold account would be banned, with some sort of algorithm to detect it (password change forces logout and immediate relogin from same IP, perhaps).
|
|
|
The willful ignorance/economic suicidal advice in this thread, it burns. /unwatch I need a decent, online wallet where I control the keys. The user of a blockchain.info wallet DOES NOT "control the keys". blockchain.info does, and generates then subsequently deletes your funded private keys before they can possibly be backed up. blockchain.info wallet is NOT "decent". Google the massive amount of thefts and BTC loss from them! I use blockchain.info for 2 years now and never experience such a thing, you may be describing some old bug that affect very few users. Nope. 3 months ago. Your experience is not a substitute for anyone else's. I need a decent, online wallet where I control the keys. The user of a blockchain.info wallet DOES NOT "control the keys". blockchain.info does, and generates then subsequently deletes your funded private keys before they can possibly be backed up. blockchain.info wallet is NOT "decent". Google the massive amount of thefts and BTC loss from them! My understanding of how BC.I works is that the private keys are generated locally in your browser, are encrypted and then sent to BC.I to be backed up. When you later log into your BC.I your private keys are then sent to you in encrypted format and they will be decrypted locally in your browser. It is my understanding that the primary reason for most BC.I thefts and losses is due to various MITM and social engineering attacks. It is my understanding that BC.I never is in any kind of control of your private keys. Nope. See here.I need a decent, online wallet where I control the keys. The user of a blockchain.info wallet DOES NOT "control the keys". blockchain.info does, and generates then subsequently deletes your funded private keys before they can possibly be backed up. blockchain.info wallet is NOT "decent". Google the massive amount of thefts and BTC loss from them! Is the reason behind that is the fake emails that is sent to most users that redirect the link to phising sites? Personally i dont encounter any problem on my wallet so far Nope. Your experience is not a substitute for anyone else's.
|
|
|
theymos finally sent me an IP-redacted seclog AFTER Twipple quoted theymos sending the IP-unredacted one. +---------------------+---------------+----------+ | UTC Time | ip | type | +---------------------+---------------+----------+ | 2015-01-25 14:57:57 | x | Password | | 2015-01-25 17:53:01 | x | Password | | 2015-01-31 10:49:55 | x | Password | | 2015-01-31 10:53:13 | x | Password | +---------------------+---------------+----------+ Password events 2 & 3 were from IPs in a netblock with munir.ahmed @ ptcl.net.pk in the WHOIS. Googled that email and found http://pastebin.com/raw.php?i=CZPFGta1 - is that Ume? abuse @ rdsnet.ro in WHOIS for the first IP. jacek @ euronet.net.pl & piotrs @ euronet.net.pl in WHOIS for the last IP. In an account sale, I can see if seller password starts as x (their original password), is provided to an escrow as x, the escrow changes it to y, gives it to the buyer as y, and the buyer changes it to z. That's 2 changes. But why change the password 4 times? This all makes less sense as time goes on.
|
|
|
|