Interesting, but I see a couple of things.
1. All of the unspent transactions on the network since the beginning of time is a lot of hashing to have to do for every block.
2. You can't really trust the blockchain unless you've verified it all yourself. You are taking a big risk if you grab a recent block and just assume that it is good. There are ways to mitigate this risk to some extent, but the only way to eliminate it entirely is to do all of the math yourself.
1. It's 105120000000*2 hashes for the theorical 10 year period I've calculated. 6 minutes with a current GPU. It's almost nothing for a blockchain of almost 100 TB. According to this there are ~1.2 million of unspent transactions (2 months ago); let's assume we have 2 million, so we need about 4 million hashes (assuming the same number of tx per block). How much does need your GPU to hash that? Typical mining GPUs does it in 0.01 seconds. My CPU maybe a couple of seconds. Much less than the time it needs to check all ECDSA signatures. Double that, since the standard hashing that we do is highly optimized in ways that aren't useful for hashing a tree. But something that takes 6 minutes on a high end GPU is no longer a lightweight, or even middleweight client, since it will exclude 99.9% of all current nodes. And you are talking about something that every node must do. 2. If the majority of hashing power rejects blocks with an invalid MTUT, it's impossible for a block with 6 confirmations to be wrong. Even if you take a bogus MTUT, what are you risking? That a transaction you're doing is rejected? As a paranoid you would wait a transaction to have 6 confirmations anyway.
Compare this solution with the current protocols for "thin" clients being in development (not one or two, but three!). MTUT doesn't require trusting a third party. The only issue with not downloading the whole chain is anonimity.
This isn't a threat to the network, this is a threat to one node. Without the whole block chain, you can't add up the difficulty sum by tracing it all the way back to the genesis block. What is stopping someone from making 6 chained blocks claiming to have more total difficulty than the rest of the network, but a lower current difficulty, and feeding them to you?
|
|
|
edit: The trust in the core devs seems to have evaporated because there isn't a consensus between them. They should choose between 16 or 17 and we'll be in peace again.
They did choose. But then Luke put out a last minute proposal... And a FUD PR campaign...
|
|
|
Interesting, but I see a couple of things.
1. All of the unspent transactions on the network since the beginning of time is a lot of hashing to have to do for every block.
2. You can't really trust the blockchain unless you've verified it all yourself. You are taking a big risk if you grab a recent block and just assume that it is good. There are ways to mitigate this risk to some extent, but the only way to eliminate it entirely is to do all of the math yourself.
|
|
|
Nonsense. The relative values of the dollar vs. gold is because of the ratio of desire to hold the two assets. If Iran wanted to hold gold now, they could buy it with dollars.
|
|
|
Thanks for the info. Ad (2). Analyze Luke's patch I can apply the init.cpp patch. But my codebase has no "COINBASE_FLAGS", so the other two patches don't apply. Is there a way to cast the vote without backporting COINBASE_FLAGS? The vote is a coinbase flag, so no. Check Luke's recent posts, I could have sworn his post about that patch had some sort of instructions on applying and building it.
|
|
|
Eleuthria, do you have any plans to support OP_EVAL, P2SH or EVC?
|
|
|
The exact number, assuming we don't extend the unit size beyond 1E-8, will be 20,999,999.9769.
The subsidy shifts out of a 64 bit integer. If we change to a 128 bit representation, there will be a miniscule extra amount.
|
|
|
Indicators stop indicating once they become known.
The truth is, many of the well-known indicators do work in practice, even though they're "known." This is a common myth about technical analysis. In fact, the fact that many people follow them makes them self-perpetuating, which serves to reinforce their usefulness. One need only look at Goomboo's backtesting of the 10/21 EMA rule in order to see that simple and well-known things can still work. I guess "followed" would be a better way to put it. If I write a bot that follows the 10/21 EMA rule today, I'll get clobbered, because now people are following it, and their act of following it will cause the indicator to not work any more. Just because it is an old and well known indicator in the real world isn't really the problem, but now that it is a known indicator here it will no longer work here. That doesn't make any sense. If everyone used it, and everyone received a "Buy" signal, then everyone would buy, and the price would shoot up. Similarly, if everyone used it, and everyone received a "Sell" signal, then everyone would sell, and the price would drop like a rock. The only fools would be the ones NOT using it. That's what ineed is talking about when he says it is self-perpetuating. Heh. Try it then. Also, Buy and Sell are opposite views of the same thing. You can't have one without the other.
|
|
|
The transfer in question is confirmed as having already been processed and credited to recipient's account as of Fri 13 Jan 2012 07:12:25 PM JST. Please be aware that transfer to 1JcMWSggw3mnFanp81HMeBCtKyFJwJ253S is an intra transfer. When BTC is sent to another Mt.Gox address, the transfer is done instantly and will not appear on the BTC network.
First I should say that the recipient is not me it is the person I bought the board from. So it is his word that the bitcoins did not show up at his address. You got scammed? Or maybe they just mistakenly gave you their mtgox deposit address instead of a receiving address from their personal wallet. Well I did receive the board and it works very nicely. The seller is waiting patiently for his missing bitcoins. Not very scam like. Sam Ahh, ok. I was thinking maybe the seller intentionally used a mtgox address knowing that you were going to pay from mtgox, so that he could point to the blockchain and demand that you pay him a second time. He needs to check on that address that he told you to pay to. If that is his deposit address at mtgox, he should see the transfer there already. If he accidentally gave you someone else's mtgox deposit address, he needs to figure out who that someone else is, and ask them nicely if they could forward the misdirected payment back to him. I'm thinking that mtgox won't tell you anything about the account that has that address, but if you ask them very nicely, they may be able to confirm if the account info matches the other information you know about the seller. Or maybe they can contact the account holder for you.
|
|
|
It is important to note that, in the case of bitcoin, the 21mil bitcoin supply is just a monetary base. The total potential BTC money supply (in the smallest bitcoin unit - a.k.a. "satoshi") is 2.1 quadrillion. That's just a matter of normalization. You could just as well say that the money supply is 1. And 1E-8 isn't a fundamental unit of the system, it is just the smallest increment currently accepted. We could easily switch to 1E-30, but it would probably be more useful to use 1E-21. See here.
|
|
|
Indicators stop indicating once they become known.
The truth is, many of the well-known indicators do work in practice, even though they're "known." This is a common myth about technical analysis. In fact, the fact that many people follow them makes them self-perpetuating, which serves to reinforce their usefulness. One need only look at Goomboo's backtesting of the 10/21 EMA rule in order to see that simple and well-known things can still work. I guess "followed" would be a better way to put it. If I write a bot that follows the 10/21 EMA rule today, I'll get clobbered, because now people are following it, and their act of following it will cause the indicator to not work any more. Just because it is an old and well known indicator in the real world isn't really the problem, but now that it is a known indicator here it will no longer work here.
|
|
|
The transfer in question is confirmed as having already been processed and credited to recipient's account as of Fri 13 Jan 2012 07:12:25 PM JST. Please be aware that transfer to 1JcMWSggw3mnFanp81HMeBCtKyFJwJ253S is an intra transfer. When BTC is sent to another Mt.Gox address, the transfer is done instantly and will not appear on the BTC network.
First I should say that the recipient is not me it is the person I bought the board from. So it is his word that the bitcoins did not show up at his address. You got scammed? Or maybe they just mistakenly gave you their mtgox deposit address instead of a receiving address from their personal wallet.
|
|
|
Indicators stop indicating once they become known.
|
|
|
Bitcoin is actually pretty low traffic. It wouldn't take much to keep an island connected. And even if updates came at strange intervals, it could remain useful.
Mining will continue because fees will gradually increase as the subsidy decreases. At least that is the plan.
|
|
|
As the topic says...
Here is my scheme: I want to encode several 32-byte strings (wow, I wonder what they could be) using another 32-byte string as the key.
If it was only one string I wanted to encode, i'd XOR it - problem is that if I reuse it my key can be leaked: K key C ciphertext P plaintext
K = 10 C1 = P1^K C2 = P2^K C1^P1 = K C2^P2 = K
So.........
I alternate K,after every message, I transform K into sha256(K), so that the same value of K is never used for >1 encryption.
Here's the challenge - you have all values of C but not K, break the scheme so that you can find K or any value of P and you win 5BTC. Break the scheme so that having the value of a single P gives you K or other P values and you win 5BTC.
Get cracking.
Basically, if anyone ever finds Pn, like if you ever use it, they now have Kn, and thus they can find all Ko and Po where o>n. Jetmine's suggestion of setting K1=SHA(K) doesn't help. K is not special, but Kn becomes special if Pn ever becomes known. Assuming that you intend P1 to be a private key, this scheme should be reasonably safe, since private keys aren't normally leaked to the network. But I don't see any advantage of using this scheme over a conventional block cipher that you would use to encrypt a random file. Also, I'm not a cryptographer. You are strongly encourages to read Schneier's books and stick to things that he says are safe to do. There may be other weaknesses in this scheme that aren't apparent to laymen, but may be known to professionals.
|
|
|
+1 for mailing the blockchain.
I can provide this from a UK address if anyone needs this.
How can we provide an md5sum from a third party if the size is constantly changing?
The other option is pay for a VPS; it can be very cheap.
I'd like to see more blockchain thirdparty hosting
You don't need to md5sum it. The client will verify it, and if new blocks come in as usual, it was good. I'd be willing to mail a DVD of the current chain from the USA for actual postage cost. Add like $3 if you want it on M*Disc.
|
|
|
Are you saying that you are seeing the entire network stop for 2 to 4 hours?
|
|
|
There are no measurements of the network speed, just estimates. The estimates are very noisy, particularly on short time frames.
|
|
|
Votes are counted in the coinbase transactions that actually end up in the blockchain. People that are mining through pools are working on blocks provided by the pool (usually), so they are working on coinbases provided by the pool. Which means that it is the pool operators that are voting, not the pool users.
The pool operators should probably ask their users, or should tell their users which way they are voting so that pool users can change pools if needed.
If you are not actually directly submitting blocks that you generate and mine yourself, you are not really voting, and you don't need to set your node up one way or the other, since it won't matter at all.
|
|
|
If a redeeming P2SH transaction (or any transaction for that matter) is validated by the network (and I know it hasn't been spent yet), do I need to keep the "in" part of the tx or can I scrap it out? If I understand the protocol, I can left it out; in that case I fully support P2SH as the space savings in the future will be HUGE.
Well... If you validate it yourself, and can be pretty sure that your database won't get corrupted or attacked, you could toss it, maybe. I would need to read the chaining rules again to be sure. But I would be very reluctant to prune that aggressively, even if the blockchain growth somehow manages to severely outpace the size growth of cheap hard drives.
|
|
|
|