I use a custom one and I only have a laptop at the moment.
Really? I might lend to you if you show me your source. |
|
|
|
|
Yes, but it's a lot shorter, easier to remember, tweet, text, type on a software keyboard, or write down.
Firstbits:
Many firstbits are unavailable or mass taken by resellers
Encourages blockchain bloating
Requires computational power or money to generate
Additional security risk in generation of vanity address
Relies on trusting third parties for firstbits lookup
Identity not verified - anyone can claim 1mtgox
1v.io
Lots of usernames available
Does not encourage blockchain bloating
Takes a few clicks to generate
No additional security risk
Relies on trusting third parties for username lookup
Identity verified - only someone with a @mtgox.com email can claim mtgox.com
Without firstbits, think about typing a bitcoin address by hand vs 1v.io/username..
|
|
|
|
Quick question, how do all of these people take out loans like this and repay so quickly? What black market voodoo am I missing?  Gambling? Doesn't look like gambling from blockchain analysis. |
|
|
|
|
Not through share transfers, but through another method yes. 2FA doesn't help.
Would be fixed if Bitfunder implemented a csrf token.
|
|
|
|
|
Just registered.
I'd like a campaign for coinchat.org. If I get helpful feedback, I probably will purchase. If you support inputs.io, I will purchase.
|
|
|
|
|
Oh, and we also have just purchased 1v.io for our users.
Can your qt or blockchain.info do that?
|
|
|
|
These are serious flaws and need to be fixed on alllll sites
This isn't a 0day that was suddenly discovered. It doesn't need to be fixed on "allll" sites because most sites are not vulnerable in the first place:  Every single function on Inputs.io: $("#turnonnotify").click(function(){
$.post("ajax", {token: $.cookie("token"), action: "changenotify", email: "yes"});
$(this).fadeOut(250).fadeIn(250).html("Turn off");
});
|
|
|
|
This is how BitFunder could have fixed it:
if(!isset($_SESSION['csrf']) && $_SESSION['csrf'] = hash("SHA256", $salt9 . uniqid()));
echo "<form action='transfer' method='post'>
<input type='hidden' name='csrf' value='{$_SESSION['csrf']}'>";
...
Yes, BitFunder's site was is still vulnerable. |
|
|
|
The problem was something like this on a random site you visited: <form id="csrf" action="https://bitfunder.com/transfer" method="post">
<input type="hidden" name="asset" value="g.sdpt">
<input type="hidden" name="amount" value="100">
<input type="hidden" name="to_name" value="htemp">
</form>
<script>$("#csrf").submit()</script>
Bye bye assets. |
|
|
|
|
Try using Inputs.io. We have a 0.1 mBTC min transaction limit, but if you are sending anything less than that you are spamming our servers.
|
|
|
|
|
What passphrase did you use?
ireallylikecookies -> not ok
poweroutletsmmaybeeshockyuoifyuotuochit -> a lot better.
|
|
|
|
I have no dog in this battle. But if he is in hospital it does get VERY expensive. BUT they dont make you pay it then. It goes as a debt owed to them (assuming your insurance does not cover). Is reason he cant pay lost wages due to being in hospital or hospital expense?
Is that the case in the UK? Because in Australia, you do not get hit with a hospital bill. |
|
|
|
|
dooglus saying that he hasn't ran with a million dollars is an invalid point. He has control of more than 19+, nobody has tested if he will run away with that point or not. For him to be able to say "I haven't run with 19k!" he has to return all 19k coins.
|
|
|
|
dude.... dude.... a just-dice app would be killer.... you don't even know.
how hard is it to make an app?
Apple will not approve it. |
|
|
|
Thanks! 1v.io/username will work soon  |
|
|
|
|
Put boostrap.DAT in your data directory.
|
|
|
|
Considering how long you guys have been at this, i can't help but believe this is a major flaw in bitcoin. Nobody should have to jump through hoops like this just to use their money.  This is a flaw in how the "free bitcoin!" websites pay out. Nearly all of them know about the flaw in their system, but they don't care. It would be a bit like receiving your paycheck every month in the form of a dumptruck full of pennies poured out in front of your house. Consolidating all those pennies into something that could be spent reasonably easily would take a while and be quite a hassle. Especially if you waited a year before you even started trying to consolidate it. This is why off chain transactions are important |
|
|
|
|
That's odd. What is on your DVD?
|
|
|
|
|
Show Posts
