I've been questioned by police, solicited by undercovers into doing stuff, been black listed from banks with my accounts closed and they tried to recruit me once to join them.
Any interesting stories to share? ![Wink](https://bitcointalk.org/Smileys/default/wink.gif) Do you think you could provide more specifics?
|
|
|
If it's a bubble, it's less likely to pop this time... ... and even if it does, it won't crash as low as last time. ![Cool](https://bitcointalk.org/Smileys/default/cool.gif) Any ideas what will occur within the next few days?
|
|
|
I would like to know this as well. Is there really no safe way of keeping funds that can be immediately liquidated for trading?
If you're not the sole controller of the priv keys you don't own BTC, meaning they are not safe. As soon as you deposit bitcoins on an exchange you have to place trust in honesty and competence of the exchange operator that your coins are kept safe.
|
|
|
... and even if it does, it won't crash as low as last time.
The June 2011 (hack) and April 2013 (overloaded by the influx of new users) crashes were both a result of the centralization of trade on one exchange — Mt.Gox.
Were it not for Mt.Gox's unpreparedness or incompetence the price would very likely continue to grow.
Less than 40% of fiat <-> BTC exchanges is now occurring on Mt.Gox, so even if they screw something up again, it is likely the price will not be affected as much. Same goes for other exchanges.
|
|
|
Did someone say HEATSINKS !? ![Grin](https://bitcointalk.org/Smileys/default/grin.gif) Lapped PII 960T + lapped Zalman 12x How much did the temperature decrease after lapping the heatsink?
|
|
|
Anyone with a clear conscientious should not trade with theymos. He is illegally selling off the forum's BTC for personal gain. People have donated to the forum for improvements, with the bitcoins sat unused and to pay to admin and moderators instead of being used to improve the forums. People did not donate so theymos can buy a new house. Please do not sell to theymos, and I hope bitstamp blocks his account
Only ad revenue is used to pay the mods and admins, and only a portion of it.
|
|
|
Pretty sure he made a mistake and it's 900€ per year.
In his calculations of the net profit: (475 * 12) less 1200 = EUR 4,500
1200 = 900 condo fee + 300 real estate taxes.
|
|
|
Good luck, just don't be overzealous with the AML/KYC bureaucracy, and let people deposit and withdraw bitcoins without any issues. Mt.Gox and Bitstamp are now requiring that people submit their docs even for BTC withdrawals. MagicalTux said himself that they are asking for more than they are required by law. Don't be that guy ![Tongue](https://bitcointalk.org/Smileys/default/tongue.gif)
|
|
|
Allegedly. No screenshot has been provided to support the allegation that Gox says "All withdrawals and deposits require account verification".
Here's a screenshot: ![](https://ip.bitcointalk.org/?u=https%3A%2F%2Fi.imgur.com%2FVbqSNSk.jpg&t=663&c=KTkcWjWVv5qxTg) The URL is https://www.mtgox.com/forms/verification I highlighted this part: All Mt. Gox user accounts are required to be verified in order to perform any deposits and withdrawals.
|
|
|
I would add that people are sometimes confusing this with bitcoin. The reason Gox and others are requiring proof of identity is because of fiat currency. Fiat currency is not yours to do with what you like. You are authorized to use it for your transactions, but it is not yours. For example, it is illegal to destroy your own $USD because it is not yours to destroy. Mixing btc with fiat will always result in taxes, laws, governmental whims, etc. Just keep your holdings in bitcoin and forget about "cashing out". Bitcoins are yours , you can even destroy them.
The problem is that, until recently, Mt.Gox did not require any docs for bitcoin withdrawals. Only people who wanted to withdraw fiat had to submit their docs. Now they are requiring that even people who don't deposit nor withdraw fiat currencies should also submit their docs.
|
|
|
(Yet Another) Feature Suggestion — would it possible for blockchain.info to include an option in account settings, that when enabled, the user would be asked for 2FA (email, sms, gauth, yubikey, etc.) also upon trying to withdraw BTC (with the ability to set up a daily transaction threshold (in BTC of fiat), above which the user would be asked for 2FA)? This would protect people from some more sophisticated malware that waits till the user logs in with his credentials and 2FA, and only then sends funds to the attacker's address. There is still a possibility that the attacker could wait till the user tries to make a transaction and would replace the user-specified address with his own one. To protect against this, people who have SMS or email as 2FA (hopefully accessing the email account from a different device) could get transaction information about the addresses that are involved along with the code. It would be also nice to be able to set ranges of IP addresses from which the user should be allowed to log in (for those with dynamic IP addresses). ![Wink](https://bitcointalk.org/Smileys/default/wink.gif) I'll also post this here again in case piuk last time missed it: Minor feature request: Please print out a text version of the TOTP secret key below the qr code image on the two factor authentication settings page. I'll pass this suggestion along, but in the meantime you can use a different QR scanner app to get a copy of the secret key. If you ever need to reset two factor authentication, then you can just submit a 2FA reset request. We usually process these within 12-24 hours max (I check them multiple times a day). Yes, please print a text version of the key, it would be very convenient for users with older phones for which there are alternative Gauth implementations but none of them can scan QR codes. Other QR scanning apps are also problematic to work with.
|
|
|
ETA = Estimated Time of Arrival
|
|
|
They are probably scamming selectively like Coinabul does.
|
|
|
You could also add support for compressed public keys (derived from the same private key but the bitcoin address is different).
Definitely something to consider. Is there much interest in, or use of, compressed pubkeys? The only reason why someone would not use them is if they had an old client that doesn't support compressed public keys. I think Bitcoin-Qt uses them by default since v. 0.6. (1.5 years) They create less blockchain bloat because they are almost half the size of compressed pubkeys (33 bytes instead of 65).
|
|
|
You could also add support for compressed public keys (derived from the same private key but the bitcoin address is different).
|
|
|
So does this mean that everybody can now freely try to crack your site without fear to be busted: "No, I was not hacking, I just trying to gain the bounty!" ?
So? So long as they don't exploit the vulnerabilities they find in a way that could harm the forum or its users, I think theymos will be happy to make the forums more secure. It is also in their interest to eliminate or minimize the impact of their exploiting of the site because if it causes "substantial disruptions" the reward they will get will be considerably smaller. I don't think I'll find anything but I'll try my luck in 4-5 weeks when I should have a lot more time than now. @theymos I mentioned it on IRC when the site was down and know it can be a problem for you, but if you find some time in the near future, please consider releasing the full code and configuration that's behind bitcointalk.org with the sensitive information removed. edit: hopefully SMF would give their consent to this http://www.simplemachines.org/about/smf/license.php
|
|
|
Minor feature request: Please print out a text version of the TOTP secret key below the qr code image on the two factor authentication settings page. I'll pass this suggestion along, but in the meantime you can use a different QR scanner app to get a copy of the secret key. If you ever need to reset two factor authentication, then you can just submit a 2FA reset request. We usually process these within 12-24 hours max (I check them multiple times a day). Yes, please print a text version of the key, it would be very convenient for users with older phones for which there are alternative Gauth implementations but none of them can scan QR codes. Other QR scanning apps are also problematic to work with.
|
|
|
|