It looks like that guy's posts have been deleted already, I am showing his last post being last month Yes, I saw! I reported him to BadBear yesterday. He is probably banned.
|
|
|
No. Newbie-jail won't come! SaltSpitoon said it well! Newbie jail causes a huge amount of issues. People complain about removing newbie jail, but it really didn't do much to prevent spam. The issue with spam doesn't come from genuine newbies, it comes from account farmers. If you are managing 100 accounts, a 3 hour wait means very little to you. If you are trying to learn about Bitcoin as a genuine newbie, a 3 hour wait can do enough to convince you its not worth looking into. If newbie jail was reimplemented this second, the forum would indeed get better, for 3 hours that is, then the waves of accounts hitting the boards would be the same as it was before. In addition, whitelisting is a huge drain on staff resources.
If you report one spammer, all of their accounts get banned.
|
|
|
-snip- I want to personally thank you BadBear for helping me and MZ unlock my account. Keep up the good work. Seems like you put our names in wrong order! It should be " I want to personally thank MZ for helping me and you, BadBear for unlocking my account."
|
|
|
To decrypt a file encrypted with a public key, you need private key associated with it.
ECDSA used in bitcoin is signing/verifying algorithm. It can not be used for encryption/decryption at all If you know public key, then yes, you can encrypt/decrypt messages. -snip-
As for the encryption aspect... I don't see why the ECDSA signature keys can't be used as encryption keys. The BTC ECDSA is based on a NIST-blessed elliptic curve (secp256k1), and you have a public-key-point and private-key on that curve. If it's secure for signing, it will be at least very secure for encryption.
Despite being a mathematician and studied cryptography before, I'm not a black-hat kind of guy. I know that this will be very secure, but I don't know if there's maybe weaknesses in using a recommende ECDSA curve for encryption. I just know it's possible to use it, and the security of the signature process implies a high degree of security in the encryption process.
-Eto
Elliptic Curve DSA and Elliptic Curve encryption are almost as closely related to one another as signing and encryption in RSA.
RSA Signing and Decryption: both are exponentiation mod N with the private key RSA Verification and Encryption: both are exponentiation mod N with the public key
In ECDSA and ECIES, the key-pair relationship is similar, but instead of simple exponentiation mod N, you're applying a different mathematical equation for all four operations (signing, verification, encrypting, decrypting). The only real difference is that NIST has blessed different elliptic curves for ECDSA and ECIES. That doesn't meant that the secp256k1 curve can't be used for encryption, it just means that people smarter than us have decided that different curves should be used for cryptography and signing.
Unfortunately, in my graduate cryptography class, we didn't dive into elliptic curves far enough for me to know what kinds of vulnerabilities there are with naive elliptic curve selection, but there was also no reason why security of the two would be different on the same curve. I would say that the security of ECDSA keys on the secp256k1 curve will provide sufficient security for encryption as well. I wouldn't guard nuclear launch codes with it, but I would venture that your 256-bit key will give you at least 128-bits of security.
A more-likely explanation is that the security is actually identical between the two. But it's standard practice in cryptographic protocols/implementations to use different keys for signing and encryption. Perhaps this is why NIST chose two different curves: so that if you decide to use NIST curves, you can't pick the same key for both, even if you wanted to.
But as has been said before: you don't have the person's public key until they either give it to you, or you see a transaction signed with it. Having their BTC address is not enough.
-Eto
Additional links:
|
|
|
Interesting how I just magically disappeared off of this list.
You were not in the list (IIRC), were you? You are/were probably in Squall's escrow list.
|
|
|
To decrypt a file encrypted with a public key, you need private key associated with it. How can we assure seller actually share the private key with buyer after getting payment? nLockTime won't work here but with OP_CHECKLOCKTIMEVERIFY [1] because nLockTime transaction can be invalidated by using those inputs in other transactions. [1] https://github.com/bitcoin/bips/blob/master/bip-0065.mediawiki
|
|
|
-snip-
Why on earth you sold your address in the first place ?
I really did not understand *completely* about these things. Later onwards, I started understanding more. P.S. I won't be committing such as mistake or similar mistake again! Ever!
|
|
|
Thank you very much for your effort to create this guide.
I'm using XAPO only wallet, is their any help available on how to sign a message from this wallet?
Many thanks in advance
IIRC, Xapo does not allow you to sign messages.
|
|
|
iam a beginner and i don't know if xapo.com is good one
It seems legit, but to activate a wallet you need to send them some documents, KYC.... If you only want to send and receive Bitcoins, you don't need to send anything. If somebody asks you to send any documents to store just Bitcoins, then it is definitely not a good wallet.
|
|
|
Thanks for that! I'll give it a try.
You are welcome! Good luck! Also, in regards to the risk, I have a dual booted win8/LinuxMint. Am I only really at risk if I plug it in while Win8 is running?
It is in risks only if you connect to an insecure computer or if another person directly have access to it. Is it preferable to back up by private keys onto a printed sheet and delete the wallet, thereby just running a full node with no funds?
I know, quite a few questions, but I just want to actually put a few blockchains(LTC too) on the ExtHD and help the network. Big bitcoin convert here. I have to tone it down before my fam & friends get too sick of me.
Dan
If you just want to help networks by running nodes, its better to save your wallet.dat in a secure place and possibly, print all the used addresses & the addresses you gave to others.
|
|
|
I guess it tries to combine chains of txs and associate addresses with eachother. Like address A sending money to address B, and the change to address C. Now it may guess that address A and C are part of the same wallet (probably HD) or belong to the same person. Which is highly uncertain, as there is no proper way to distinguish change from other outputs. I've tested walletexplorer.com with a few addresses of mine, but it was able to group none of them correctly. So I wouldn't have too much hope this actually works. AFAIK, it puts all the input addresses of transactions into one wallet. Everybody knows there are exceptions but this is generally accepted way. -snip- How do you distinguish change addresses form normal outputs?
I found the refined version of Heuristic 2. The simplest way is to identify the transactions that only have two output addresses. And only one of the output appears first time in the blockchain (new address). The new address will be identify as the change address. -snip- Its not correct. I have seen people asking to send Bitcoins to new addresses due to privacy concerns. I don't think "heuristic 2" will work. I might be wrong though!
|
|
|
Disqualified posts: Local (for the time being) Have changes I am waiting you. No change.
|
|
|
My orders with 15% discount were bought within some hours. When I increase discount, nobody is buying. Hello bro thanks for the info, btw your buyer is from india or outside india? Probably, not from India! Ok, bro can i use snapdeal flipkart with purse.io? You don't even know what Purse.io is? You can only buy products from Amazon. Please read more before you post!
|
|
|
My orders with 15% discount were bought within some hours. When I increase discount, nobody is buying. Hello bro thanks for the info, btw your buyer is from india or outside india? Probably, not from India!
|
|
|
How many days will it take to receive shipment? My shipment is already ~9 days late now.
Normally when you order was bought (your items should vanish from your wishlist) then it should take as long as it normally takes when you order it yourself. Maybe its shipped from china? Check out the product page, maybe you missed that point. Thank you! Didn't know it vanishes! Yes, items vanished from my wishlist but I still have not received them. Its Amazon.in wishlist, so everything in my wishlist is shipped within India. I should have got it before a week. Btw, my shipping address is trimmed in Purse.io but this does not affect actual shipping address, right? Shipping address will be whatever is set in your Amazon wishlist itself, not anything to do with Purse. Thank you! -snip-
I understand thanks
Hello anybody here who can buy from india site?
My orders with 15% discount were bought within some hours. When I increase discount, nobody is buying.
|
|
|
I guess its not a new thing.
|
|
|
How many days will it take to receive shipment? My shipment is already ~9 days late now.
Normally when you order was bought (your items should vanish from your wishlist) then it should take as long as it normally takes when you order it yourself. Maybe its shipped from china? Check out the product page, maybe you missed that point. Thank you! Didn't know it vanishes! Yes, items vanished from my wishlist but I still have not received them. Its Amazon.in wishlist, so everything in my wishlist is shipped within India. I should have got it before a week. Btw, my shipping address is trimmed in Purse.io but this does not affect actual shipping address, right?
|
|
|
|