One of underrated projects. Extremely well articulated.Great detail and transparency, reachable goal. The founder is experienced. Looks like American citizen can participate, definite yes! see you on the moon guys
Hi cryptokangaroo, Thank you very much for your support. We're focused on building a great organization and are looking forward to working with a wide spectrum of the ecosystem to advance our shared goals. Best regards, Ben |
|
|
|
I don't know if they will face legal action. What I am thinking is that a lot of scam ICO's are getting away with it. They just keep on delaying the ICO progress until they disappear. So far, I have experienced one scam ICO. That is the TORQALL ICO. The managers just disappear and the project was left floating. I hate it when this happen. Hopefully, we will have a rating on this forum where we can check how legit the ICO is. There are a lot of websites for this but if its rated in our forum, much better.
My organization is working on a good set of objective standards that can be applied to rating a variety of ICO/ITO offerings as well as the quality of other crypto-related projects such as non-ICO cryptocurrencies, exchanges, payment gateway code, etc. All of these have some overlap in evaluation criteria but also some criterions that are specific to the type of project/entity being evaluated. These standards will be fully public and open-source (code)/open-license (documents). It's important to have voluntary, baseline standards, it will help both new businesses demonstrate a level of competency in their projects, as well as existing businesses ensure they are following best-practices. I've seen way too many hacks and scams. My organization is an incubator for projects to help them emerge as first-class businesses. While considering how to quantify the various factors that go into a successful project launch, we decided on standards development. Then it was pretty easy to decide that the industry as a whole could really make good use of these standards, which would evolve and be updated over time, with participation by any parties that want to be a part of the process. Best regards, Ben |
|
|
|
The 1031 rule seems to be very specific to the US. A lot of cryptotraders have benefited from it, but would you call it fair? If a person converts his bitcoins to USD tether, is it a like-for-like exchange? It could be argued that the person has locked in his profits, but is not recognizing capital gains and paying the tax due.
Most countries across the world do not offer similar benefits to cryptocurrency traders. Sure, it will increase the effort required in book keeping and maintaining transaction records, but that is part of the game.
I agree that the change to IRC Section 1031 sucks. It certainly increases the recordkeeping burden, one thing that you may want to discuss with a tax advisor is looking at how different methods of determining cost basis can change your capital gains. The optimal basis is very specific to a person's trading patterns, so it's something that you'd need to seek individualized advice on. One thing I am pretty sure of is that cost basis can be specified on a transaction by transaction basis. This makes that burden previously mentioned even more but could result in significant savings. Eventually, we need IRS to recognize cryptocurrency as currency. We will get there. Best regards, Ben |
|
|
|
Hey while I'm thinking of it, I had a question about the prefix on a bech32 address that wasn't apparent when I read the BIP. Does the prefix have to exactly match, i.e. "bc1" or "tb1", for example? Would either of these prefixes pass muster: "bc1xyzabc1" or "xyzabc1bc1"? If so, which one is the proper one if you were to include additional human-readable information in the prefix?
If anyone knows the answer to that, I'd appreciate it. Otherwise, I'll check out the code.
Best regards,
Ben
Yes, it does. For segwit implementation in Btcoin, the hrp is "bc" for mainnet, and "tb" for testnet. Then the separator is 1. However for other implementations of Bech32 not related to bitcoin, you can use any 1 to 83 US-ASCII characters, with each character having a value in the range [33-126]If you want to play around with Bech32 addresses, check out Nullius' segwit vanity address generatorThank you very much for your response. Yes, I had reviewed the BIP and I was thrown off by one of the examples of invalid addresses: separatoran84characterslonghumanreadablepartthatcontainsthenumber1andtheexcludedcharactersbio1569pvx: overall max length exceeded I see now in the spec it states that if there's multiple separator "1" characters, the last one is considered the separator. But for Bitcoin the addresses will begin with "bc" pre-separator. If I'm reading the spec correctly, I think in the above example, besides the HRP length being exceeded, the data area must also be missing, as the "569pvx" is the checksum. I am very impressed with the considerations that went into this address specification. I've worked with DOD projects (IUID/UID) that did not take into account all of the real-world factors that have been addressed in this BIP. I am going to clone Nullius' code and mess around with it. Thanks again! Ben |
|
|
|
My comment when I saw this is that they should really have the QR code point to a redirectable URL. If their address was compromised for some reason, it'd be a pain in the ass (perhaps literally) to have it changed. Hey, realsteve, here's a pic for you: Enjoy, Ben |
|
|
|
Bech32 cannot come fast enough. We need addresses that can be easily distinguished from one another and will be rejected if you enter the wrong address for a given currency.
Too many coins all using the same address namespace is just an added layer to the adoption challenge.
Unfortunately, bech32 does not fix the problem of lazy developers. When people create altcoins, they can (and will) just use the same addresses for their altcoins as bitcoin uses. The problem will still exist. As far as I'm concerned, lazy developers that overlap their address space with Bitcoin are demonstrating a lack of concern about the funds that will eventually be conveyed on their blockchain. But you're right, they'll do the absolute minimum. (sed -i 's/Bitcoin/Shitcoin/g' *) Hey while I'm thinking of it, I had a question about the prefix on a bech32 address that wasn't apparent when I read the BIP. Does the prefix have to exactly match, i.e. "bc1" or "tb1", for example? Would either of these prefixes pass muster: "bc1xyzabc1" or "xyzabc1bc1"? If so, which one is the proper one if you were to include additional human-readable information in the prefix? If anyone knows the answer to that, I'd appreciate it. Otherwise, I'll check out the code. Best regards, Ben |
|
|
|
Thanks for the suggestions, Ben. Unfortunately, to the best of my knowledge, all of your suggestions would require action by theymos; there’s nothing there which I could do myself, as a workaround to obtain downloads right now. If there’s a legitimate public means to find a direct IP address, I’d appreciate being corrected here. But I rather suspect that theymos wishes to keep his real IP addresses unknown to DDoSers; and if I could find it, so could they. ... Same here. Specifically as to Cloudflare, in addition to how they sometimes cavity-search you with Javascript while still failing to keep the site reliably available, see e.g.:... My biggest complaint is that Cloudflare is a MITM attack against TLS on a substantial portion of the whole Internet. From the user end of things, I generally boycott Cloudflared sites insofar as practical. But I support the Bitcoin Forum, out of my respect for how theymos was honest with people when he was effectually forced behind Cloudflare by Internet arsonists: Yes, you are absolutely right. I don't know what I was thinking, the only way you could exclude from CloudFlare is with a subdomain. Anything else would terminate SSL on their side, even if there's another SSL connection between CF and BCT. I thought that potentially BCT's IP was known/listed somewhere since it was known by all of our DNS resolvers before CF came into the picture, but a quick Google search didn't turn up anything, so perhaps not. I had no idea they were doing what I assume is some sort of browser fingerprinting with javascript. That makes it even worse. I remember reading last summer, in connection with some white supremacist website that was being shut down by hosters, CF, even the domain registrars, that CF made a claim that they provide service to some high percentage of all global web traffic. I can't find the number now, and while I certainly am not supporting that website or that sort of hate, I also don't believe that an entity should have such a high percentage of control over internet traffic. With very little exception, anytime there is high concentrations of power in the hands of a few, the power is abused. Which of course 99.9% of the people reading this are well aware, considering we are on the Bitcoin Forum. My biggest complaint is that Cloudflare is a MITM attack against TLS on a substantial portion of the whole Internet. From the user end of things, I generally boycott Cloudflared sites insofar as practical. But I support the Bitcoin Forum, out of my respect for how theymos was honest with people when he was effectually forced behind Cloudflare by Internet arsonists: With regret, I am (for now) admitting defeat on the DDoS front, and we will soon be using using Cloudflare to protect against DDoS attacks. [...]
I really don't believe in willingly putting a man-in-the-middle in your HTTPS like this, [...]
I especially dislike Cloudflare, which I'm almost certain is basically owned by US intelligence agencies. [...]
The Internet is seriously flawed if everyone needs to huddle behind these huge centralized anti-DDoS companies in order to survive...
The security implications are that Cloudflare can read everything you send to or receive from the server, including your cleartext password and any PMs you send or look at. They can't access the database arbitrarily, though: they can only see data that passes over the Internet.
I agree with each of theymos's statements here. The need for large sites to use one of just a few services that provide high-capacity DDoS mitigation is just another point of control. I don't know if the "intelligence" agencies own Cloudflare or not (would not be surprised), but I'm betting they have a nice convenient backdoor regardless. HTTPS as a centralized protocol will hopefully be obsoleted by better, decentralized ways of propagating HTML. I look to IPFS as an interesting approach that may be part of that solution. Also, considering that multicast in IPv6 might actually properly function instead of crap implementations from ISP to ISP, that could be a great way to save on needless duplicative packets for broadcast data (such as Bitcoin blocks, for example). The cost that Protonmail incurs for independent DDoS mitigation is ridiculous. It's almost a form of extortion. Watch it turn out that these companies are behind the DDoS attacks themselves, nothing suprises me anymore as to the lengths that greedy people will go to.
Why no bitcointalk forum coin with ICO
You earn coins by posting, and devs & sysadmins are paid with it?
Everything is creating tokens and ICOs... Even without value...
This place here is valuable!
Decentralise the Forums!
That would mad, the whole point of this forum is to have the public have a balanced or neutral stance in the cryptocurrency community. Creating a token or ICO for BTCtalk is effectively the same as losing net neutrality in the CC industry. I don't support ICOs for everything under the sun, nor are distributed ledgers code that solve all problems of humanity. Both of these things are tools that have proper uses and, unfortunately, many attempts at applying them well beyond their competencies. If I had a spare 10 or 50 BTC I would certainly donate it to this forum because it has taught me so much over the years and remains one of the few gems that remains free from moderation for political reasons. Despite many complaints I've read, I believe the new merit system will make big impacts on the number of crap posts and improve the fidelity of the forum. Personally, I would never want this forum to be closed or behind a paywall of some sort. I believe that community communication benefits all those that pursue truth. When it comes to information, such as the discussion that takes place on this forum, everyone should be able to openly share their views. This is a big part of the reason that the world is increasingly being seen as the huge corrupt racket that it is, and has been for many decades, even centuries. We just couldn't share our findings with each other easily before. Because we can now, we've been able to build off of each others knowledge, as a collective, that can be expanded upon. This is the power of the Internet, the ability to communicate your message to the world instantly. Next phase, to pull that corruption down and rebuild it with better, more fair and transparent constructs. Bitcoin being the very first of those, and arguably the most impactful as it goes straight to the core of the corruption, the banksters. Best regards, Ben |
|
|
|
I would change your password if you entered it there, it's purpose is to gather your username/password
I didn't. I knew if wasn't BitcoinTalk. My point was that I can't login even if I wanted to because the captcha isn't working. There must be a place the owners of this site can complain though right?
I don't think so. Maybe you can report it if the website is paying Google to be advertised at the top of the page when you search "BitcoinTalk", but you can't easily take the entire site down. Here's a link to report phishing websites. I just reported them, but potentially more reports would push this site to the top of the list to be reviewed. I assume if they get enough reports, it will become one of those "red page" warning screens. I also looked and it appears that Firefox and Chrome both use Google's list: https://safebrowsing.google.com/safebrowsing/report_phish/?hl=enBest regards, Ben |
|
|
|
Quoting from another thread: Here you go: https://bitcointalk.org/merit.txt.xzSimilar to trust.txt.xz, it'll be updated weekly. It will show only the last 120 days of data; someone else should archive the old ones if you want them. Through Tor—and this is not the first time I’ve had this problem: $ wget -S https://bitcointalk.org/merit.txt.xz
--2018-03-04 14:59:20-- https://bitcointalk.org/merit.txt.xz
Resolving bitcointalk.org (bitcointalk.org)... 104.20.208.69
Connecting to bitcointalk.org (bitcointalk.org)|104.20.208.69|:443... connected.
HTTP request sent, awaiting response...
HTTP/1.1 403 Forbidden
Date: Sun, 04 Mar 2018 14:59:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Set-Cookie: __cfduid=d96a5721469bb369ae9866953b833f0d91520175581; expires=Mon, 04-Mar-19 14:59:41 GMT; path=/; domain=.bitcointalk.org; HttpOnly; Secure
CF-Chl-Bypass: 1
Cache-Control: max-age=2
Expires: Sun, 04 Mar 2018 14:59:43 GMT
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=2592000
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 3f65354a2c56729b-AMS
2018-03-04 14:59:23 ERROR 403: Forbidden.
I have had the same problem with PGP keys and the trust database. Even right-clicking to save images from within a browsing session oft (inconsistently) results in a Cloudflare 403 HTML file, apparently due to some weird quirks in how Tor Browser interacts with Cloudflare’s control-freakiness. I request a workaround or solution for this general problem. (Note: “VPN” is a non-answer.) For the downloads problem, if the downloads do not require you to be logged in, accessing the BCT server by its direct IP address and/or a DNS record that resolves to the IP should make it accessible, provided BCT hasn't blacklisted all non-CF IPs. For the website issue, how about 2FA, that could help the situation? As you know, anytime a CDN has your certificate, they can intercept your traffic if they choose. You could also make a login URL that is not routed through CF. I don't know how much hacking of SMF it would take to implement that. Actually, cloudflare might have a way to direct certain URLs to directly point to the backend (BCT) servers. I haven't messed with them in a while, since before they started doing their shared SSL service, so I'm not positive about this. On the other hand, this might not address the problem that putting in a CDN was designed to prevent. If the DDOS attacks were directed to the login URL it would then be vulnerable again. I have an inherent distrust of infrastructure services that I don't control, which is why I try to avoid CDNs. However, I have no website with as much traffic as BCT, so have never had to deal with that situation. Best regards, Ben |
|
|
|
|
Hi all,
I try to, as much as possible, avoid the dumb, repetitive posts that really contribute nothing to the discourse here. In so doing, I run across posts that I feel deserve merit but I don't have any to give, so I've begun to bookmark them to revisit and merit when I can.
One potential idea that might be considered by those that decide (theymos) on such things, a little down the road after the merit system has matured some, is to consider giving some amount of "bonus" sMerits to accounts at the time that they level up (excluding the levels with 0 merit requirements). For example, if achieving Full Member level gives a person, idk say 10 sMerits, it could help to improve sMerit distribution. This "bonus" should not accrue to an accounts Merits, only their sMerit count.
Best regards,
Ben
|
|
|
|
https://bitcointalk.org/Looks and reads exactly like this one, but it is easier to load. There was a google link to it, when I clicked, I did not notice the differences. I mean there seems to be a lot of messages as well. So is it a copy cat or a scam, or is it another branch of this site? I've ALMOST done the same, after Googling something. Beware, it is just a way for them to take your password. They don't actually have the passwords for accounts on Bitcointalk.org, so it's an elaborate mirror phishing scam. Some of these sites can steal your password even if you don't press the submit form, as they have AJAX code that runs in the browser that will send what you're typing to their server (similar to how autocomplete works on google.com, for example). So it's a good idea to change your password if you've ever been tricked into even beginning to type this sites password. I use KeePass for this reason, I don't know many of the passwords I use, KeePass does. Here's something you can do to make sure you never reach that site, redirect bitcointalk.to to 127.0.0.1 (localhost). In Windows this is done as follows: 1. Open Notepad or another text editor AS ADMINISTRATOR. If you open it as a normal user, it won't allow you to write to your hosts file. 2. Use File | Open to open this file: C:\Windows\system32\Drivers\etc\hosts (Note, the file has no extension. This is proper.) 3. Add the following, on a line by itself, to the end of your hosts file: 4. Save the file. Now, any time your browser does a DNS lookup for "bitcointalk.to", it will resolve to the loopback/localhost IP and you'll get a timeout, since you're not running a web server. You may have to reboot for this to take effect, but I don't think so. If you want you can do a command prompt and "ipconfig /flushdns" should take care of it. Hope this helps, that site should really come up redlisted in browsers. Not sure why it doesn't. Maybe I'll report it today. Best regards, Ben |
|
|
|
Wouldn't the SEC still come after the institution that was created for such a purpose?
I think if an entity was created for the sole purpose of evading U.S. securities law that they would absolutely be out to get you. So the question can better be framed as, how do you not violate U.S. securities law but create a structure that U.S. persons or businesses could participate in? Most of the securities laws are designed to protect investors from fraudulent investments, not the other way around. As a U.S. person, I can buy shares of a foreign corporation, for example. Provided I do not evade taxes, and I make an FBAR filing to FinCEN and the form 8938 to IRS, this is perfectly legal (except with respect to entities that are subject to U.S. economic sanctions, of course). This is a tricky legal area and you should really seek expert advice of competent legal counsel before attempting something that could expose people to civil and potentially even criminal liability. Best regards, Ben |
|
|
|
Hello, Can I restore my wallet on vps if I have usermane and password (bitcoin.conf) only. My wallet.dat was been removed  Thanks. Good luck recovering your wallet, I hope you can get it. After though, I suggest that you implement a better solution for secure storage than just throwing a wallet.dat file on a VPS. Businesses that host VPSs, even reputable ones, have curious techs that can look through VPS filesystems, oh you know, maybe for a file that has the name wallet.dat. I don't know what you use Bitcoin for on a VPS but depending on the application you should move backend systems either internally (my choice) or in some other way into a much more secure setting than a VPS. Best regards, Ben |
|
|
|
I recommend you use this before considering an outside service. It is pretty easy to install and run. I'm sure you know this, but absolutely do NOT give anyone your WALLET.DAT file for any reason. Good luck with your wallet cracking! Best regards, Ben |
|
|
|
I give! Which one is the blue pill and which one is the other blue pill? In case I mistaken the representation, which one is the red pill and which one is the other red pill?
nullius is the real Bitcoin. |
|
|
|
If you believe that you have quality posts for all 20 of your most recent posts then I will review them and if I agree I will give you 14 merit.
Sr. Members and below only. However. if I heavily disagree I will add a neutral feedback to your account indicating that you are a spammer. Game on. This is for those that complain about not being rewarded for quality content. Disclaimer: I will only review the twenty posts that occur before your message. *arbitrary amount is because of the sMerit I have left.
Please, don't send me merit. If you have merit to spare then give it to those that need it. Or save it, and in the likely case that there are more people here that deserve merit than I have available, you can send them the merit instead. I am not sure about all of my most recent 20 posts, at least a few in there are probably rather short posts as the context wasn't appropriate for a needlessly long and detailed post. But I don't think I would be considered a spammer, I do try to share what I know or my thoughts on a given topic. I try to contribute where I can, I think the merit system is a good approach to improving post quality. Of course, I recognize that any adjustment is something that takes time and often generates controversy. Best regards, Ben |
|
|
|
ill watch this,get in touch to this such innovation,think will be in great success
Hello Maryann, Thank you! We know we're going to do great things. We are working on some partnerships to announce next week. Hope you have a great weekend. Best regards, Ben |
|
|
|
That was very detailed. A lot to read. I guess the one thing that I got out of it is how long reaching the US government can be even if they're out of their jurisdiction, by doing thing indirectly.
I strongly disagree with my government acting this way. They abuse their position of dominance and this is one of the things that attracts me to cryptoassets, overcoming these financial gatekeepers. It's not immediate, and in the end I believe that the governments will see some advantage in doing the same, but only after they've tried everything else first. This quote comes to mind: First they ignore you, then they laugh at you, then they fight you, then you win.
Best regards, Ben |
|
|
|
I hope bech32 is more widely implemented ASAP, including on other cryptocurrencies, especially ones based on BTC addressing. Having a human-readable prefix that clearly differentiates between various crypto assets is a great boost to usability as Bitcoin adoption grows to less technically savvy people.
Thanks to the 0.16 Bitcoin Core update, bech32 might become more popular in short period of time. It isn't default type of address, though. If they forced people to use them then the adaptation would be much faster but there are many services and exchanges which still don't support sending to such addresses. It looks like they don't really care about fees. I really like your attitude to Bitcoin Core's actions. Most people would like to push a lot of upgrades as soon as possible. It causes a lot of technical problems and tension in the community. Since scalability problem seems to be solved for now (assuming that Lightning Network will succeed soon), maybe it's time for making transactions more private? Although, I'm afraid that this could lead to ban of Bitcoin in more countries. Service providers are not inclined to do any more work than their customers demand until they reach a point that they have to expand functionality in order to attract new ones. It's unfortunate, but unless the business sees a direct benefit (ROI) to implement this or that, they have no incentive. But, like the very careful and deliberative improvements in Bitcoin Core, they also need to be careful with deploying upgrades to their platform. If I were an exchange, I'd hope I'd be able to have some staff engaged in the evolution of Bitcoin, at least aware of what is coming so that code to support potential PRs could be written and begin QA when it was still in pre-release. I know there are extra costs involved in doing that, but I also see extra benefits and believe that key influencers in the market would also notice and that could be a benefit from a marketing perspective. I think it's responsible for any major crypto business to figure in enough of a testnet infrastructure as well as a certain amount of payroll that would subsidize staff participation in the underlying open source projects. That's my view, I don't believe that every business should wait until something is "in Core" before they begin planning for things that are very likely to be in the next release. Best regards, Ben |
|
|
|
|
Show Posts
