PMd you a link with what I have at the moment. Let me know if you need more. -Dave
|
|
|
1) Make a backup of the wallet.dat file before doing anything. 2) Do #1 again. Did you try starting Bitcoin Core with the -upgradewallet? You should also be able to extract the keys using pywallet https://bitcointalk.org/index.php?topic=34028.0I can probably get you an old working windows build, but since I am just an anonymous person on the internet you really should not trust me.... -Dave
|
|
|
Thank you for all your input. The amounts are lower then he expected but he might still want to sell it to get me some of my money. Keep an eye out, it may go up for auction this week / next week.
-Dave
|
|
|
It's kind of funny as I know exactly *3* people who are freelance and they all on the total opposite side of this from what the article says.
Now, it's not a real scientific study and for 2 of them it's not their "real job" more of a profitable side gig but they both think it's great. The one that does it full time thinks it's better then great.
Mostly they feel it puts the smaller writers doing side jobs on one side and the ones that do this for a living on the other. Or as the full timer put it (more or less)
"If you do handyman work on the side people don't expect you to have the best tools, an amazing work van, and possibly you might look the other way about a permit or 2, and that's fine. You are fixing a porch or hanging a cabinet or replacing a vanity in the bathroom. You are probably not ripping out someones kitchen and redoing everything as a side job after your real job." He then went on to say that as a full time freelancer he was frequently loosing jobs to people who would undercut him on similar spec articles because as he put it, they were not paying their own insurance, didn't have a real home office, etc. So now, if the publications want to really keep doing this then they are going to have to make a decision as to (once again his words) "use the day laborers standing in front of Home Depot to do your remodel or hire a real contractor"
The part timers think it's good because they feel that if they do cross the threshold it's a badge of honor type thing and can demand more $ from the publishers since they are obviously used a lot.
Now, I don't have a real view on this, I just got sucked into the conversations with all them at different times over the last week about this and then saw this post today. I figured I would wind up playing some sort of referee but they all more or less had the same view.
Could be for many different reasons, don't know or for the most part care. Just figured I would share. Feel free to ignore....
-Dave
|
|
|
Did you email support or call them? I have found calling tends to be better but they only have US 888-908-7930 or UK 0808 168 4635 numbers. You can stay on the phone to deal with the issue as opposed to waiting for an email reply.
-Dave
|
|
|
So I got this in my email today: This week, a handful of BitPay cardholders let us know about unauthorized purchases made online and/or at several specific retail stores. While these appear isolated, we wanted to encourage you to review your transactions in light of what we have learned. BitPay does not hold your card number or process Visa card transactions. As such, we are working with BitPay’s card program manager to investigate all unauthorized transaction activity with Visa and resolve these issues as soon as possible. Please report any unauthorized card transactions directly to 1-855-884-7568. A cardholder services specialist will help you. So, it looks like their card provider got hit. Figured I would post about it for the people that might not see it in their email. -Dave This is really a sad news for their customers who got it by this shady activity perpetrated by some people. What BitPay have just done with this mail is just to get ahead of the situation and by putting the clause that they don't keep card details of their users is absolving themselves of responsibility which I feel is not ideal for a business to do. What trust are they trying to build in the crypto market especially to those who haven't used their services? When unauthorized transactions happen on visa and MasterCard, you approach your bank issuer and they take responsibilities not shifting and making it seems its not their responsibility. The problem is BitPay might contractually be able to do anything or even have access to do anything. More then likely from what I have been seeing they may not even have access to any card management back end. You log into their site and load your card and see your transactions but as I said in my above post they probably are just displaying data from and sending data to the card providers site. No different then if you contracted with MCB to provide the audaciousbeing prepaid Visa. Just my view from what they have said and having done something similar before. -Dave
|
|
|
It is important to destroy a session after you withdrawn all funds from it. We place a 25 days auto deletion timer on sessions, to protect users who may have forgot this step. Destroying a session wipes the session key off the server, making it as if the session was never created.
Do you have actual physical possession of your server in your data facility or is it hosted someplace else? -Dave
|
|
|
Short version, someone owes me some BTC, willing to pay some of it off by giving me a low number Kialara balls in the 60s range.
If I had to sell it to one of you tomorrow what do you think it's worth?
Note #1 They are on this forum and aware of this post so that's why I want it 100% public so there is no "well you got this much" later. Note #2 It's possible it was originally mine as I sold him a bunch of stuff through the years. Kind of a circle of life thing. From the forum, to Dave, to someone else, back to Dave back to the forum...
Thanks, Dave
|
|
|
How long this 'survey' will last?
I'm pretty sure with 1/2 pages, we'll get repetitive answers already.
My very basic plan was to leave it open until the next big swing (up or down) and see where things went. Also, added poll. -Dave
|
|
|
A lot really depends on the price of BTC as we get closer and closer.
If it stays in the $8k to $12k range (and I know that is a big range) then I think a month or 2 after the halving we are going to see a lot of the smaller pools go just about dead as the smaller miners who were just scraping by shut down & sell their gear. I am at that point depending on where it's hosted.
Those that stay will probably wind up at PPS pools because although it is a worse deal you know when and how you get paid, instead of waiting for a block. And lets not sugar coat it, it's been 8 months since a block on CK that is a lot of time to have lost w/o getting paid. Kano is a block or 2 a month. If you are mining and holding for now that is one thing, if you are mining and trading that is another story.
The other issue is the "something else going wrong" problem. Data centers have power issues, storms take out something for a week, etc. it really can be an issue. Sorry, I do my work and I get paid.
And I know I have said it before and I'll say it again. PPS is better because you can leave when a better deal comes along with no penalty. I have all my rigs pointed at MRR with a stupid high price. If nobody wants to pay it I mine at my regular pool. If they do I am at about 15% above what a miner should make at a 100% PPS pool. I still get regular rentals as people speculate. They could be mining alts, they could be gambling on getting a BTC block, I don't care I am here to make some BTC.
-Dave
|
|
|
This one...um....30+ character passphrase? It's hard enough getting people to use more then a 5 or 6 digit pin. You want then to use a full 30+ character saying or group of words? I'm not saying it would be convenient, certainly not for day to day use (but then most people aren't transacting in huge amounts day to day so they might as well keep two trezors, one without a passphrase, another with a secure passphrase they'd use only occasionally), I just said that in case someone thought no funds are safe on a Trezor, and that's with several assumptions: the attacker gains physical access to the device, the attacker has a lot of resources (i.e. willing to design and produce ASICs just to get to the coins) and the user wants security comparable to a 24 word passphrase from a set of 2048 words. And yeah, it'd actually have to be 37 randomly chosen characters. In reality 5 randomly chosen words from a 300k word dictionary (e.g. Webster's) would still be more than enough and more user friendly. It'd also be a slightly stronger passphrase than one from randomly choosing 7 words from a set of 7776 words (long diceware word list). I love my ColdCard more each day. Just be careful in assuming that your ColdCard is completely safe. Just because an attack like this has only been demonstrated on a Trezor, doesn't mean a similar one (or indeed, a completely different attack) is not possible on a ColdCard, a Ledger, or any other hardware wallet. I guess I just don't get why at this point it's even worth getting a Trezor. I don't own a Trezor, but provided you realize that someone has physical access to it, and you have your seed backed up properly, then you should still have ample time (provided any reasonable length of passphrase) to sweep your funds to a new wallet. The entire part of hardware wallets was that even if you lost it it was still secure. Secure enough. With enough time and access to a lab with electron microscope (or money to rent such a thing), your seed is probably extractable from any hardware device. The hardware wallet buys you enough time to retrieve your mnemonic phrase and sweep your funds to new wallet. So more or less it comes down to you can just as easily have a BIP38 encrypted paper wallet with your coins on it. Because either way if it's a weak passphrase you're going to loose your BTC. Sorry to be a downer, but it just gets to me that this is out there and yet they are still selling them and people think they are safe just using an 8 digit pin. This should be a big red alert about this. -Dave
|
|
|
And I'm off to dinner. -Dave
cheers A @ 0.043 You broke my royal flush If you ever want to sell it please ping out to me 1st. Congratulations to all winners!
I will be in touch tomorrow to sort out shipping details etc. Thanks to everyone who participated, it allows me to continue making collectibles for you guys and i sincerely appreciate it ❤️
Payment sent: 4208313b01d1c4bbdbf76e0e8ac92a94c3e58bdb83a1ad195203a8cf84b3e005 -Dave
|
|
|
10 0.037 J 0.037 Q 0.037 K 0.037 A 0.042
And I'm off to dinner. -Dave
|
|
|
This one...um....30+ character passphrase? It's hard enough getting people to use more then a 5 or 6 digit pin. You want then to use a full 30+ character saying or group of words? It's an unrealistic expectation, but it is technically correct. You can read the report from Ledger where they reported on this attack here: https://ledger-donjon.github.io/Unfixable-Key-Extraction-Attack-on-Trezor/Near the bottom there is a paragraph entitled "Mitigation" where they explain their reasoning. If the seed can be extracted, then the entire security of the wallet rests on the passphrase. They suggest a passphrase of 37 random characters ( not a phrase or series of words) is necessary to reach the same level of security as a 24 word mnemonic phrase would on its own. I love my ColdCard more each day. I guess I just don't get why at this point it's even worth getting a Trezor. I can use just about any wallet with a 37 character passphrase and it will be just as secure. The entire part of hardware wallets was that even if you lost it it was still secure. I guess I am missing something. -Dave
|
|
|
The big question is more or less what is the difference between you and any of the other anonymous exchange? I can go to https://coinswap.keys4coins.com/ and exchange BTC for LTC with no KYC or other info given. Also, they most places me the exchange rate before I send, with you I have no idea of what the rate is. -Dave
|
|
|
As long as the funds are secured by a long enough passphrase (>30 characters should be good enough), they are still safe on a Trezor.
I like you malevolent I really do. Your posts are usually insightful and intelligent. This one...um....30+ character passphrase? It's hard enough getting people to use more then a 5 or 6 digit pin. You want then to use a full 30+ character saying or group of words? -Dave
|
|
|
Full disclosure when I posted this I had just left the mintdice sig campaign and put on the YoBit sig. It had nothing to to with yahoo62278 / mintdice but a change in work that would probably not let me make the required posts for a while so I went to a no minimum post signature.
With the above being said. Between yesterday and today BTC went up a lot in value vs USD then came back down a bunch high of a bit over $10k USD down to about $9150 So in theory depending on when yahoo paid and when I got up and moved it there could be a significant change in value.
Yes, I know if I paid got for something .001 that too changed a lot but, since this is a board about bitcoin, I was just wondering how you want to get your pay computed.
It's probably not going to change how sig campaigns are run since it's between the manager and the people paying for it, but since there was such a large bounce it just kind of crossed my mind. And if it is USD or other based, do you think the campaign manager should post I used this rate for conversion. Yeah, I know I can do the math in about 15 seconds but having it public might just look better. Not sure.
Just some ramblings on a Saturday,
-Dave
|
|
|
|