Bitcoin Forum
June 25, 2024, 09:38:02 PM *
News: Latest Bitcoin Core release: 27.0 [Torrent]
 
  Home Help Search Login Register More  
  Show Posts
Pages: « 1 ... 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 [310] 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 »
6181  Other / Beginners & Help / Re: How are addresses guaranteed to be unique? on: September 27, 2012, 12:34:25 AM
I don't think you realise just *how* remote the chances are - so perhaps consider the following:

1) You win 1M lottery - seven days in a row.

2) You just miss getting hit by a jumbo jet falling out of the sky - seven days in a row.

3) You managed to pick up a Hollywood movie starlet - seven different starlets seven days in a row.

All of the above happening are more likely than the chance of two addresses being the same.

Got it now. Wink
6182  Other / Beginners & Help / Re: Transaction fees on: September 26, 2012, 12:50:45 PM
Transactions are prioritized according to a few criteria:

1) Their size.

2) The age of their inputs.

3) Any fees you have included.

If the size and age are no problem then fees are currently not necessary at all (although they may not be prioritized as highly as those that include fees).

If the size is large then a small fee per kb is required and if not too big but the inputs are too recent then a minimum fee (of 0.005 I think) is required to be processed quickly (small tx's without fees that have inputs that are too young will just end up having to wait until they become old enough to process).

Currently a tx will only end up as "dead" (never to be processed) if it is above the minimum size and no fee has been provided (most clients will not let you easily create such a tx).

If you elect to pay more fees than necessary then it is up to miners to decide whether to prefer your tx (I assume in general they would - and especially since the introduction of Satoshi Dice).

In recent times I have noticed that tx's that do not include any fees (but don't need to) can be delayed quite a bit (say several hours) vs those that do.
6183  Economy / Economics / Re: Can bitcoin die at some date because of stranded bitcoins? on: September 25, 2012, 03:30:21 AM
No different to dollar bills lost or stuffed into mattresses that were forgotten. Smiley

Seriously dollar bills don't have an expiry date so why would we want them for bitcoins?

I guess it is perhaps likely that within 100 years the ECDSA used for the key pairs will have become insecure and another algo will be needed (effectively forcing all to "upgrade" their bitcoins or risk losing them).
6184  Economy / Service Discussion / Re: China biggest bitcoin portal www.hxtop.com was hacked! on: September 24, 2012, 07:28:55 AM
but anyway: good work; if you could make it bitcoin aware (eg provide functions/triggers which communicate directly with bitcoind) i might take a look instead of reinventing the wheel.

Thanks - I will be adding support for "bitcoind" calls as part of the first application I intend to promote with the launch of the system later this year (can't say much about the application itself).

Apart from the "secret application" it already has Forum and Blog packages and it will also have a complete webmail application as well (with GPG support).
6185  Economy / Service Discussion / Re: China biggest bitcoin portal www.hxtop.com was hacked! on: September 24, 2012, 07:14:26 AM
It's perhaps a little more like a complete platform (such as Ruby on Rails) and sure I understand not everyone wants to learn how to work with such a beast.

The really good thing about the system/platform is that you can build complete web applications without writing code at all. Smiley
6186  Economy / Service Discussion / Re: China biggest bitcoin portal www.hxtop.com was hacked! on: September 24, 2012, 07:00:40 AM
ok, but this requires a rewrite of all sql statements of the existing site.
so their is no need for your layer - just go with named parameters then and you are fine

Well not a rewrite of SQL statements (as there are none in my system) but it would be an entirely new application so I do understand that it's probably more likely that some sort of minimal approach (as you suggest) to fixing things up would be taken.
6187  Economy / Service Discussion / Re: China biggest bitcoin portal www.hxtop.com was hacked! on: September 24, 2012, 06:46:06 AM
select * from users where user='flower' and pwd='flower'
select * from users where user='flower' and pwd='flower' or ''=''

how does your layer detect the second fraudulent call?

There are no SQL queries manually coded anywhere in my system - all SQL is generated by the application server so the above simply could not occur.

A big advantage to this approach (apart from security) is that fields can be renamed without having to manually change any code (after renaming a "regenerate" performs all require changes).
6188  Bitcoin / Bitcoin Discussion / Re: Could bitcoin be made more anonymous? on: September 24, 2012, 04:50:13 AM
The tricky part of achieving the best anonymity possible is the need for "change" addresses as careful analysis of tx's can end up deducing that certain addresses belong to the same owner.

For the highly technically proficient user the raw tx API makes it possible to control exactly which addresses are being used in a tx, however, this is not something for any average user (and therefore won't help in increasing general adoption).

I think multiple wallet support will probably be of some help here for the general user (is already in some clients and I think is planned to eventually be put into the Satoshi client).
6189  Other / Beginners & Help / Re: Why do people need to borrow BTC? on: September 23, 2012, 04:13:22 PM
People that are mining bitcoins do have an ability to repay (which is not tied to any other currency) so if they are looking to increase their mining power (by purchasing more FPGA/ASIC units) then it can make perfect sense for them to be borrowing BTC.

That said - there are a lot of scammers on this forum so be careful before lending out your bitcoins.
6190  Economy / Service Discussion / Re: China biggest bitcoin portal www.hxtop.com was hacked! on: September 23, 2012, 03:46:24 PM
By comparing last year's transaction data (btcchina.com)   1000 btc per day has been great progress.
That means the Chinese market gradually bigger .
dod't you think?

For sure the volume has greatly increased since last year - but nothing has dramatically changed very recently (was actually a little surprised that the "memorydealers" visit seemingly had no effect this time when last time it caused a huge jump in volume).
6191  Economy / Service Discussion / Re: China biggest bitcoin portal www.hxtop.com was hacked! on: September 23, 2012, 03:37:51 PM
Could this have anything to do with the recent sell off?   Huh

I very much doubt that - the volume on btcchina has been well under 1000 btc per day for quite a while.
6192  Economy / Service Discussion / Re: China biggest bitcoin portal www.hxtop.com was hacked! on: September 23, 2012, 03:35:59 PM
I'm certain you could have public facing and searchable pages and use your encryption starting a log in.  Why would google need to index your protected pages as long as the public urls say where it is and what it does.

Yes - this is under development (just not a big priority yet).
6193  Economy / Service Discussion / Re: China biggest bitcoin portal www.hxtop.com was hacked! on: September 23, 2012, 03:30:22 PM
There's a way I learned in programming class that's much better and leaves your site google index-able.ably missing all service packs, lol.

Actually I am building CMS extensions that will generate real pages that can be indexed by Google, etc. (has just not been my priority).
6194  Economy / Service Discussion / Re: China biggest bitcoin portal www.hxtop.com was hacked! on: September 23, 2012, 03:27:12 PM
did you have any detail for me.thank you much

Sure - when you provide a password to "log in" then this is hashed along with a UUID to then encrypt an AJAX type request.

Your request will just look like rubbish to any MITM watcher and all content returned via the AJAX request (which is all the content and why Google can't see anything) is encrypted not with the same key but with another hash (determined client side from the original).

Due to the use of a UUID it is not possible to use a "replay" attack from watching the original login post (hope this makes sense).
6195  Economy / Service Discussion / Re: China biggest bitcoin portal www.hxtop.com was hacked! on: September 23, 2012, 03:11:55 PM
That's not a weakness. It's a deal breaker. Wink

For the website in question I'd guess so. Smiley

Am actually hoping to go up against the likes of Diaspora by having private content securely encrypted over plain HTTP (a feature recently developed).
6196  Economy / Service Discussion / Re: China biggest bitcoin portal www.hxtop.com was hacked! on: September 23, 2012, 03:03:08 PM
If you are interested in having a website that is SQL injection proof and cannot have source code stolen then you might be interested in the technology that I've developed (all back end code is compiled C++, all queries are via an abstraction layer that ensures SQL injection is impossible and all URLs cannot be tampered with due to checksum protection).

The one weakness at this stage with the technology is that Google can't even search your site (all queries are through the main website URL). Smiley
6197  Bitcoin / Development & Technical Discussion / Re: Could a "moderate" attack to Bitcoin help on the long term? on: September 23, 2012, 09:42:17 AM
1. Bitcoin-Qt interface sucks hard. And there is nothing that I can reasonably do about it.
2. Old Bitcoin version allow me to send without any transaction fees. I dont trust the no-tx mod of newer Bitcoin.

I didn't really like the UI change to QT initially but I must say now that it has grown on me (and has improved with the last couple of versions). Also there is no problem with setting the tx fee to zero.

Perhaps you might consider giving it another try?
6198  Bitcoin / Bitcoin Technical Support / Re: sendfromaddress method? on: September 23, 2012, 04:50:39 AM
Unfortunately it is very "low level" and so will take a bit of working out but if you want complete control over tx's it is the only way you are going to get it (the other patches that have been done aren't nearly as comprehensive as this raw approach is).

The accounts are very unintuitive - you tie one to an address via setaccount but actually that is only being done for the purposes of tracking incoming tx's. Outgoing tx's get their account label from the account label provided when you send (having nothing to do with any address you may have have "tagged" with setaccount).

So an account is not an address but instead a label applied to a tx. The design is for dividing a wallet up into separate user accounts as say an exchange might do and is most useful for the case of transferring bitcoin between such accounts without having to actually perform a real tx.
6199  Bitcoin / Bitcoin Technical Support / Re: sendfromaddress method? on: September 23, 2012, 04:25:02 AM
What you want to look into is this: https://en.bitcoin.it/wiki/Raw_Transactions

(you get complete control of a tx using these RPC calls)
6200  Bitcoin / Project Development / Re: Vanity Address Web site - Would you use? on: September 22, 2012, 04:23:15 AM
I just checked the keyconv code again. It doesn't need boost. It's roughly a dozen lines of code that mostly use openssl fucntions,

EC_KEY_get0_private_key
EC_GROUP_get_order
BN_mod_add

and a few init/free type openssl calls.

So it should be straightforward. Once I've got further, assuming I actually go live with this, and have some time, I can write up a function and test it out. Curl should work fine for actually accessing the api. Would you be getting generating keys single or in batches? Batches is far more efficient unless the prefix is long (6-7+ chars).

Sounds very promising - I will be wanting 10,000 addresses where each address has a specific 5 character (after the 1) prefix. Do you have a rough estimate how much this would cost?
Pages: « 1 ... 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 [310] 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 »
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!