maybe he got it before you encrypted it... else you can trust my personal windows builds (they are on github)... i might code sign them in the future...
if somebody know a cheap way to do it... (a place to buy signatures for personal users)
You can use a PGP/GPG key pair to sign the binary. Then you must just make sure that someone trustworthy has signed your key. Perhaps you have gone through a key party in the past? You can generate a key pair with several tools eg. Kleopatra. If you are willing to spend the money, you can buy a code signing certificate from one of the CSP's https://www.digicert.com/code-signing/ |
|
|
|
I do know what I am talking about regarding cryptography, it is my job. Explain to me what is wrong with my explanation if you know it better.
Ok, answer the following for me: 1) Can you tell me the key length of the private key of a wallet? 2) Can you tell me who "chooses" the private key - the "wallet" or the user? 3) At which point does the redundancy of the language come into play - a) upon private key generation or b) when a user decides to encrypt his wallet with a password of his choosing? 4) After you have explained 1-3 can you explain the relevance of the users wallet password and redundancy of a language to the private key in the wallet and how you will derive the private key of the private/public key pair from the public key if you happen to obtain the users wallet password from a rainbow table of some sorts that you are referring to? Sure I can: 1) The lenght is 256 bit or 32 bytes if you like 2) The input for the hash function that produces the private key can be from human input or from a (strong) random generator (that is built into the wallet) 3) If I understand this question right: In both situations 4) It is not about getting the users wallet password with a rainbow table. See answer 2 where it is possible to have human input (so called brain wallet) for the hash function that results in the private key. Also see the details of the sausage example. It is only in the case of where a private key of a public/private key pair is a function of a human input, that the redundancy of the user's language could potentially cause a reduction of the key space. If you do the maths it is not feasible to create a rainbow table for 256bits and in addition there is not enough computing power in existence today to attempt that. Of course that is true, but I did not say that a rainbow table is good for brute forcing the complete 256bit space. In fact it is pretty worthless in that case. (Although it might be fun to do it) |
|
|
|
I do know what I am talking about regarding cryptography, it is my job. Explain to me what is wrong with my explanation if you know it better.
Ok, answer the following for me: 1) Can you tell me the key length of the private key of a wallet? 2) Can you tell me who "chooses" the private key - the "wallet" or the user? 3) At which point does the redundancy of the language come into play - a) upon private key generation or b) when a user decides to encrypt his wallet with a password of his choosing? 4) After you have explained 1-3 can you explain the relevance of the users wallet password and redundancy of a language to the private key in the wallet and how you will derive the private key of the private/public key pair from the public key if you happen to obtain the users wallet password from a rainbow table of some sorts that you are referring to? Sure I can: 1) The lenght is 256 bit or 32 bytes if you like, which results in 16^64 or 2^256 possibilities. 2) The input for the hash function that produces the private key can be from human input or from a (strong) random generator (that is built into the wallet) 3) If I understand this question right (bit of a language barrier): In both situations 4) It is not about getting the users wallet password with a rainbow table. See answer 2 where it is possible to have human input (so called brain wallet) for the hash function that results in the private key. Those can be brute forced with a rainbow table. Also see the details of the sausage example. |
|
|
|
Even with that, can't some hacker just generate a rainbow table? They would compare their rainbow table to the blockchain, and when they get a match, just import the private key into their wallet and steal those coins? Or would that be too unwieldy?
http://directory.io <-- bitcoin http://buttcoins.com <-- bitcoin, clamcoin, dogecoin, litecoin Start searching. Those websites contain every possible address and private key. Those sites are probably fake or maybe contains only a tiny fraction of the keyspace. It is not possible to create a rainbow table for Bitcoin with today's technology. It will take too much time and energy and storage space. There are so many links to quote where people have already answered why this is not possible at this point. Just google it. Ill past a few: Link 1Link 2Link 3Rainbow tables can still be usefull for weak private keys. As I have read the private key can be a sha256 hash of every possible (non zero) input. Now if you take a dictionary of common words there is a change of hitting a valid private key. Like for example 'sausage' if you hash the string 'sausage' and import the (base58 encoded) outcome in your bitcoin wallet you will see that it was used. They are als usefull for keys generated with weak random number generators (like in Android or Java). I investigated the hack where I lost my coins and I do not think it was done with a trojan. My geuss is that the axiom wallet rpc interface is vulnerble for buffer overflow or maybe it uses a weak random generator. I am still investigating it, but my network logging does not show signs of a trojan. You dont have a clue what you are talking about regarding public/private key cryptography do you? I guess this also applies to you. Are you sure you have no signs of a trojan on your system? Upload your wallet and minerd again and compare the virustotal hashes. https://bitcointalk.org/index.php?topic=1135151.msg12024102#msg12024102I do know what I am talking about regarding cryptography, it is part of my daily job. Explain to me what is wrong with my explanation if you know it better. Let me explain the sausage example (all uncompressed): SHA256(sausage) = 30caae2fcb7c34ecadfddc45e0a27e9103bd7cfc87730d7818cc096b1266a683 BASE58(30caae2fcb7c34ecadfddc45e0a27e9103bd7cfc87730d7818cc096b1266a683) = 5JBmuBc64pVrKLyDc8ktyXJmAeEwKQogn6jsk6taeq8zRMtGZrE Now the derived public key will be 1TnnhMEgic5g4ttrCQyDopwqTs4hheuNZ Check the block explorer: https://blockchain.info/address/1TnnhMEgic5g4ttrCQyDopwqTs4hheuNZThe result, a public and private key based on the word 'sausage': 1TnnhMEgic5g4ttrCQyDopwqTs4hheuNZ 5JBmuBc64pVrKLyDc8ktyXJmAeEwKQogn6jsk6taeq8zRMtGZrE Now tell me, where am I wrong? |
|
|
|
I got hacked today through one of axioms CPU miners. Beware mates , all the appdata content were downloaded...
not so long i lost all my crave and various ppl are reporting of different hack on different coins getting stolen. funny thing is i believe there is some sort of 0day exploit as recently malwarebyte blocked one IP trying to remote control axoim running wallet. maybe someone with skills could explore that area. Rainbow tables can still be usefull for weak private keys. As I have read the private key can be a sha256 hash of every possible (non zero) input. Now if you take a dictionary of common words there is a change of hitting a valid private key. Like for example 'sausage' if you hash the string 'sausage' and import the (base58 encoded) outcome in your bitcoin wallet you will see that it was used. They are als usefull for keys generated with weak random number generators (like in Android or Java). I investigated the hack where I lost my coins and I do not think it was done with a trojan. My geuss is that the axiom wallet rpc interface is vulnerble for buffer overflow or maybe it uses a weak random generator. I am still investigating it, but my network logging does not show signs of a trojan.
getting closer? I have the same thoughts. Somehow the axiom wallet has a vulnerability but I am not sure what. Looking through the sourcecode now to see if I can find unchecked buffers or other vulnerabilities. |
|
|
|
Sorry , I misunderstood , The Hack weren't trough Axiom's miner , it was elsewhere..
Did you had the RPC or P2P port exposed to the internet? What address were the coins sent to? |
|
|
|
Even with that, can't some hacker just generate a rainbow table? They would compare their rainbow table to the blockchain, and when they get a match, just import the private key into their wallet and steal those coins? Or would that be too unwieldy?
http://directory.io <-- bitcoin http://buttcoins.com <-- bitcoin, clamcoin, dogecoin, litecoin Start searching. Those websites contain every possible address and private key. Those sites are probably fake or maybe contains only a tiny fraction of the keyspace. It is not possible to create a rainbow table for Bitcoin with today's technology. It will take too much time and energy and storage space. There are so many links to quote where people have already answered why this is not possible at this point. Just google it. Ill past a few: Link 1Link 2Link 3Rainbow tables can still be usefull for weak private keys. As I have read the private key can be a sha256 hash of every possible (non zero) input. Now if you take a dictionary of common words there is a change of hitting a valid private key. Like for example 'sausage' if you hash the string 'sausage' and import the (base58 encoded) outcome in your bitcoin wallet you will see that it was used. They are als usefull for keys generated with weak random number generators (like in Android or Java). I investigated the hack where I lost my coins and I do not think it was done with a trojan. My geuss is that the axiom wallet rpc interface is vulnerble for buffer overflow or maybe it uses a weak random generator. I am still investigating it, but my network logging does not show signs of a trojan. |
|
|
|
I did a scan upfront on total virus, but it says bitcoinminer which was in my eyes not harmfull. After the hack I installed trend micro antivirus and it says trojan.
Guess I have to find another hobby.
I'm sorry to hear that. You just scared me into doing everything I'm suppose to do with these coins. 1. Encrypt wallet with password generated by Keepass. Then unlock for staking only. 2. Back up wallet to DVD. 3. Run all new programs in sandboxie, until I trust them. I may start running my browser under sandboxie too. I hate the internet. You have to go through a million steps, to make yourself more secure. Then some hacker comes up with ways to circumvent them all. (sigh) You are so right. I am banging my head against the wall. If I have locked the wallet it probably would have prevent the hacker from sending the coins. Internet sucks if used wrong. |
|
|
|
My wallet was hacked and I lost all my coins. Does anyone know what to do? Here is the address where my (~6400) coins were sent to: ASHm2o4DJKuo8stZBNC6qHWPuRqmA3AKFD Is it possible to find the IP adres of the address owner? Man, I feel sick about it.  you use more than one wallet on your computer? No, just my single wallet. It shows 2 debit transactions to the address above. Why you think I use more than one wallet? Here is info about the transactions: Status: 1898 bevestigingen Datum: 31-7-2015 19:14 Aan: ASHm2o4DJKuo8stZBNC6qHWPuRqmA3AKFD Debet: -6215.00 AXIOM Transactiekosten: -0.00004 AXIOM Netto bedrag: -6215.00004 AXIOM Transactie-ID:: e29f060d55dcb69f412e45167a63a9df6e0d83750349e6b1a1aaedcff808d827-000 --- Status: 1889 bevestigingen Datum: 31-7-2015 19:19 Aan: ASHm2o4DJKuo8stZBNC6qHWPuRqmA3AKFD Debet: -296.24079716 AXIOM Transactiekosten: -0.00001 AXIOM Netto bedrag: -296.24080716 AXIOM Transactie-ID:: 1cdd70f2a6e8165c560fbd631e36bf10555d6608233fa3ad0ba17f60847770c4-000 Oh Shit sorry to hear mate.. Where did you download the wallet from? I downloaded the original wallet from the OP. I think that the miner software I downloaded was the cause. It includes a trojan. very likely that you have a Trojan 99.9% often read about such cases  I did a scan upfront on total virus, but it says bitcoinminer which was in my eyes not harmfull. After the hack I installed trend micro antivirus and it says trojan. Guess I have to find another hobby. |
|
|
|
My wallet was hacked and I lost all my coins. Does anyone know what to do? Here is the address where my (~6400) coins were sent to: ASHm2o4DJKuo8stZBNC6qHWPuRqmA3AKFD Is it possible to find the IP adres of the address owner? Man, I feel sick about it. you use more than one wallet on your computer? No, just my single wallet. It shows 2 debit transactions to the address above. Why you think I use more than one wallet? Here is info about the transactions: Status: 1898 bevestigingen Datum: 31-7-2015 19:14 Aan: ASHm2o4DJKuo8stZBNC6qHWPuRqmA3AKFD Debet: -6215.00 AXIOM Transactiekosten: -0.00004 AXIOM Netto bedrag: -6215.00004 AXIOM Transactie-ID:: e29f060d55dcb69f412e45167a63a9df6e0d83750349e6b1a1aaedcff808d827-000 --- Status: 1889 bevestigingen Datum: 31-7-2015 19:19 Aan: ASHm2o4DJKuo8stZBNC6qHWPuRqmA3AKFD Debet: -296.24079716 AXIOM Transactiekosten: -0.00001 AXIOM Netto bedrag: -296.24080716 AXIOM Transactie-ID:: 1cdd70f2a6e8165c560fbd631e36bf10555d6608233fa3ad0ba17f60847770c4-000 Oh Shit sorry to hear mate.. Where did you download the wallet from? I downloaded the original wallet from the OP. I think that the miner software I downloaded was the cause. It includes a trojan. |
|
|
|
My wallet was hacked and I lost all my coins. Does anyone know what to do? Here is the address where my (~6400) coins were sent to: ASHm2o4DJKuo8stZBNC6qHWPuRqmA3AKFD Is it possible to find the IP adres of the address owner? Man, I feel sick about it. you use more than one wallet on your computer? No, just my single wallet. It shows 2 debit transactions to the address above. Why you think I use more than one wallet? Here is info about the transactions: Status: 1898 bevestigingen Datum: 31-7-2015 19:14 Aan: ASHm2o4DJKuo8stZBNC6qHWPuRqmA3AKFD Debet: -6215.00 AXIOM Transactiekosten: -0.00004 AXIOM Netto bedrag: -6215.00004 AXIOM Transactie-ID:: e29f060d55dcb69f412e45167a63a9df6e0d83750349e6b1a1aaedcff808d827-000 --- Status: 1889 bevestigingen Datum: 31-7-2015 19:19 Aan: ASHm2o4DJKuo8stZBNC6qHWPuRqmA3AKFD Debet: -296.24079716 AXIOM Transactiekosten: -0.00001 AXIOM Netto bedrag: -296.24080716 AXIOM Transactie-ID:: 1cdd70f2a6e8165c560fbd631e36bf10555d6608233fa3ad0ba17f60847770c4-000 |
|
|
|
My wallet was hacked and I lost all my coins. Does anyone know what to do? Here is the address where my (~6400) coins were sent to: ASHm2o4DJKuo8stZBNC6qHWPuRqmA3AKFD Is it possible to find the IP adres of the address owner? Man, I feel sick about it. Transaction info: Status: 1899 bevestigingen Datum: 31-7-2015 19:14 Aan: ASHm2o4DJKuo8stZBNC6qHWPuRqmA3AKFD Debet: -6215.00 AXIOM Transactiekosten: -0.00004 AXIOM Netto bedrag: -6215.00004 AXIOM Transactie-ID:: e29f060d55dcb69f412e45167a63a9df6e0d83750349e6b1a1aaedcff808d827-000 --- Status: 1889 bevestigingen Datum: 31-7-2015 19:19 Aan: ASHm2o4DJKuo8stZBNC6qHWPuRqmA3AKFD Debet: -296.24079716 AXIOM Transactiekosten: -0.00001 AXIOM Netto bedrag: -296.24080716 AXIOM Transactie-ID:: 1cdd70f2a6e8165c560fbd631e36bf10555d6608233fa3ad0ba17f60847770c4-000 |
|
|
|
Going back to 20k, and i tripled my coin. It's good to have faith sometimes.
Man, I almost lost it. |
|
|
|
|
I quit crypto currencies. It is all thin air.
|
|
|
|
Does the wallet built-in mining funtion work or is it better to use the seperate miner?
the built in miner will allow u to solo.. unless u have a massive cluster id consider joining a pool coin works its secure and is amazing i dont see how a scam can be hatched from that when dev has allready delivered...
think about this
some people got a large amount of coins for nothing (wish i was one of em)
other people want desperately to gain a large amt of coins from those people before some other people panic and pull the trigger (i was that guy yesterday)
anyone with basic knowledge of this movement can see this is not your typical litecoin clone
let the desperate panic and the foolish sell
i think we all iknow what we got here
btw pos works great and i just minted 75 coins so whatever you do DONT PUT YOUR COINS IN YOUR WALLET I dont want more weight to compete with
Indeed Mick, the staking is highly rewarding, even over mining at the moment.  glad that you are enjoying this project. We have another crypto first coming for you to enjoy soon. killer i cant wait till u finish brewing your digital jawdropper i look forward to seeing all those geeky smart people turn green with envy ...just imagining this technical feat is one thing but when you pull it off ....... some one might literally die from shock .. everyone make sure u are seated when he unveils "the worlds first m************t" Woke up this morning and you know what? 2 blocks mined with the built-in miner. Now, am I lucky or what? |
|
|
|
Does the wallet built-in mining funtion work or is it better to use the seperate miner?
the built in miner will allow u to solo.. unless u have a massive cluster id consider joining a pool Well, I will try just for fun  |
|
|
|
|
Does the wallet built-in mining funtion work or is it better to use the seperate miner?
|
|
|
|
difference is ibits is scamm coin, and this is not I hope you are right. About 80% is scam these days, but this coin and dev looks trustworthy. |
|
|
|
BYE Now we are flying to the Moon!!!  +1 lets go  Moon is at 0.04 just like IBITS |
|
|
|
|
No block source available? Something wrong? All my wallets are behind. Please help!
|
|
|
|
|
Show Posts
