They don't understand it.  OpenID allows me to have strong 2 factor authentication on my mining account and Dr.H didn't need to do anything.

No need.

You can just go 6 GPU -> t-branch-> (RAD 1 & RAD 2) ->t-branch -> back to GPUs and pump.

2x radiators in parallel will dissipate 2x the heat of 1 radiator.

So how about this:

1) Only connect to nodes you trust (like major pools).
2) Don't allow incoming connections
3) Modify the bitcoind not not forward your tx to your peers.
4) Modify the bitcoind to halt tx if double spend is detected.
5) Write an API which lets you know what % of hashing power has your tx in their memory pool.

Then you can see which pools have notifies you of the tx and decline tx if double spend is detected.

So hypothetically:
Lets call tx A the payment to me, and tx B the double spend back to attacker.
My merchant node connects to the top 10 pools (roughly 80% of hashing power).
Since those pools will relay tx to me I can determine which pools have seen my tx, which have seen the double spend, and which have seen neither (yet).

If attacker sends only tx B to major pools then I will never see tx A (because it loses all races) and will almost instantly see tx B.

If attacker only sends tx A to major pools then he has a less than 20% chance of getting the double spend (actually less because unless all other miners are malicious my tx will win at least some of those races)

If attacker sends tx A to some of major pools and tx B to some of major pools I will see both hit my node.  At which point I keep attacker's funds (on the % of tx which clear) and decline the tx on grounds of attempted fraud using the cryptographically signed double spend as proof.  This creates a unique cost to attacker not present in CC fraud.  Attacker risks losing funds on a failed double spend.  

If the above method is combined with "assurity contracts" with major pools the merchant has even higher confidence (pool agrees to not replace tx it has "insured").

If the above method is combined with a "network listener" which is a node with hundreds of connections to random nodes globally which looks continually for double spends then even attempted (but likely doomed to failure anyways) double spends can be proactively detected before they even get to the merchant's processing node.


None of this prevents Finney attacks due to the fact that "tx B" is unknown but having even 1% of network hashing power is prohibitively expensive (~$1M today and likely to climb over time).  Finney attacks are also time bound and that can be exploited to make them uneconomical for small tx.  The attacker needs to delay broadcasting the block long enough to complete the tx and during that delay the chance of another node finding a block is ~0.16% per second.   This produces an expected cost to the attacker of 8.3 bitcents per second (current block reward value)
.  
Safe delay time = (purchase price / 0.083 BTC) in seconds (or ~ 1 minute for every 5.0 BTC in value)

Example:
Selling a 1 BTC game code. That has a time value of e time value of 12 seconds block delay is ~1 BTC.  So wait 20 seconds and THEN release the code.  Lets look at the long run effect of that.
20s * 0.16777% = ~3%.
97% of time attacker "wins" 1 BTC
3% of the time attacker loses 50 BTC block reward.
0.97* 1 + 0.03 *(-50) = -0.5 BTC.  The attacker has a negative expectation.  He is gambling and you are the house (w/ a 50% house advantage).

Yeah I got a workaround but it is clunky.  As I use the API more and more I am finding I want the ability to never need to remote into the rig.  Monitor from the API and have the config file control everything.

I don't think it being a database is a silly idea (maybe that is because I work w/ db everyday).  More applications that you think use databases internally.  Any mission critical I/O is going to need support for:

atomic transactions
read/write verification
high level of availability
dataloss recovery
backups

Once you implement all that you just built a good chunk of the "plumping" that makes a database and likely it isn't as good as databases which have tens of thousands of hours of development already.

Still the "db" as used by the wallet is horrible.  It really isn't a database.  More like a loosely typed flat file stuffed inside a database.  So you get all the disadvantages of flat files combined with all the complexity and disadvantages of a database.   Then it is compounded with the "weird" choice of Berkeley DB over SQL Lite.  Anyone have insight into that decision or was it simply a case of "using what you know"?

Having everything stored as varchar and recorded as a set of type, key, value is ..... yuck.

@Peter:
I never realized Satoshi didn't appreciate the need for alt clients.  Strange he saw the danger of centralization everywhere else but didn't notice the danger that centralization of development would bring.    Honestly IMHO even the term "alt client" is dangerous.  Hopefully in time Bitcoin will be evolve to a point where there are simply compatible clients and the project (under whichever name is evolves to) which began as the Satoshi client is just one of many peers.

A request for a minor feature:

ability to enable/disable a pool and change pool priorities in config file

Example:

PPLNS pays out your % of shares in the sharechain (not per block).  If payouts were per block pool hoppers would rape p2pool to death.  The sharechain is ~ 24 hours long.  So your payouts in each block will be the % of shares you contributed for the last 24 hours (not that block).  As new shares join the sharechain the oldest shares drop off.  So the payout breakdown at any particular point in time is dependent on the prior 24 hours worth of shares.

This is how any PPLNS (not just p2pool) pool works.  If your hashing power is stable after ~ 24 hours your % of payout should be roughly equal (subject to variance) to your % of pool's hashing power.  If you got 5% of hashing power you get ~5% of the reward each block.

One thing in your favor is waterblocks.  I think someone indicated they were getting ~30W less from the wall per card when watercooling the 7970.  Part of that is the fan but part of it is the fact that as a 28nm chip the 7970 has a lot of leakage (non switching load) and bringing the temp down helps improve that.

It would probably be easier to use 2 PSU but 1600W might work however you are going to need some kind of adapter to power the 6th card.

Might make more sense to go with 5x 7970s per rig.  Then power & connectors become a non-issue.

Your host (motherboard) would need to support lane splitting and multiple end point assigned to a single slot.
It is part of the spec but my understanding is 99% (# pulled out of my ass) don't and nobody indicates if they do or not.

What is useless about it?  Pretty standard merchant account terms.

This.

Tinua you were asked HOW you measured the load 3 times but have never answered?

So here goes #4.

HOW did you measure a load of 50W?  As in describe the steps, tools, and measurements that lead you to believe the single is using 50W.

Yeah it is a good pool but people should understand the "owed" funds are not guaranteed.  If the pool fails those funds could potentially never be repaid.  arsbitcoin is a good example (although IMHO the failure had more to do with neglect).

10 BTC

You can't force people not to use a service.
The point is the option will always exist.

Forcing users to use the satoshi client and only the satoshi client from now till the end of time is hardly decentralization either.

If it is possible for higher level services to be built on top of the Bitcoin network then they will.  If providers of those services break the public trust then users will move to other services or back down the "blockchain level".

+1 on everything.  The bolded part (my emphasis) is the most powerful thing about Bitcoin.  No grandma is going to learn how mining works, and confirmations, and various strengths of ciphers and 50% brute force solution time against encrypted wallet.  Bitcoin is a "platform" that will (hopefully) give rise to a whole host of higher level solutions. Some may (at least initially) be very similar to existing banks and some will be completely new.  I would imagine if Bitcoin continues to expand in 20 years very few users will be running a "satoshi style" wallet and connecting directly to the blockchain.

PM sent.  

Selling Phones is something I have considered however it will require holding (depreciating) inventory so I would want to see enough demand first but I agree that it would be a great idea.  You could pay for phone, SIM card, and airtime all by BTC.  Only phone & SIM need physical delivery and it could be anywhere you want.

Prepaid wireless is really starting to reach parity with contracted plans.

Google is selling the Galaxy Nexus (unlocked w/ no contract usable on 200 carriers globally) direct to consumers.
https://play.google.com/store/devices/details?id=galaxy_nexus_hspa

Simple Mobile (T-mobile reseller) offers unlimited plan for $40 a month.
http://www.mysimplemobile.com/plans-40-unlimited.aspx

Because banks generally have policies in place that PREVENT rapid and immediate withdrawal of all funds into cash.  Trying withdrawing 6 figures from a bank account and ask for cash.   That is why there are limits on cash advances and ATM usage.

Sure someone who has $100 it doesn't really matter but do you honestly think Warren Buffet is going to keep $22 billion (in BTC equivelent) in an android phone wallet on his nightstand? (hypothetically imagine Bitcoin is the only global currency).  The fact that thieves can easily force him to unlock his wallet makes him a target.  Having the funds OUTSIDE of his control is actual an advantage. 

If he CAN'T unlock it then he is less of a target.  If theives KNOW he can't unlock it (because every billionaire they tried to rob so far also had funds outside their control) they may not even attempt to rob him.  So maybe he has $10,000 in his personal wallet and $21.999 billion in a bank (with controls which ensure the funds can't be moved with just access to a private key.

Alternatively the bank could act as a second key with protocols in place to ensure funds are protected.

So the bank may auto sign any tx up to $1000
The bank may require voice authorization for tx up to $10,000
The bank may require in person authorization for larger tx (possibly involving bio-metrics).

The 0-confirm double spend is something which has been known and studies for some time.

That being said a 10 sec window for real world face to face transactions is just asinine.

Counter experiment.
Go to starbucks, order, swipe your credit card.
START STOPWATCH
wait for coffee ... wait .... wait ... get coffee ... walk to door ... get in car ... drive out of line of site.
STOP STOP WATCH

I am 99% certain the elapsed time is going to be >10 sec.

There are methods to reduce (but likely never eliminate) the fraud risk of 0-confirm double spends.  That being said no payment system is without risk.

Cash:  counterfeit bills, theft, bank processing fees (which is why stores "generously" allow cashback)
Credit cards: stolen cards, friendly fraud,  never ending cut to VISA/MC.

The goal isn't to reduce fraud/theft/loss to 0%.  Doing that likely will drive away consumers.  The goal is to reduce the COST OF PROCESSING transactions which includes everything from employee training to fraud to bank fees to infrastructure/logistics.  

Honestly I doubt it is a scam.  That being said I wouldn't invest.  Many non-scam poorly planned and executed ventures lose money also.

What scam artist creates mistrusts by showing computer incompetence and destruction of mining hardware?
What scam artist makes it harder to convince investors by indicating age?

Also the idea that poor grammar = scam is just stupid.  I am sure Bernie Madoff prospectus had been through a spell check once or twice.

Scam?  I don't think so.
Someone who's plan/dream is larger than their ability to execute and deliver?  Probably.