Bitcoin Forum
June 22, 2024, 08:12:56 PM *
News: Voting for pizza day contest
 
  Home Help Search Login Register More  
  Show Posts
Pages: [1]
1  Bitcoin / Group buys / Re: [OPEN] R13: BLACK ARROW Bullet Run w Bitfury. $113, 54% less than cex.io! on: November 07, 2013, 10:02:25 AM
Hi, I ordered and paid for a share of R13. My order is still in status: "processing". Is there anything else I need to do to finalize it? And is it going to go live on Friday, as mentioned?
Thanks
2  Other / Beginners & Help / Re: How anonymous is BTC.... on: November 05, 2013, 02:49:21 PM
Quote from: exstasie on November 05, 2013, 02:40:01 PM
Quote from: giorgiofr on November 05, 2013, 01:38:42 PM
The first node to broadcast a transaction is probably the one where it was made. You can try to link its IP to a person, but how are you going to do that and what if they used Tor? I guess you're out of luck then

We get a device fingerprint for all transactions that occur on the network, so we can see everything about an from what IP/Proxy they are using, to what version of flash, browser they have.  If they are using Tor it makes it a bit more challenging, but at least we can see the IP address that is assigned and look that way

I am not sure that's going to help you. What IP do you log specifically? The local IP is useless (99% NAT, etc.), the Tor exit point IP effectively masks the guy unless you're 3 NSAs. An IP obtained via an external service a la whatismyip is also going to give you the Tor exit node, is it not?
All in all, I feel like your best course of action would be to track fraudsters like you're already doing and try to stop them when they show up again, ban them or something of the sort.
Then again if they know what they're doing, your evercookie, digital fingerprint or what have you will not work properly either.
Just trying to throw out some ideas here, not trying to bash your operation or anything Smiley
3  Other / Beginners & Help / Securing wallet for e-commerce use on: November 05, 2013, 02:08:35 PM
Suppose I want to run a service on a webserver that not only receives but also sends out BTC, like a gambling or an exchange site.
Now suppose I do not trust any external service for sending out transactions, because e.g. recent events make me feel strongly against relying on third parties.
How would I go about running by bitcoind securely on my own server(s) without fear of being compromised? All I can think of is separating bitcoind from the webserver and run all transaction orders via a locked down gateway, probably with some kind of queue system, but this just makes attack surface smaller and does not really solve the problem. Something like webserver <--> order DB <--> bitcoind, with the order db only listening to the one port it needs and requiring encryption + authentication. But I'm not really satisfied with this design.
What are the best practices for this?
4  Other / Beginners & Help / Re: How anonymous is BTC.... on: November 05, 2013, 01:38:42 PM
The first node to broadcast a transaction is probably the one where it was made. You can try to link its IP to a person, but how are you going to do that and what if they used Tor? I guess you're out of luck then
5  Other / Beginners & Help / Re: Your vision of BITCOIN: POLL on: November 05, 2013, 01:29:28 PM
I feel strongly in favour of an unregulated currency. Then again BTC also offers many other advantages. Hopefully it can be an enabler of beneficial socioeconomical change. We'll just have to see Smiley
Pages: [1]
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!