Glad to hear that you found that.  Now you see that we're not just "whipping up the fear".  

I think I read that 59% of sites use OpenSSL, but I don't know about 1.01.  I hope that it hasn't been exploited this whole time.

EDIT: according to Wikipedia, 17% of secure servers are/were vulnerable.  That's a lot.

Heartbleed could end up having a HUGE IMPACT on the internet.  And it's not just 1.01, it's 1.01-1.01f.  This has been around for about two years, and it could have been exploited during that whole time.  64kb of data times many requests can get you a lot of info. 

If you don't know anything about Heartbleed, you should read about it at http://heartbleed.com/.  The worst case scenario is not hackers just stealing usernames and passwords, but acquiring the encryption keys and being able to read ALL the traffic between the server and users (including in the past) and being able to impersonate the server at will. 

I checked BTC Arbs on http://filippo.io/Heartbleed/ and with Chromebleed Checker at the time of my post about it, and they both said it was vulnerable.  Rechecking now says that it's okay, so BTC Arbs must have fixed it.  Although BTC Arbs mentioned Heartbleed in the reports, they didn't say anything about their own vulnerability.  They are just reminding everyone about 2FA (isn't that vulnerable to Heartbleed anyway?). 

It doesn't look like they revoked the certificate, so they haven't gone that far in patching the vulnerability.

Does someone else want to ask them about fixing Heartbleed?  I'd do it, but I don't know how to properly keep track of the certs and see how/if they would fix it. 

And you're still fixing this?

It looks like BTC Arbs is vulnerable to Heartbleed, let's watch if they fix this or not. 

I was going to check if you guys are vulnerable to Heartbleed, but then realized that you don't have encryption.  That is something you should defiantly have, especially with logins and for withdrawing. 


I agree.  Maybe some of the house edge from their games?

I logged in and initiated a withdrawal successfully.  It hasn't come through yet, but it usually takes a while.

Okay, the counter is fixed, but now the going to the login page gives an error.

EDIT: it is working now.

My favorite now is SatoshiGem.  It's not really gambling, it's a skill (and luck) based game with pvp.  You can play against others for btc.

Site not working for me either, Chrome takes a long time and then gives me "Oops! Google Chrome could not connect to coins.ml". 

Something is wrong:


Did the contract complete?  My level was raised.

I don't see how that could be bad, so it sounds fine to me!  Or it might be better to get them to sign up if they want to play with other people.

BTC Arbs IS a High Yield Investment Program no matter what you think of it - you are promised a LOT of interest for what you put in.  HYIPs can be legit.  What we're talking about is if BTC Arbs really does arbitrage to get profits or is just a ponzi.

This is really a small technicality, but I thought I'd point it out.

The Tournaments section isn't working.

EDIT: now it is. 

I don't mean to thread-jack, but as there are other people who think this is too confusing I want to share something I found recently.  There's a new game that you can play with Bitcoin (or Litecoin, Dogecoin, Earthcoin, or just for free) called SatoshiGem.  It's a LOT easier to understand and play than Blockchain-Reaction(it's basically candy crush).

There's multiplayer pvp and tournaments, and the only problem with this site right now is that there aren't enough people.  Let's change that!

The website is www.satoshigem.com and the forum post is at https://bitcointalk.org/index.php?topic=555362.msg6062104#msg6062104

Is that a new letter you got back?  Kind of confusing when you just edit a quote without any other information...

The thing is that nobody will believe a new user with just 10 posts.  Sorry! 

I just want to tell everyone that this website looks and feels fantastic.  It has the promise to be a great site for people to play with each other!  The most important thing for this website right now is MORE PEOPLE.  

Give this a try!  You do have to sign up, but then go to the single game page and do a Pratice game with AI.  If there are other people online, you can play against them!

Now's the best time to start because with so few people, it's easy to place in the free tournaments and earn Gems.

Another thing: I had Armory open when Bitcoin Core was catching up, and Armory was updating the database (or whatever it does).  I got a notification that Armory was online and had finished loading, but when I checked Bitcoin Core there were still 13 hours to catch up on.  After I clicked the close button (or whatever the okay button is called), Armory froze.  It's still frozen now.

EDIT: It unfroze.  Also, in the bottom right, it says "Connected (0 blocks)", if that's any help.

EDIT EDIT: I restarted and it worked fine.

You must have messed up, because it works for me.  Make sure that you're truncating the result with just four decimal points for the interest.  And make sure that you have the deposits and withdrawals marked on the right day (according to BTC Arbs).