Show Posts
|
Pages: [1]
|
We are experimenting with a possible feature of having coins that generate POS actually credit the coins created to users who hold those coins in their AllCrypt.com balance.
A problem we're having in the preliminary testing of this is that SOME, not all, of the POS coins we host chew up 100% CPU time when they are, presumably, staking the POS coins.
I am not a coin dev, but I am a coder at heart. We have patch code that modifies every coin we run at AllCrypt.com (adding in missing features, like walletnotify on those coins that use it, or patching out 'dumb' restrictions like not being able to use the 'move' RPC command on amounts too small to send across the blockchain, etc), so I am personally familiar with a lot of how the code works. I was under the impression that there should not be much, if any, CPU usage for POS mining? You're not running random numbers against a target, it's based on coins you already have, and their age.
Am I misunderstanding how POS minting works? I'm trying to better understand it so that we can mitigate the CPU usage of these coins. In addition, not all coins are doing this. If it were all of them, I'd just throw in the towel and say "POS minting takes too much CPU to leave it turned on for the exchange's wallets" - but coins like JackpotCoin and LockCoin bounce between 5% and 35% CPU time when minting, while coins like LiteCoinPlus and CapitalCoin are consistently chewing up 100% CPU. CoolCoin and DistroBlitz are coins we've had to turn off, those never drop below 100%.
It seems the "polite" coins use about 25-30% CPU and the others take all they can.
We'd love to have the feature, but cannot afford to have wallets dominating the server because they are running wild with CPU time minting POS blocks.
If anyone has any insight on what exactly happens with POS minting, links (I've tried searching, all I find is links to options for bitcoin for POS, and not anything technical about how it works), insight on why some coins are nice and others go nuts, we'd love to hear it.
Thanks, Ed AllCrypt.com lead developer
|
|
|
We had a few requests for a bitcointalk official thread, so this is here to start it. I'll update this OP lateron today once I had some time (we're implementing some new security features this weekend, and that sort of comes first), but we'll be sure to post all updates here, and TRY to read this as much as we can to deal with issues that arise. As always, the BEST way to contact us about an issue is to use the support system at http://support.allcrypt.comThe blog, where all news is posted: http://www.allcrypt.com/blogOur t-shirt slogan contest (Win .1 BTC if your entry is chosen - ending tomorrow, Sunday, March 30): https://www.allcrypt.com/blog/2014/03/allcrypt-t-shirt-slogan-contest-win-btc/
|
|
|
From the AllCrypt.com Blog: https://www.allcrypt.com/blog/2014/03/allcrypt-t-shirt-slogan-contest-win-btc/AllCrypt.com is attending the CryptoCurrency Convention (@CryptoEvents) in NYC on April 9th, and we’re coming with piles of swag. We’re doing t-shirts and we’ve been kicking around a few ideas for a slogan. “Already Hacked” is near the top of the list, as are a few others not suitable for children. And we thought you guys would have better ideas than us! So, here’s the deal – we’re not sure when we’re closing the contest… no later than Sunday the 30th though, as we need to get these made in time for the show. Submit ideas using the support system ( https://allcrypt.zendesk.com/hc/en-us/requests/new) – you can post them here but we may not see them (and then others can steal your idea!) Sometime between now and Sunday night we’ll pick a winner. Winner will get .1 BTC and if they want to share their address, we’ll send a shirt and some other swag as well. Include your BTC address in the submission, and if you want the shirt and other stuff, your regular address as well (or wait for us to contact you if you’re not comfortable with that). Term and Legal junk: Contest Guidelines • No real limits or guidelines for content. Words/slogan only. We’re open to (and hoping for) something risque or laden with innuendo, but anything crass or offensive won’t ever win, so, don’t waste your time. • The slogan must be your own original, unpublished work and must not include any copyrighted material. By entering the competition, you agree that your submission is your own work. Submitting an Entry • Submit a support ticket to https://allcrypt.zendesk.com/hc/en-us/requests/new. Entries posted elsewhere might not be seen. • Submissions will be accepted through either Sunday, March 30th at 11:59PM EDT, or until we see something we love so much we don’t care about further entries. The Fine Print • Enter as many times as you want. • Submissions will be screened by AllCrypt.com staff and chosen based on what we like best. • By submitting your design, you grant all ownership of the slogan to AllCrypt.com for it’s exclusive use. • The winning slogan will be announced on Monday, March 31st. The creator of the winning design will win .1 BTC (approx $50 USD Value) as well as a shirt and any other swag we feel like including.
|
|
|
Sorry it's taken a little longer than I'd hoped to post this. This weekend was absurd in the amount of work we had to do to get the site back up and stable. We wanted to post this as things are nearing a final resolution. What happened: On Friday, March 21st, someone found an exploit on our site and used it to change the passwords of users, log in as them, and withdraw their funds. What was lost: After all accounting was done, only three users lost coins. A total of about 81k BTCS was taken, and 7.7 million KARM. One user had SLR sold for BTC in an attempt to withdraw that, but our BTC security kicked in and locked down all withdrawals, so nothing was lost. What we did wrong: We failed to secure a section of our website properly. Hackers are smart. Sometimes smarter than we are. They used an exploit that was possible because we had some errors in our code that did not properly validate the input before processing what was sent. This was used to change the passwords of some users. What we did right: Our BTC security kicked in and halted all withdrawals. It's how we avoided losing an attempted 15 BTC in withdrawals - the website accepted the withdrawals and passed them to the withdrawal daemon, which using security we're not about to explain (sorry hackers - no inside info here) left the withdrawals in a queue until it could be manually approved. A "BTC withdrawal issue/delay" notice was posted on the site to alert users that there would be a delay in processing their withdrawals. We immediately investigated the situation as it was further brought to our attention by a user who noticed pending BTCS withdrawals he did not initiate. We hit the killswitch which disconnects the wallet servers and database from the network, and throws up the "Down, back soon" page. A total of 12 accounts were logged into, and 4 were actually effected, before we stepped in and stopped the issue. As soon as we could take a breath, we posted a notice in our blog and CC:ed it to Twitter and Facebook. Notice was posted within 2 hours of us knowing what happened. Later that night, another, more in-depth notice was posted. To let everyone know, and to be forthright and honest. Something we insist upon. What we have done so far: Over the weekend, all users who lost coins were contacted and the situation explained. We're in the process of attempting recovery of those coins, and by 10PM EDT on 3/25/14 we will have some reply as to that status. We combed the code, line by line, three times, for other possible exploits. The problem that allowed the hack in the first place has been fixed. We saw no other possible holes. We also installed an extremely sensitive firewall system that watches the web server. At the first hint of non-normal traffic, the offending client is banned from the site through multiple means. White hat hackers who want to help find holes? Don't. You'll be banned with the very first hit you make that doesn't fit normal AllCrypt.com usage patterns. Again, I won't say we're hack proof, but we're 10x as stringent with security now. What we plan to do going forward: We've set up other watching systems and auditing which get reported to us multiple times throughout the day, so if in the event of another issue, we can stop it before anything else happens. Our firewall system banned 7 scans yesterday. Not sure if it was the original hacker trying again, or just routine web scans, but they won't be accessing the site. We are committed to security and transparency. We want you to trust us, not out of some blind faith that we've seen lately for some other exchanges that have gone dark with nary an update and only vague promises, but because you know that we will act, swiftly. Our security is strong, and is now even stronger. And we pledge to communicate all we can as soon as we can. In a way, I'm happy this break happened while we were so young. We'd only been open 3 weeks when it happened. It was a testament to our security that so little was lost, at how fast we reacted, and it helped us close a hole we didn't know was there. It helped us to tighten existing security. No one wants to get hacked - especially days after making security statements like we have (Stating "No, we're not hack proof" - aah the irony!), but in a way, I am personally thankful, that the loss was so small, and that we are stronger than we were before. About those lost coins: Like I've alluded to before - something is in the works regarding those lost coins. I've pledged an answer of some sort by 10PM tonight. Stay tuned. For the full story, see our blog at http://www.AllCrypt.com/blog
|
|
|
So since we preach transparency and integrity, I didn't want to say we had a successful launch. It was mostly successful. A few bugs popped up... like regardless of what trade page you were on, the buy/sell orders would update whenever anyone posted a trade. Oops! Using AND instead of OR will get you every time! Had some two factor issues where a user would select it by mistake, then be locked into choosing it, and if they didn't have a smartphone, oh well! Had some issues with coins... PikachuCoin works for a bit then the RPC calls to the wallet just fail. Had to take that down while we debug it. All in all, it went about as smooth as we could have expected! So, we invite you to swing by, sign up, check us out. Yes, the markets are a little empty at the moment, but the only way to fix that is to list some coins for sale- and that will only happen if you guys get behind the coins you voted for! So come sign up, check us out, submit any bugs you find, and have a great time trading! We'll be working on a trollbox soon. It's weird being on the site and seeing so many logins but not being able to chat with anyone! www.AllCrypt.com
|
|
|
I've been posting in the marketplace forum, but wanted to bring this into the general Altcoin forum to spread the word. Our new exchange, AllCrypt.com is opening tomorrow, Friday, February 28th. The idea started when myself and some friends and business associates were trading on other exchanges, and got into a discussion about how much we disliked: Slow deposits and withdrawals Horrible customer service Picking and choosing coins seemingly at random. Ignoring coins with high community backing, adding random coins that no one knows why. Sloooooowwww sites Ignoring user requests. I thought, hey, I've done IT for 20 years. I can code that site. Friends in marketing, security, and design all thought it was a fantastic idea. AllCrypt.com was born. It's been in development for a while now, and is ready to launch tomorrow. Features we are very proud of and hope you are too: - Coin adding is transparent and fair. Coins can be voted on on the voting page (currently in beta at www.allcrypt.com/beta/voting.php) and the top coins get added as we have time to add new coins. Only restrictions on what we'll add is we cant get sued for adding it, you have an open source working linux wallet - if its not on github that hurts - it's hard for peer review if it's not easy to find, and it's not morally reprehensible. Certain coins get a free pass, such as the highly profitable coins mined at places like multipool.us - but other than those, vote and your coin gets on. Even if no one else "cares".
- We highly value your security. We went to great lengths to add tons of OPTIONAL AND CONFIGURABLE security features. We absolutely hate sites with either really crappy security (one exchange we are on, after going on vacation for a week, we sign on to see we're still logged in. Our login NEVER expired!) or absurdly annoying security (when one site needed a captcha for EVERY login). We have lots of features, from email alerts for various functions, to adding multiple email addresses, OPTIONAL email confirmation for withdrawals, two factor authentication, and locking saved withdrawal addresses - we let YOU choose your level of security.
- We highly value your anonymity. We have an account option which allows you to remain completely anonymous. The only requirements are a username, a password, and we make it mandatory to have a two-factor google authenticator/authy authentication. We do not have your contact info, or your IP address (it is explicitly NOT logged). I, personally, am a libertarian. You're not hurting anyone by trading crypto. I see no reason to reveal your info to anyone. Keep in mind however - without an email address - we CANNOT verify you if you forget your password or lose your 2FA method. Being anonymous comes with a price.. Be careful.
- We believe that we are all profiting from the crypto craze, and we believe others should too. Every trade that happens on AllCrypt.com - a portion goes to charity. The charity can be chosen by each user, as well as the percentage of each trade - a range from .05% (the default and minimum) all the way up to 5%. We want to help. We only donate to crypto accepting charities. This helps in two ways - neither us nor the charity pays any fees, and it helps spread the word about Bitcoin and Cryptocurrency. If we're willing to give you money - but only if you accept bitcoin... who would argue? Currently the only charities on the list are Seans Outpost, who has officially accepted us as a partner, and the AllCrypt Charity Pool. If you cannot decide (or do not care) which charity you donate to, the funds go to the AllCrypt Charity Pool, and every month we will pick a charity to donate to. If we process 5,000 BTC a month in trades (less than half what other exchanges do), at the minimum of half of 1/10th of a percent of each trade, we will be donating 5 BTC a month to charity. At today's price thats a bit under $3,000. With users voluntarily donating more, and as trade increases - we stand to make a difference.
We built this exchange from the ground up. No open source software or possible security holes that we are unaware of or can claim non-responsibility for. We built it, we coded it, we are confident in it. We have cloudflare DDoS protections - we hope that helps. We were very proud to be the target of a DDoS attack from Russia the other day, before we even launched. We took that as being in the big leagues. Cloudflare quickly clamped down on it and we were back up within minutes. Our website is PCI compliance scanned (even though we do not process credit cards) to check for vulnerabilities we may have missed. Our code has been gone over multiple times over to protect from things like SQL injection attacks. Every SQL command has been reviewed and we believe, to the best of our ability, that we are "immune" to a SQL injection attack. Now that I've said that, I fully expect to be slammed soon! They'll help us find any holes and patch them up though! We employ a 'cool' storage wallet feature. It's in the works now and will be fully implemented within the week. In short, without giving too much away and giving attackers any more info than they need, there is a 'cool' storage system that will hold the bulk of our coins, which is on-network, but insulated from the internet as a whole by multiple firewalls. Multiple systems would have to be breached before the wallets could be accessed. By the time that happened, our alert systems would trigger and we could cut the connections. Users will be given the ability to select their protection level. They can each choose what percentage of coins that we keep in cool storage. All trades will be unaffected, but withdrawals may be slightly delayed when taking coins from cool storage. And while on the topic - deposits. All deposits will be available for TRADE after a single confirmation. Until deposits are fully confirmed, all withdrawals are disabled (to protect us from double spends, forks, etc) but you can trade the coins. No more waiting for 3, 6, 10 confirmations to trade. You need to move coins FAST to get in on that hot coin? AllCrypt.com is where you want to be. Unfortunately - we cannot affect the speed of withdrawals. We were testing tonight and tried to withdraw some MOON to a personal wallet, and it took 10 minutes for the coins to get picked up in a block. We have no control over that. We repeatedly checked the transaction logs and the blockchain - and it wasn't us. The transaction was just not picked up. And now that I'm absurdly tired from coding, testing, and scanning all night... our last feature we are extremely proud of. We claim that the emails we send you (password resets, withdrawal confirmations, security alerts, etc) are "phish proof" - assuming you take a simple step to be sure the email we sent is legitimate. Every email we send you is signed with the private key of one of our BTC addresses. The address is published on our homepage, in the footer of our site, and we registered the address with blockchain.info. Copy and paste the email into your bitcoin-qt client, put in our verified address and signature key, and you can verify that AllCrypt.com actually sent the email. To our knowledge, we are the ONLY exchange, anywhere, to be able to say that if you take a moment to verify the email, you can be sure that any email you see from AllCrypt.com is, beyond any doubt, legitimate. You can read about how to do this verification at our help site: http://support.allcrypt.com/hc/en-us/articles/201153320-Verifying-AllCrypt-com-signed-emails
|
|
|
We are working on the buy/sell matching system for AllCrypt.com and in testing it, we ran into an interesting little dilemma.
Say there are sell orders at 250, 251, and 252 satoshi.
Someone for whatever reason - doesn't care, typo, whatever, lists a sell order for 200 satoshi. Way under the current price of 250.
I place a buy order at 250 not noticing the 200 sell, maybe they are placed at the same time, whatever.
Should the 200 order be ignored? Only buy the one at 250?
Or I snap up the 200 order? If the 200 order is bought - do I still pay my offer of 250 and the seller makes more than they thought?
Do I only pay 200 and get a refund of the unspent funds?
It's hard to test how this works on other exchanges because of the volume. We can't exactly list a buy and sell and be sure we're buying and selling the right coins.
We want the system to work and be fair. So we're leaning towards the buy and sell prices having to match exactly. The problem with that is say there's a coin trading at .0025, and someone lists a buy order at .00250001, and he wants to buy 10,000 of them. There may be a ton of .0025 and .002504 sell orders, but he wont get any if no one lists at exactly .00250001 even if he's willing to pay more than the going price of .0025.
Just looking for some input so the system is fair and balanced.
|
|
|
We've been working hard and we will be opening the doors soon. We have found, through years of experience, that no matter how hard we test systems, end users are smarter than we are. We are looking for alpha testers. What we ask of you: * Make an account. Forget your password. Set up 2FA. Disable the 2FA. * Deposit * Actually trade. Even if the trades are barren, put up stuff to sell. Buy stuff that may not be a 'great deal'. Don't go giving away tons of BTC - we're not reimbursing any stupid trades you make * Withdraw your funds. And most importantly: LET US KNOW WHAT BREAKS! There is only so much testing we can do ourselves. You guys are the ones that can break it. We want you to break it. We want to fix all the bugs before it goes live. Alpha testing will be limited to a small number to keep the damage manageable. All alpha testers will be rewarded in some way. We're working on that. If you're interested, go to www.AllCrypt.com and fill out the form, even if you have already done so, and let us know you're willing to alpha test. You might lose some coins. Anything that goes wonky we'll try and fix, but we're not guaranteeing that you make a stupid profit here. This is alpha. It's testing for bugs. I've been coding since 10am and its now 10:23pm. Time to take some time to relax at the bar. Have a great night guys.
|
|
|
Coins have been added to the alpha test of AllCrypt.com. Wallets downloaded, blockchains synchronized, ready to test deposits, transfers and withdrawals. Devs of the following coins, please contact me, either through here, or the contact form on allcrypt.com: BIL (BillionCoin) FRSC (FederalReserve) DOGE (Doge) - Not really necessary. We've received DOGE to test with. MED (MediterraneanCoin) PRT (Particle) ATO (AtomCoin) We are getting closer to launch and need to test some functions. Would love to talk to the devs of those coins, or anyone who is willing to send some for us to test with. Keep voting guys, these aren't the only ones being added, just the top of the list and the ones deserving of being the first added during alpha! www.AllCrypt.com/beta/voting.php
|
|
|
Coin voting is NOW LIVE. Go here: www.allcrypt.com/betaYou can vote on which coins are added to the exchange when we launch (which is hopefully within a week!). Please note - it's beta. There may be bugs. Please report any you see. Please also report if it's slow. It shouldnt be. The page is extremely lightweight. All updates are live. You shouldnt have to refresh that page. Ever. Try it out. Open the page. Then, open it in another page or browser. Vote on one page. Watch the coin move in the other as well. Super swanky. Anyway, there we go. If your coin is NOT on the list - email us and we'll add it right quick. No, most of the coins do not have names yet. We imported those coins from lists that did not have names attached, so adding names is a manual process, unless someone wants to supply us with a CSV of the symbol,name and then we can update quickly. Have fun voting! We hope to launch soon! www.AllCrypt.comFor more information on the exchange, see our main thread here: http://bitcointalk.org/index.php?topic=438727.0
|
|
|
Is there A RPC call, or even just a list somewhere, that will tell you the minimum transaction fee for a coin?
We're setting up the withdrawal system on AllCrypt.com and can't seem to find a list of what the transaction fees are, or if there is a way using the RPC calls to find out?
Anyone?
|
|
|
Hey guys - wanted to post a quick announcement about a new CC exchange coming on board soon. Myself and some colleagues were unhappy with the current state of exchanges. Some too slow. Some unwilling to adopt fringe coins. Some with terrible support. Some who manipulate the market. So we thought we can do better. A basic info site is up right now, with a form to subscribe to updates, and offer suggestions. We want this to be YOUR cryptocurrency exchange. We want your ideas, your input. Swing by, give it a look and let us know what you think. Some features that we hope will both differentiate us from the current lot of exchanges, as well as make us your exchange of choice: - We will try to have lower fees, but still stay viable. We cannot run the site for free. Hosting, network speed, DDoS protection, security, support staff, they all cost money. Lots of it. The plus side is we hope to do it right.
- We want your ideas. Frustrated that yourcurrentexchange.com does not do X, Y or Z? Let us know. If it's feasible, we want to implement it.
- We want to add those fringe coins that you want to be able to trade, but no one lists. We're big into altcoins. The intro site accepts development donations in BTC, LTC, DOGE, MOON, TIPS, and LOT. We had to draw the line somewhere - those are the ones we actively use ourselves
- A great feature we are very proud of - when you sign up, you designate a charity that accepts cryptocurrency. A percentage of all fees you pay for your trades will be donated to your charity of choice. This serves two purposes. First and foremost - it helps those in need. Second - it helps spread the word about cryptocurrency. Maybe your local school or church has no idea what bitcoin is? Talk them into setting up an account on bitpay. Get us their contact information, we'll get hooked up with them and add them to the site. And they will get a percentage of your trades. Everyone wins. We are currently in talks with a few charities. Once we get them on board, they will be added to the site. Oh, and yes, we promise 100% transparency with the charitible contributions. All contributions will be posted on a public page with links to the blockchain.info transactions. (And yes, all donations will be first converted to BTC before being donated. Your local homeless shelter likely has no need for a percentage of your PotCoin trade!)
- We are exploring the possibility of a founders group. The first beta users, the ones that champion us into the mainstream, having special 'shareholder' accounts which receive a percentage of all trades on the site. Get in early. Secure your spot.
That's just the beginning. Come sign up. Give us your suggestions. Development is active and ongoing. No, we do not have a launch date. Soon. That's all we know. We secured the domain yesterday. We finished the submission and subscription form just an hour ago. We're very excited about this. We hope you are too. www.allcrypt.comYOUR Cryptocurrency Exchange
|
|
|
|