Very useful!! Thank you very much!  you are welcome! |
|
|
|
hey this is very cool..
thanks ) |
|
|
|
WOW great job, this is a very cool tool, will definitely help get the word out even more about crypto currencies to the world thank you |
|
|
|
love your widgets i use them for my site..thanks
welcome we are going to roll out more even customization later |
|
|
|
Thank you for having us.
you are very welcome |
|
|
|
Like it a lot,
Exactly what I was searching for HashSwap.com
Thank You!
you are very welcome Does look pretty good, might be even better if it offered a horizontal or grid display, e.g. for sticking select currencies at the top of a page.
good point thanks for the feedback |
|
|
|
That BTQ isn't BitQuark....it's BTQ from BTer.com...it's one of their "security" funds based on CNY...I'm guessing Cryptonator is confused on this. Maybe they can change the exchange from BTer.com to C-cex and Comkort.
my bad, will check it tomorrow That dude has been spamming that post on a ton of threads.
well, just offering free price tickers, nothing more |
|
|
|
you are welcome! come back to you later, wanna get some sleep ) cheers |
|
|
|
Thanks a lot. We'll be using it to display the prices on our website. you are welcome! ) |
|
|
|
|
new exchanges are on the list
portfolio function to be announced reeeealy soon
|
|
|
|
I like your site very much. You did awesome work.
But I miss some really important Exchanges on your list.
- mintpal (last daily volume about 4.500 BTC, nearly the volume of BTC-E !!!)
- bittrex (last daily volume about 530 BTC, similar to Poloniex)
and the fast growing new exchange ShareXcoin (last daily volume about 30 BTC, 10 times the volume of Coins-E or Vircurex f.e.)
ShareXcoin just started this month.
Please consider to connect to these Exchanges to get a wider base.
Thank you
Hi, Mintpal and bittrex are on the list, have a closer look ) We'll check ShareXcoin Thanks! |
|
|
|
I appreciate your efforts towards easy, secure and anonymous authentications. It is frustrating to remember so many passwords, and I never like using the same password because I never know if the server is actually hashing them! I think the future of authentication will be ECDSA signing tags like the sigsafe NFC tag. The server would generate a random nonce, relay the nonce to the client, and then the client's browser would request an ECDSA signature from the user. With HTML5 and the Web NFC API (which is not yet ready), the browser would have access to the NFC reader. The user would tap his signing tag, the tag would sign the nonce, and the browser would then relay the signature back to the server. The user is now authenticated (perhaps using the bitID protocol). The beauty of this technique is that the user can use the same signing tag (and same private key) for multiple services, as the services can only verify signatures (they can't forge them). It looks like the mozilla has a prototype browser that can exchange NDEF messages with a NFC reader and HTML5. If you guys can get this working, we could use the sigsafe tag that I'm working on to produce the signatures. will check it and get back to you asap. thanks! |
|
|
|
How is encrypting the secret key going to work, if the key to decrypt needs to be on the server in case the user logs in? You're not adding anything here, since a knowledgeable administrator or attacker is going to know how to decrypt the data, obtain the key, and produce a TOTP token.
With passwords, at least the administrator only has a hash, and can't log in with information he's privy to. TOTP should only be used as a second factor.
Your model assumes that the owner of the site is also trustworthy, meaning it definitely isn't secure.
Secret key protects some information, and has no value itself. If like you say administrator or owner is corrupt, why does he need keys, tokens and all that stuff? He could just get the whole database? |
|
|
|
|
Hey guys!
We are now working on some sort of an authorization solution, which we wish to be anonymous, secure and convenient at the same time. We gave up classic email/password scheme and came up with login + 2FA one-time-passwords (via Google Authenticator, Authy, Duo Mobile, HDE OTP etc).
What we currently got is
1. User is offered to create a login (limited to A-Z, 0-9), which is (along with some random params) then hashed into some secret key.
2. Using login and secret key via another crypto-algorithm we generate QR code which user scans with his 2FA app on a mobile device and after successful verification we let him in.
3. To log in later, he enters a login and a 2FA one-time-password generated on a mobile device.
4. Since there is no email provided and the secret key is the only way to restore access to the account, user is offered to backup the secret key via email, sms, print it etc.
If user wants to use 2FA on other device, he could easily link it in account.
If user thinks his account might be compromised (mobile device stolen or lost), he can easily re-generate his secret key in account and re-link the mobile device
To prevent brute-force, login is blocked for 60 seconds after three unsuccessful attempts regardless of the IP.
There's also a possibility allowing logging in with the secret key only, in case 2FA is inaccessible.
Secret key is stored encrypted. Website uses SSL.
PROS
100% anonymous and very secure
No email/password required
2FA one-time-password is changed every 30 sec
CONS
2FA authorization is required every time to log in
If mobile device is hacked or stolen, account could be compromised, as the secret key stored locally on device (unless new secret generated in the account)
If secret is lost, account not accessible
What do you think?
|
|
|
|
good work
I tried to use it a number of times in different ways, it needs more work.
the setting adjustments aren't necessary
Here's an example of something rather simple that was not obvious to do with your calculator: 1 BTC Sat (0.00000001) is equal to how many Lite Sat?
I'm not really getting what you mean ) |
|
|
|
Great Service! we will add it to the OP and to the GlobalDenomination.org website
great! glad you liked it |
|
|
|
Do you offer an API, and if not, do you tolerate if I would fetch a couple of coin conversions from your site for private use? Right now I have to fetch/save/grep/awk a couple of different sites to get the values for my own coins, having all in one place would be very convenient for me As I already said, for private use only. we do have free public API as right here https://www.cryptonator.com/api |
|
|
|
Very, very nice :-) One thing though; can you add a rounding option? Now it shows that one FAC is 0.0000063846 BTC. I'm used to reading from right to left (1 FAC = x Satoshi) and that 63846 plays tricks with my mind  what about if we stick to 8 digits after the decimals separator, so FAC = 0.0000063846 BTC will look like FAC = 0.00000638 BTC ? |
|
|
|
I am seeing 10 decimals spaces when I check prices in BTC and last time I checked BTC only supported 8 right...will fix it asap |
|
|
|
Just sent you a generous tip! I love people who helps the community for passion first.  keep follow us! received. thank you! |
|
|
|
|
Show Posts
