Bitcoin Forum
October 17, 2017, 11:35:31 AM *
News: Latest stable version of Bitcoin Core: 0.15.0.1  [Torrent]. (New!)
 
  Home Help Search Donate Login Register  
  Show Posts
Pages: [1] 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 »
1  Bitcoin / Project Development / Re: [coinb.in] Open Source, Multi Signature, HD Wallet and more! on: October 01, 2017, 02:07:13 PM
Ok, I finally got HODL txs to work using your link to https://github.com/globaltoken/coinbin/commit/88f5eee6ad9114feb70c523ca7c834d99c106476

I had to change one line of code in coin.js though (line 1024 in my notebook editor after running https://dirtymarkup.com on it):

Code:
} else if (utxo_script['type'] == 'multisig') {

to this

Code:
} else if ( (utxo_script['type'] == 'multisig') || (utxo_script['type'] == 'hodl')) {

I also had to push the tx elsewhere as the broadcast function failed for me.

These are minor bugs compared to the next one though.

I decided to create a tx for a large amount of BCC. I set everything up. Then I went offline to get my private key to sign it and discovered I can't sign offline. So I canceled the tx, and did some experiments.

It seems that if I try to sign while offline, I get an error message due to our javascript trying to reload the inputs during the signing. Specifically in r.getinputvalues routine. It will sign fine if I then go back online though (changing nothing else).

I don't remember this being a problem when signing a Hodl tx with Bitcoin offline when I originally tested it.

This seems like a major security breach to me. I have gone over the code as much as I can and while I don't see the private key being stolen, I am not a professional programmer either (I panhandle for a living - make about $5/hour) so something could be hidden in an obscure area from me.

Unfortunately, I don't think this can be easily fixed without rewriting a lot of code. I know it would take me months. I will probably just sign the large transaction and immediately broadcast it. My coins are still locked up for another 3 years though. Plenty of time to think about it though.

I just hope they don't use replay protection again during the Seg1X|Seg2X fork. What a f*cking mess.



I'm going from memory here and I've not paid tooo much attention to bitcoin cash, but I believe their new routine to generate a transaction hash includes the value of each input where as the legacy version doesn't.
2  Bitcoin / Project Development / Re: [coinb.in] Open Source, Multi Signature, HD Wallet and more! on: September 30, 2017, 07:19:56 AM
I locked a bunch of Bitcoins before the fork to BTC and BCC. So was wondering if the coins would be recoverable on the BCC fork. So decided to experiment.

Created a time locked address using address: 12Cp73Mbb4PEXmDjYitGcfgPDpRRvPPxpS,
Public Key: 04882490aac1fb4de17bcd7c70c72672d291d3cbce869834dee98452a98874766ef996adec88b74 98dfb3fd3141fb3af5fa020746ceb8f11d5ee4e35d26284f7e4
Time: 09/13/2017 01:00

Resulting Address: 3BQyYQS3vSdjYHNJK8ogyo5Z3NkmzxWrr3
Resulting Redeem Script:
04b00fb959b1754104882490aac1fb4de17bcd7c70c72672d291d3cbce869834dee98452a988747 66ef996adec88b7498dfb3fd3141fb3af5fa020746ceb8f11d5ee4e35d26284f7e4ac

Sent 0.001 BCC to that address, TX=
76f21028ebdeff0c2347ae00ada70d3c32cfdf8a38178b2a032f2a030ce420e4

To create a tx, I had to manually input everything, resulting in the following script:
0100000001e420e40c032a2f032a8b17388adfcf323c0da7ad00ae47230cffdeeb2810f27600000 0004a04b00fb959b1754104882490aac1fb4de17bcd7c70c72672d291d3cbce869834dee98452a9 8874766ef996adec88b7498dfb3fd3141fb3af5fa020746ceb8f11d5ee4e35d26284f7e4ac00000 00001905f0100000000001976a9140b0f1dc4fce32f2d38bdbf822c2222d1870b999a88acb00fb9 59

Signed with private key to 12Cp73Mbb4PEXmDjYitGcfgPDpRRvPPxpS:

0100000001e420e40c032a2f032a8b17388adfcf323c0da7ad00ae47230cffdeeb2810f27600000 00094483045022100fa78e56b7ec881f8bb2eb97ea9825856ecd06941dea3ac74092d663b721379 8b02207824e621b4ee21df7591a1e8f45a45b162e5ea39cd073b70bcabc6501f7683e3014a04b00 fb959b1754104882490aac1fb4de17bcd7c70c72672d291d3cbce869834dee98452a98874766ef9 96adec88b7498dfb3fd3141fb3af5fa020746ceb8f11d5ee4e35d26284f7e4ac0000000001905f0 100000000001976a9140b0f1dc4fce32f2d38bdbf822c2222d1870b999a88acb00fb959

Tried to push at http://blockdozer.com/insight/tx/send

Resulting in the following:

An error occured:
64: non-mandatory-script-verify-flag (Signature must use SIGHASH_FORKID). Code:-26

Bitcoin cash and bitcoin do not use the same sighashes as a method of replay protection. This means transactions built for the bitcoin network can't be broadcasted to the bcash network with out an update to the signing procedure.

There is a bitcoin cash pull request on the github repo, which I've not accepted but it does work (I choose to support segwit right now over bcash) You can download it and use it to create transactions for the bcash network.
3  Bitcoin / Project Development / Re: [coinb.in] Open Source, Multi Signature, HD Wallet and more! on: September 30, 2017, 07:15:04 AM
Having some problem with this wallet. Two weeks ago deposited coions to my wallet then later logged in and there was nothing, new btc address and zero funds. Contacted support via email and no response, sent a message here to OutCast3k(one of the developers as I see) and no response. Is this project just a scam right now or what? Any chance to get my coins back?  Tongue

It's an open source project, nobody here has paid anything, we are not a company, if there is a delay in responding it's because we are not heavily funded and there is 1 developer responding to multiple enquiries.

Firstly, I will point out the obvious. We do not have access to your private keys. If for some unfortunate reason our API is struggling to return the correct balance you can import your API key into another wallet.

Secondly, you have provided no information to go on. No email address, no github ticket, no bitcoin address to check a balance.

Finally I don't like helping people who call this project a scam. It's rude, you've contributed nothing, paid nothing and have the audacity to post that.


Edit to add: coinb.in's wallet feature works by generating a set of keys from the login details you give it. Please pay close attention to the login notice in yellow. It states different login combinations will open up different addresses. For example, I could login with the email address outcast3k@bitcoin.com and the password 1111111111 and receive one address, log back out and log back in the with same email address but a different password 222222222 and get an entirely different address. If the address has changed and your balance is zero, it's because you are not entering in the same details as before. Please don't come here and publicly call this project a scam when you clearly have no idea.
4  Bitcoin / Bitcoin Discussion / Re: I am offering a BTC reward to the first person to help me figure something out on: September 24, 2017, 01:38:59 PM
Thanks! I was actually just now messing around with it before reading your comment and I got it figured out! Yay, took a min but I got it. lol. Thank you though!
Coinb.in is awesome!

That's good to hear Smiley

Will still send ya a reward though if ya want Smiley

Not necessary but if you are feeling generous, the donation address is on the about page.

Thanks.
5  Bitcoin / Bitcoin Discussion / Re: I am offering a BTC reward to the first person to help me figure something out on: September 23, 2017, 04:47:51 PM
Coinb.in Dev here. If you visit https://coinb.in/#newTransaction and put your redeem script into the text input at the top, you'll be able to make a transaction and choose where it's sent to.

Once you have carefully made your transaction, you can use the sign page to sign it and then the broadcast page to send it.

Hope this helps.
6  Bitcoin / Project Development / Re: [coinb.in] Open Source, Multi Signature, HD Wallet and more! on: August 30, 2017, 02:16:54 PM
Hey there!

I think you should look again, of course coinb.in allows custom fees, it just appears you don't understand how fees work.

As you stated, what is not sent is used as a fee, this is how the Bitcoin protocol works, what is not spent is used as a transaction fee - it's simple. To avoid this, you create a second "change" address where you spend the change back to your own address, thus lowering fees.

For more information on fees and "change addresses"  please see https://en.bitcoin.it/wiki/Change and https://en.bitcoin.it/wiki/Transaction_fees

Please remember coinb.in is meant for advanced users who understand the bitcoin protocol and whilst I don't want to discourage you or anyone else from experimenting with this project and increasing your understanding, you should be extra careful as you clearly aren't fimilar with the protocol as you have shown by your lack of understanding and complaining.

All the best.
You are right and electrum wallet automatically add my address to the tx as change address and in coinb.in we need to do it manually now i understand.It would be great option to have this in coinbin wallet too so we don't have to manually enter the change address our own sending address should be set by default to change address but i understand you if it's meant for advanced users.

Unfortunately it is not possible to easily predict the users change address with total accuracy in this wallet due to the way it's designed, the best method in this scenario is to let the user choose.
7  Bitcoin / Project Development / Re: [coinb.in] Open Source, Multi Signature, HD Wallet and more! on: August 30, 2017, 07:39:35 AM
OP deleted my post i don't know why he did this to may be prevent the truth Op you don't believe in open communication?
this wallet has some problems i signed tx offline using my private key and it said signed but showed the same unsigned tx in the box.weird.unisgned tx was of electrum wallet and it was RBF tx.I hope this time you reply me and don't delete this post.

Sorry it was an accidental delete and was in the process of messaging you about this. You can go through this thread and github and see I don't delete bad feedback.

In truth your complaint is about electrum, its is an issue that's been know about for a while, it likely won't be fixed because we handle data within the transaction in a slightly different way, although I am making presumptions here and will happily inspect your transactions to be sure. What I suggest is; instead of building a transaction using electrum and complaining that this software doesn't sign it properly, you try building and signing a transaction using only coinb.in.

Please keep us updated. Thanks.

*Edited to clarify*
I tried with coinb.in wallet first but the thing is your wallet does not allow to set custom fees.It stated what is not sent will be used as transaction fees and i had to set custom fees so i created an unsigned tx with electrum wallet RBF enabled and then wrote the unsigned hash in coinb.in offline wallet and used my private key to sign it and it stated signed but showed the same unsigned tx in box.why coinb.in wallet does not allow custom fees?

Hey there!

I think you should look again, of course coinb.in allows custom fees, it just appears you don't understand how fees work.

As you stated, what is not sent is used as a fee, this is how the Bitcoin protocol works, what is not spent is used as a transaction fee - it's simple. To avoid this, you create a second "change" address where you spend the change back to your own address, thus lowering fees.

For more information on fees and "change addresses"  please see https://en.bitcoin.it/wiki/Change and https://en.bitcoin.it/wiki/Transaction_fees

Please remember coinb.in is meant for advanced users who understand the bitcoin protocol and whilst I don't want to discourage you or anyone else from experimenting with this project and increasing your understanding, you should be extra careful as you clearly aren't fimilar with the protocol as you have shown by your lack of understanding and complaining.

All the best.
8  Bitcoin / Project Development / Re: [coinb.in] Open Source, Multi Signature, HD Wallet and more! on: August 29, 2017, 11:41:50 AM
OP deleted my post i don't know why he did this to may be prevent the truth Op you don't believe in open communication?
this wallet has some problems i signed tx offline using my private key and it said signed but showed the same unsigned tx in the box.weird.unisgned tx was of electrum wallet and it was RBF tx.I hope this time you reply me and don't delete this post.

Sorry it was an accidental delete and was in the process of messaging you about this. You can go through this thread and github and see I don't delete bad feedback.

In truth your complaint is about electrum, its is an issue that's been know about for a while, it likely won't be fixed because we handle data within the transaction in a slightly different way, although I am making presumptions here and will happily inspect your transactions to be sure. What I suggest is; instead of building a transaction using electrum and complaining that this software doesn't sign it properly, you try building and signing a transaction using only coinb.in.

Please keep us updated. Thanks.

*Edited to clarify*
9  Bitcoin / Project Development / Re: [coinb.in] Open Source, Multi Signature, HD Wallet and more! on: August 28, 2017, 04:59:09 PM
Segwit will be enabled within the next week.
10  Bitcoin / Project Development / Re: [coinb.in] Open Source, Multi Signature, HD Wallet and more! on: August 23, 2017, 08:22:38 AM
New status page: https://status.coinb.in/
11  Bitcoin / Project Development / Re: [coinb.in] Open Source, Multi Signature, HD Wallet and more! on: August 23, 2017, 08:21:56 AM

As much as I personally do not support the bitcoin cash hard fork, allowing users to dump it is probably a good thing.

I am reviewing and testing this pull request, but I am also aware that there are a few very minor issues in this pull request, which leaves me wondering if they should be fixed before or after.
12  Alternate cryptocurrencies / Announcements (Altcoins) / Re: [ANN] Sia - Decentralized Storage on: June 18, 2017, 06:30:56 PM
Hey

I would like to add address generation and manual transaction for spending coins to https://coinb.in if anyone can point me in the right direction of how addresses are generated and transactions are built and signed etc i'll get on to it.

Thanks
13  Bitcoin / Project Development / Re: [coinb.in] Open Source, Multi Signature, HD Wallet and more! on: June 16, 2017, 09:04:47 AM
Coinb.in Features Include .001 BTC being taken when ever the algorithm or software writer feels like grabbing some coin.
 AND Expensive transfer fees .0011 minimum. Which gets U a minimum 72 hours of waiting time after u have broadcast your coin.
  Paying a higher transfer fee does NOT move the coin any faster.
 
 I WILL NOT BE USING THIS JUNK WALLET ANY LONGER. I THOUGHT OTHERS SHOULD BE WARNED TO AVOID IT AS WELL

 It may have started as a good idea, but it no longer is a good idea. It is a good way to lose your investment to poor timing and mismanaged coin disbursements

There is no fee required to use coinb.in what so ever, there is no auto calculation set for fees for coinbin, everything is manual, you can set the fees as high or as low as you like.

Please either clarify what you mean, or contact me directly
14  Bitcoin / Project Development / Re: [coinb.in] Open Source, Multi Signature, HD Wallet and more! on: June 16, 2017, 09:02:53 AM
The website https://coinb.in seems to be down right now. I had a downloaded copy. So, I tried to use it offline. But, that is now working either while I am trying to create a new Tx. The system is unable to download the UTXO set. There are only 2 available options for mainnet - coinb.in (Bitcoin mainnet) & Blockr.io (Bitcoin mainnet). The first one is not working as expected, but the second one is not working either. It is throwing the error - Unexpected error, unable to retrieve unspent outputs!.

^^Same situation again...

Our domain registrar let the domain expire, even though it was set to auto renew. It's been resolved and should be back to normal now.
15  Economy / Scam Accusations / Re: My bitcoin address is used by someone else on: August 12, 2016, 12:58:23 PM
since 2 days i am experiencing a hell lot of dust in my BTC address , i thought it is better to watch it and when any big BTC amount will come then i will move it , but today just some hours before i saw someone sweeped the coin to some wallet.
can anyone let me know how is this all stuff happening?

reference thread: https://bitcointalk.org/index.php?topic=1580363.msg15867453#msg15867453

Either coinb.in has a bug/problem and generated the same private key twice, you were the victim of an attack during the creating of the private key (maybe a phising website or something), or your pc is compromised (those seem to be the most likely scenarios).

Hi,

Coinb.in developer here.

I think its fairly unlikely coinb.in was compromised and also unlikely that it generated the same private keys twice. I think its most likely you have been compromised. Let me explain why.

Firstly, I have various honey traps setup on the server, one is as big as 20 BTC. If coinb.in had become compromised, I'm very confident I'd have lost those coins and we'd be hearing about it from multiple users (as there are quite a lot) and not just yourself.

Secondly, I'm not convinced that coinb.in key generation code is a problem. I have over 100 BTC generated in addresses from coinb.in. It is unlikely to generate the same keys twice, heres the code:

Code:
/* generate a new random private key */
coinjs.newPrivkey = function(){
var x = window.location;
x += (window.screen.height * window.screen.width * window.screen.colorDepth);
x += coinjs.random(64);
x += (window.screen.availHeight * window.screen.availWidth * window.screen.pixelDepth);
x += navigator.language;
x += window.history.length;
x += coinjs.random(64);
x += navigator.userAgent;
x += 'coinb.in';
x += (Crypto.util.randomBytes(64)).join("");
x += x.length;
var dateObj = new Date();
x += dateObj.getTimezoneOffset();
x += coinjs.random(64);
x += (document.getElementById("entropybucket")) ? document.getElementById("entropybucket").innerHTML : '';
x += x+''+x;
var r = x;
for(i=0;i<(x).length/25;i++){
r = Crypto.SHA256(r.concat(x));
}
var checkrBigInt = new BigInteger(r);
var orderBigInt = new BigInteger("fffffffffffffffffffffffffffffffebaaedce6af48a03bbfd25e8cd0364141");
while (checkrBigInt.compareTo(orderBigInt) >= 0 || checkrBigInt.equals(BigInteger.ZERO) || checkrBigInt.equals(BigInteger.ONE)) {
r = Crypto.SHA256(r.concat(x));
checkrBigInt = new BigInteger(r);
}
return r;
}

        /* generate random string */
coinjs.random = function(length) {
var r = "";
var l = length || 25;
var chars = "!$%^&*()_+{}:@~?><|\./;'#][=-abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890";
for(x=0;x<l;x++) {
r += chars.charAt(Math.floor(Math.random() * 62));
}
return r;
}

As you can see, there are lot of random values used to help with key generation before it is hashed a random number of times. Some values will be more unique than others, but as you can see we are using everything from the screen size, language, date+time, static stings, random data and your mouse positions to generate enough entropy to make a key pair. I've also had this code reviewed by a lot of people.

If anyone has any questions, please feel free to get in touch.
16  Economy / Games and rounds / Re: 1000 BTC GIVEAWAY! From your friend rekcahxfb on: August 03, 2016, 06:43:36 PM
1CWHWkTWaq1K5hevimJia3cyinQsrgXUvg
17  Bitcoin / Project Development / Re: [coinb.in] Open Source, Multi Signature, HD Wallet and more! on: May 21, 2016, 08:43:40 PM
Replace by fee (RBF) has been added to coinb.in you can find it under the advanced tab, on the new transaction page.

Enjoy people!
18  Economy / Web Wallets / Re: Coinb.in balance GONE? Hacked? Someone help please!!! on: March 29, 2016, 07:36:23 AM
Hey,

I run coinb.in, I wrote the majority of the code, it's open source, free to use, edit, download from github, run offline and use locally.

Whats importent to remember with coinb.in is that, the server does not hold your keys EVER, they are generated in your browser. I can confirm the coinb.in server is secure, and no unauthorized access has been made to it, and no modifications have been made to the site, it has not been hacked.

Unfortunately though, it seems that your coins have been moved from your address to another address (stolen?) Which means it's likely it's an issue your end with spyware/maleware, as I would have received 1000s of complaints from my user base if it was an issue with coinb.in

I'm sorry for your loss, I hope you figure out what happened and can report back.

All the best.

19  Bitcoin / Project Development / Re: [coinb.in] Open Source, Multi Signature, HD Wallet and more! on: March 13, 2016, 05:39:52 PM
OutCast3k,

A PM has been sent over to you! Smiley

Please, reply me ASAP!  Thanks!

Replied! Its probably easier and faster for me to deal with your request via email, but I'm happy to help Smiley
20  Bitcoin / Alternative clients / Re: How to get my bitcoins from my old wallet? on: March 07, 2016, 06:47:05 PM
There is no inputs. Therefore nothing is being "spent".

Are you able to extract your private keys?
Pages: [1] 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 »
Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!