So once you give them permission, it will execute a program and then will communicate to their C2 (command and control), to downloaded a script. It's similar running application as administrator (on Windows) or giving root access to application (on Linux). So it could be avoided if the user being skeptical. Even pirate community should have reputation system to know which files is more or less likely to be dangerous. What do we learn here?
Never ever downloaded fake or pirated software. You already have a powerful machine in your hand and you have like shell out thousands of dollars already, so why not just buy original software as not to compromise your expensive MacOS.
FWIW few people buy used or old macbook either due to work demand or lifestyle.
|
|
|
Thanks for creating and sharing your project. And while i'm not developer, do you know existence of Minsc[1] or Miniscript[2]? Both allows developer to create Bitcoin script with less difficulty. And does your project support Taproot? [1] https://min.sc/[2] bitcoin.sipa.be/miniscript/
|
|
|
Learning Bitcoin technical detail from whitepaper isn't best idea. I'd suggest to use easier learning resource such as https://learnmeabitcoin.com/technical/. - Agent 2 uses a hash function with inputs: the previous message (1) and its own public key (2), the output is the "signature" of the previous agent (agent 1) (3)
Owner 2 doesn't do anything on 2nd transaction. Owner 1 use hash of 1st transaction (1) and specify that he want to send Bitcoin to owner 2 (2). - At the same time, agent 1 uses its private key to "sign" (4) its own signature that was generated by agent 2 (I must have missed something here)
Actually 2nd transaction means owner 1 send Bitcoin to owner 2. - Also, agent 1 can verify its own signature (5)... it does not makes sense to me either
IIRC it actually means anyone can use owner's 1 public key to verify whether owner's 1 signature is valid or not. p.s.: I used the "img" tag wrongly I think, I did this: [ img ]url_of_image [ / img], if any knows how to correct this..
1. You need to use raw image link such as https://i.ibb.co/6rkP4Pk/Sans-titre.png (not https://ibb.co/Xjqszsq). 2. If you use img tag as newbie, this forum simply show the image url.
|
|
|
Scammer really have clever idea. But i expect Patreon will take action very soon since they don't want all of their email got blocked by Google (and other major email service provider) due to high rate of report. Although i find it's weird that Patreon would send email if you don't subscribe to anyone.
|
|
|
Apakah bisa memakai non-custodial wallet seperti Trustwallet atau Coinbase Wallet? Atau hanya bisa dengan seperti Bitcoin core atau Electrum?
Wallet apapun yang memiliki fitur untuk import private key dan sign message. Tetapi saya sendiri menyarankan menggunakan wallet Electrum. Tadi saya sudah mendownload file .exe nya. Tapi ketika saya buka tidak bisa. Hanya nampak jendela nya sebentar lalu menghilang Om.
VanitySearch bukan aplikasi dengan GUI, penggunaanya harus menggunakan bantuan command prompt (cmd). Contoh penggunaannya bisa dilihat di https://github.com/JeanLucPons/VanitySearch/#usage.
|
|
|
1) In HD wallets, is anything beyond 12 words pointless? In theory, more words more security, but in practice, doesn't this lower security? you may accidentally type a word the wrong way if you manually type or, or it just creates more lenght of bits in the material word to store
Security and user mistake are 2 different topic. This is not really true. The private keys may have the same bit-lengths, but the bit entropy from 24-word seed phrases is 2^12 larger than 12-word phrases (because 2^24 for 24 words / 2^12 for 12 words = 2^12 extra strength) which makes it harder to brute-force the master private key.
I am right because this is about bitcoin. It is not true if you are not talking about bitcoin. If it is bitcoin, it is entirely true. Anything that can compromise 128 bit of security makes 24 word seed phrase useless because if the seed phrase can not be compromised, the private key can be compromised and that makes the 24 words security useless. It's true ECDSA/secp256k1 only provide 128-bit security bits[1]. But on other hand, is there any rough security bits measurement for words generated using BIP 39? [1] https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-57pt1r5.pdf
|
|
|
Is not possibile to generate them only with terminal? You can: A privatekey (hex upppercase) < /dev/urandom tr -cd "A-F0-9" | head -c 64 ; echo But you'd better know what you're doing when manually creating and backing up private keys. Mistakes are easy to make. Tank yo all. I will try with few sats. Make sure the private key generated within valid range. It should from 1 to FFFFFFFF FFFFFFFF FFFFFFFF FFFFFFFE BAAEDCE6 AF48A03B BFD25E8C D0364140. Not all software/library throw error or silently perform modulo if you enter private key outside that range.
|
|
|
Any thoughts?
Have you tried different device (using VM also counts) or different wallet file? Is the wallet file you are attempting to open compatible with the version of Bitcoin Core you are using?
This is a bad question. Bitcoin Core maintain backward compatibility and have ability to open wallet created with older version of Bitcoin Core.
|
|
|
Prioritizing Privacy At ex7.io, we value the personal privacy of our users. No intrusive questions or requests for personal data – here, you can securely and completely anonymously conduct your cryptocurrency exchanges.
Aside from your KYC/AML page, i also found out your main page load javascript from 2 different website which perform tracking. Those refer to Yandex Metrica and Google Tag Manager.
|
|
|
I was thinking something similar to what suchmoon just wrote.
Posts, and merits are different actions to trust feedbacks and trust list. Also whoever is creating such a tracker will need access to the user's trust list to determine which feedbacks to show them and which not too. It will be a pain to those members that gets lots of retaliatory feedbacks to be notified of them constantly even if the senders are not on their trust list.
- Jay -
But if we know we got feedback as soon as someone left it to our account, we can ask for clarification immediately. If you ask for clarification after some time, other member (including the one who left feedback) may ask why you didn't ask for clarification immediately. I saw it happened on reputation board few times.
|
|
|
Thank you @BitMaxz and @mole0815. I'll check if they sell any digital goods that interest me and report my experience near in the future. Today mempool.space report $2 for no priority and $2.4 for high priority which makes testing with small amount somewhat viable. Does anyone have experience with ShopinBit?
OP, if you ask about experiences with ShopinBit.com, maybe those who live in Europe and Poland, there is a big possibility that they have used ShopinBit.com. I personally haven't used it. @mole0815, probably one of the ShopinBit.com users. But don't worry, the ShopinBit.com website already has representatives on Bitcointalk, where you can ask questions and discuss directly with their team. Their official thread Topic: ShopinBit.com - Europe's biggest Bitcoin Store - 800.000+ Products., and their named representatives , ShopinBit.deHopefully the information above can help you now and in the future. But previously i already mention link to that thread.
|
|
|
I wanted to check old blog post, so i visit that onion link and choose "BLOG" which redirect me to https://blog.wasabiwallet.io/. But it surprise me that link show me message "403 Forbidden Access to this resource on the server is denied!". I don't mind redirection to clearnet, but i expect they configure their website to explicitly allow Tor visitor.
|
|
|
Meanwhile, your recommendation (Aegis) let us copy encrypted backup file as we like.
ente Authenticator (a secondary product of ente[1]) also allows you to export your codes: --snip-- It looks good. But it's weird the github has almost 1K stars, while it has only 1K+ download on google play[1]. So i'd continue to recommend Aegis, unless they use Apple device. [1] https://play.google.com/store/apps/details?id=io.ente.auth
|
|
|
--snip--
It definitely looks like he's just running his posts through ChatGPT. ChatGPT usually create more formal text though, although i know user can ask it to be less formal. Although on an unrelated note, all my transactions have 00000000 locktime which disables it.
Yeah. I mentioned risk of accidentally locked coin for long time since i recall it happened to someone on technical board. If you have the time, do stop by in the thread to leave your advice about this as it would be appreciated.
I already stopped by before creating this thread. But i couldn't think any suggestion that might be helpful, so i just left merit to post which is likely to be helpful. But this case is still weird because AI usually give better advice than the ones posted in the technical support section.
AI usually give bad/wrong advice when when the topic is really specific (like sequence number on Bitcoin transaction).
|
|
|
If so, I imagine that this practice is more secure than the same process on an online machine, or is this an erroneous thought?
No. What matter most is the RNG source used by script/wallet software you use. Thank you. Having care of my sanity , your suggestion is fine. But, let me give you a more complete view of the problem. My question is: can an offline computer generate the proven keys, the public keys and finally the addresses?If so, I imagine that this practice is more secure than the same process on an online machine, or is this an erroneous thought? Thank you Sanity check in Computer Science terms is a bit different from what sanity literally means. As I have already answered previously, you do not require an internet connection to generate private keys, public keys or their addresses. Again, so long as your OS has the required dependencies or the softwares (Electrum comes preinstalled in Tails), you can generate ECDSA private keypairs and your addresses.FWIW Debian ISO file also include Electrum. To be specific, debian-12.4.0-amd64-BD-2 include that (based on it's list file[1]). Or you could just include needed application/script on DVD or flash drive used to install the OS on offline computer. [1] https://cdimage.debian.org/debian-cd/current/amd64/list-bd/
|
|
|
This thread will serve as reference of user who spread false, fake or unhelpful information on technical board. Here are list of board i count as technical board. - "Development & Technical Discussion" with it's child boards.
- "Mining" with it's child boards, excluding "Mining speculation".
- "Bitcoin Technical Support".
If you decide to create a report, you're expected to explain why the post is technically wrong. Vague explanation such as "technical nonsense" or "it's impossible" isn't accepted. It's also acceptable to also include post which is technically wrong outside board i mentioned. Here is recommend report format, User:
Additional information (optional): * Additional information 1
List of post:
[quote] Post 1 [/quote]
Explanation why post 1 is technically wrong.
In case reported post edit or no longer exist, you can use https://ninjastic.space/ and http://loyce.club/archive/posts/ to verify a user actually create post quoted in this thread. But take note any post/thread could be edited after those website perform archival. Below text is reference for trust feedback to user snuffman8 when initially creating this thread.Disclaimer: I create this thread primarily as reference for reporting his post and neutral feedback. Profile link: snuffman8Update: Moderator delete those post i mentioned below. You can use https://ninjastic.space/search?author=snuffman8 to verify my thread. List post with false/fake information: If you suspect the wallet.dat was created with an early version of Electrum, it might be a good idea to try using an older version. You can find historical versions of Electrum on their official GitHub repository. As for extracting private keys manually, the content in the wallet.dat file is encrypted and not easily readable with a text editor.
I recommend checking Electrum's documentation or community forums for guidance on compatibility issues and extracting private keys.
This is wrong since Electrum doesn't create wallet file with .dat extension. Considering the dynamic nature of the crypto space, it's challenging to guarantee absolute future compatibility. However, WIF seems to align more closely with your preference for direct compatibility with the Bitcoin protocol.
WIF isn't part of Bitcoin protocol. It doesn't matter whether you store private key in binary, hex or other format. The sequence number in your input is set to 2147483648. This value might trigger some network-related behavior, especially when combined with RBF. You may want to experiment with different sequence numbers.
The topic ask about invalid script, which isn't related at all. Suggesting using different sequence is also irresponsible where someone could accidentally lock their coin for really long time. It's also worth to mention this user is suspected of using AI on this post, https://bitcointalk.org/index.php?topic=5456516.msg63518321#msg63518321.
|
|
|
|