Bitcoin Forum
August 17, 2022, 03:52:54 PM *
News: Latest Bitcoin Core release: 23.0 [Torrent]
  Home Help Search Login Register More  
  Show Posts
Pages: « 1 ... 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 [118] 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 ... 416 »
2341  Bitcoin / Bitcoin Discussion / Re: Bitcoin Foundation Divided Over Controversial Restructuring Proposal on: April 07, 2015, 04:55:01 AM
IMO they should just end the Foundation. It seems that they have very little money left and their reputation is (justifiably or not) trashed. Why even go to the trouble of rebuilding it?

They accomplished quite a bit over the years. They paid Gavin and several other developers, they funded, they produced some good lobbying results, etc. The people who worked toward these good results shouldn't feel ashamed to "call it a day" now. I was an annual member for the first two years of the Foundation (currently I'm not a member), and I'm not particularly disappointed in how my money was apparently used.
2342  Other / Meta / Re: [Serious] Avatar Rules Discussion on: April 06, 2015, 08:02:43 PM
bigbitmine and El Emperador's avatars are fine IMO.
2343  Other / Meta / Re: [Serious] Avatar Rules Discussion on: April 04, 2015, 05:21:37 AM
1) Is nudity allowed? If so, to what extreme? To a non nsfw tag?


2) Is NSFL allowed? [NSFL = Not Safe For Life]


3) Is other adult content allowed?


If I receive (or anticipate receiving) several complaints about something, it's probably too much.

4) Are paid avatar campaigns allowed?


5) Is copyright content allowed? How should copyright holders request deletion of infringing content?

You are not allowed to infringe copyright, of course. I have no way of knowing whether you have a license to use particular images, and it's additionally sometimes difficult to determine whether fair use applies, so I will not be proactively removing possibly-infringing images. The DMCA process is used.

6) Is racial / sexist content allowed?


7) Is there a limit on 'annoyingness'?

Animation is not allowed, so I feel like it'd be difficult to create an avatar that is sufficiently annoying that I'd want to remove it.

8 ) Are 'imitation' avatars allowed? Ie wearing avatars of specific companies to give the false impression of representation.

Copying someone's avatar in order to impersonate them or cause confusion is not allowed. But if you both use some generic picture of some famous person or something, that's probably not going to count, and using elements of someone's avatar for purposes other than impersonation will probably be allowed. Same for companies.

9) How should users report those with infringing avatars?

DMCA takedown notices or any other legal thing must be emailed to me. For other issues, post about it in Meta.
2344  Economy / Auctions / Advertise on this forum - Round 148 on: April 04, 2015, 03:54:46 AM
The forum sells ad space in the area beneath the first post of every topic page. About 25% of ad income goes to the forum moderators as thanks for all of their work. (There are many moderators, so each moderator gets only a small amount -- moderators should be seen as volunteers, not employees.) The rest is stored in the forum's treasury (verifiably), where it sits until the forum needs it.

Ads are allowed to contain any non-annoying HTML/CSS style. No images, JavaScript, or animation. Ads must appear 3 or fewer lines tall in my browser (Firefox, 900px wide). Ad text may not contain lies, misrepresentation, or inappropriate language. Ads may not link directly to any NSFW page. Ads may be rejected for other reasons, and I may remove ads even after they are accepted.

There are 10 total ad slots which are randomly rotated. So one ad slot has a one in ten chance of appearing. Eight of the slots are for sale here. Ads appear only on topic pages with more than one post, and only for people using the default theme.

The ad lasts at least 7 days starting from when I put it up. (However, if you look at the ad history you'll see that ads usually get at least 8 days, and sometimes as many as 10, but this is random and definitely not guaranteed.)


Exact historical impression counts per slot:

Info about the current ad slots:

Ad blocking

Hero/Legendary members, Donators, VIPs, and moderators have the ability to disable ads. I don't expect many people to use this option. These people don't increase the impression stats for your ads.

I try to bypass Adblock Plus filters as much as possible, though this is not guaranteed. It is difficult or impossible for ABP filters to block the ad space itself without blocking posts. However, filters can match against the URLs in your links, your CSS classes and style attributes, and the HTML structure of your ads.

To prevent matches against URLs: I have some JavaScript which fixes links blocked by ABP. You must tell me if you want this for your ads. When someone with ABP and JavaScript enabled views your ads, your links are changed to a special randomized URL which redirects to your site when visited. People without ABP are unaffected, even if they don't have JavaScript enabled. The downsides are:
- ABP users will see the redirection link when they hover over the link, even if they disable ABP for the forum.
- Getting referral stats might become even more difficult.
- Some users might get a warning when redirecting from https to http.

To prevent matching on CSS classes/styles: Don't use inline CSS. I can give your ad a CSS class that is randomized on each pageload, but you must request this.

To prevent matching against your HTML structure: Use only one <a> and no other tags if possible. If your ads get blocked because of matching done on something inside of your ad, you are responsible for noticing this and giving me new ad HTML.

Designing ads

Make sure that your ads look good when you download and edit this test page:
Also read the comments in that file.

I will send you more detailed styling rules if you win slots in this auction (or upon request).

Auction rules

You must be at least a Jr Member to bid. If you are not a Jr Member and you really want to bid, you should PM me first. Tell me in the PM what you're going to advertise. You might be required to pay some amount in advance. Everyone else: Please quickly PM newbies who try to bid here to warn them against impersonation scammers.

Post your bids in this thread. Prices must be stated in BTC per slot. You must state the maximum number of slots you want. When the auction ends, the highest bidders will have their slots filled until all eight slots are filled.

So if someone bids for 8 slots @ 5 BTC and this is the highest bid, then he'll get all 8 slots. If the two highest bids are 8 slots @ 4 BTC and 1 slot @ 5 BTC, then the first person will get 7 slots and the second person will get 1 slot.

The notation "2 @ 5" means 2 slots for 5 BTC each. Not 2 slots for 5 BTC total.

- When you post a bid, the bids in your previous posts are considered to be automatically canceled. You can put multiple bids in one post, however.
- All bid prices must be evenly divisible by 0.05.
- The bidding starts at 0.50.
- I will end the auction at an arbitrary time no more than 12 days from now. (I will probably end the auction 1-3 days before the ads are scheduled to go up.)
- If two people bid at the same price, the person who bid first will have his slots filled first.
- Bids are considered invalid and will be ignored if they do not specify both a price and a max quantity, or if they could not possibly win any slots

If these rules are confusing, look at some of the past forum ad auctions to see how it's done.

I reserve the right to reject bids, even days after the bid is made.

You must pay for your slots within 24 hours of receiving the payment address. Otherwise your slots may be sold to someone else, and I might even give you a negative trust rating. I will send you the payment information via forum PM from this account ("theymos", user ID 35) after announcing the auction results in this thread. You might receive false payment information from scammers pretending to be me. They might even have somewhat similar usernames. Be careful.
2345  Economy / Auctions / Re: Advertise on this forum - Round 147 on: April 04, 2015, 03:54:21 AM
Sorry, I accidentally neglected to include some people in the PM with the payment addresses. I just sent it.
2346  Economy / Auctions / Re: Advertise on this forum - Round 147 on: April 03, 2015, 08:33:14 PM
3 @ 1.2

You're too new. PM me first next time.

8 @ 2.05

You have negative trust from my perspective. I don't trust that you'll pay, and I don't trust that whatever you're going to advertise is safe. So I will reject your bid.

Due to this, I will ignore champbronc2's unnecessary increase.

Auction ended. Final result:

Slots BTC/Slot Person
1 1.90 luckyflop
3 1.90 champbronc2
2 1.85 MariaQin
1 1.85 arlekyn13
1 1.85 betcointm
2347  Other / Meta / DDoS on: April 02, 2015, 05:22:27 PM
Starting about 14 hours ago, there has been a large DDoS against the forum that is apparently still ongoing. The forum was down for a few hours as a result.

I'm not going to use Cloudflare for Cloudflare is a massive central point of failure to the Internet. Tons of sites (including most large Bitcoin sites) use it. Additionally, in most cases Cloudflare can undetectably read any encrypted traffic passing through their service because they have the site's HTTPS key. Even if you use their keyless HTTPS feature, they can still read your traffic (though this is detectable with something like Certificate Patrol) because they have an agreement with a CA which allows them to issue whatever certificates they want (they are essentially a CA). Also, I've heard that Cloudflare is not especially effective at stopping many types of DDoS attack.

Instead, I purchased DDoS protection that works at a lower level. After filtering, it sends user TCP traffic to the forum's server verbatim. This eliminates the need for giving up the forum's HTTPS key. It seems to be effective at stopping this attacker's traffic, but it may be introducing some periodic downtime/slowness/latency. We're still looking into it. DDoS protection services (even the most expensive ones) are notorious for often being useless, shady, or unreliable, so who knows whether this service or any future ones I may try will end up working out... Unfortunately, the Internet is just particularly weak to DDoS attacks, and there are no great solutions available.
2348  Other / Meta / Re: Bitcointalk no longer at ? on: April 02, 2015, 04:55:21 PM
Changing IPs was necessary for DDoS protection. The forum will stay at this IP for a while, though probably not permanently. It probably won't return to
2349  Other / Meta / Re: Avatars re-enabled on: April 02, 2015, 04:39:24 PM
Avatars are working normally now.

There are a small handful of people who had an animated avatar before this new system. I'm not going to remove those, but if they update their avatars then animation won't be possible.

That could be true, also maybe he was planning to change it at a certain time but then there was a ddos attack and he went to bed or something.

That's what happened.
2350  Other / Meta / Re: Avatars re-enabled on: April 01, 2015, 06:17:43 AM

If you especially dislike the avatar you were given, uploading a new avatar (or reuploading your current one) will give you a random new one. If anyone has any ideas for more "fool" avatars to add, post them here and I might add them later today.

The avatar feature will work properly after April 1.
2351  Other / Meta / Re: Avatars re-enabled on: April 01, 2015, 04:21:02 AM
Can we have animated gifs?

2352  Other / Meta / Avatars re-enabled on: April 01, 2015, 04:08:50 AM
It is now once again possible to upload an avatar to the forum. You must be a full member or above to upload an avatar. Go to this page (also linked in your "Forum Profile Information" settings):

You can only upload new avatars: you can't choose one from the server or use a link as you could before. (If you are currently using one of these types of avatars, the upload avatar page will say that you don't have an avatar.) Also, uploaded avatars are not resized: they are simply rejected if they are too large.
2353  Other / Meta / Re: SSL changes 2015-03-31T20:00UTC on: March 31, 2015, 10:46:07 PM
The * cert (used for the image proxy) was renewed a day or two ago. The actual RSA key didn't change. I didn't change the supported cipher suites. The certificate authority does signing using SHA-256 instead of SHA-1 now, though.
2354  Other / Meta / Re: Email from Bitcointalk "admin" on: March 31, 2015, 10:42:06 PM
Yeah, it's a scam and not actually from Your email client should have marked it as spam.
2355  Other / Meta / Re: Staff Hypocrisy and Selective Enforcement of Rules on: March 28, 2015, 02:38:13 AM
So if some one who trusts me also trusts the default trust, then I become untrusted.

That's not how it works. If someone adds you directly to their trust list, then no exclusions will cause you to be removed.

Your constant obsessive ramblings about this prove that you don't belong in the default trust network.
2356  Other / Meta / Re: A more effective way to reduce signature spamming on: March 26, 2015, 03:47:43 PM
Yeah, I'm thinking that a good response to sig spam might be to ban the person for ~5 days and disable all but the most basic styling in their signature for 60+ days. (With times increasing for repeat offenders.)
2357  Other / Meta / Re: Why is the trust changing so much? on: March 25, 2015, 05:53:37 AM
The trust score algorithm is pretty stupid. I've been adjusting it in various ways to make it work most of the time, but there's really no good reason why people get particular scores, especially in the negative direction.
2358  Other / Meta / Re: Activity & new membergroup limits on: March 21, 2015, 08:22:13 PM
Out of curiosity, how would someone who can read your code be able to accurately predict when someone will become legendary without the secret seed?

I meant that the secret seed is in the code, so if you have access to it then you'll be able to calculate the number directly.
2359  Other / Meta / Re: Activity & new membergroup limits on: March 21, 2015, 07:27:18 PM
If I have many examples when one out of two variables is known and the other is unknown and the output is always the same, then I would think that it would be possible to determine what the unknown variable is. I would think it would be similar to figuring out the private key that was created using a weak RNG.

I would think that someone would essentially use some level of computing power to "guess"/hash what the secret seed is based on the above known variables.


I must be missing something then.

Let's say I (user id 17768) achieve Legendary status next tuesday, when my activity goes from 798 to 812. That means that:

799  <= 775 + conv(substr(sha1(concat('17768',secretSeed)), 1, 2), 16, 10) <= 812
24   <=       conv(substr(sha1(concat('17768',secretSeed)), 1, 2), 16, 10) <= 37
0x18 <=            substr(sha1(concat('17768',secretSeed)), 1, 2)          <= 0x25

And by removing the substr(…, 1, 2) part we infer that secretSeed is either:

- some word such as sha1(concat('17768',secretSeed)) results in any hash starting with 18, or
- some word such as sha1(concat('17768',secretSeed)) results in any hash starting with 19, or
- some word such as sha1(concat('17768',secretSeed)) results in any hash starting with 1a, or
- some word such as sha1(concat('17768',secretSeed)) results in any hash starting with 25.

And it isn't difficult to find those 14 possible seeds, right?

That's like trying to find the equation of some particular line when you only have one point on the line. You can find an infinite number of possible lines, but there's essentially no chance that you'll find the correct line. And with SHA-1, you won't get any closer to finding the true "line" no matter how many points you have. There are very many possible seeds which would perfectly match the current list of Legendaries, but only one of them will also match all future Legendaries.

I was under the understanding this is why bitcoin related gambling sites generally have their server seed expire after (usually) 24 hours and have their 'rolls' result in a number that is 4 digits (usually two before and two after a decimal).

I'm not sure exactly how those sorts of gambling sites do their provable fairness, but they may be trying to protect against a different type of attack.
2360  Other / Meta / Re: Activity & new membergroup limits on: March 21, 2015, 06:15:39 PM
In theory, if you were to monitor when enough users are promoted to legendary status, it would be possible to reverse engineer what the secret seed is (you would however need to take into consideration that the required activity for each member may not be divisible by 14), although it would probably take more effort/work then it is really worth.

If you can find the secret seed by looking at when people are promoted, then you've (more-or-less) broken SHA-1's preimage resistance. This has never been done before, so if you do it, you should probably publish a paper about it. Smiley
Pages: « 1 ... 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 [118] 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 ... 416 »
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!