Bitcoin Forum
October 31, 2024, 05:25:39 PM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: « 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 [21] 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 ... 74 »
  Print  
Author Topic: Qora | POS | Assets | Names | Polls | Automated Transactions | Social Network  (Read 307538 times)
This is a self-moderated topic. If you do not want to be moderated by the person who started this topic, create a new topic.
olcaytu2005
Legendary
*
Offline Offline

Activity: 1470
Merit: 1024



View Profile
May 18, 2015, 07:21:30 AM
 #401

F.ci bter and poloniex. We need bittrex.
Lorenzo
Sr. Member
****
Offline Offline

Activity: 406
Merit: 250



View Profile
May 18, 2015, 07:55:08 AM
 #402

poloniex has come a long way. funny because I thought they were the underdog, and so far to my knowledge they haven't had major issues.

They did have one major issue back in March 2014 when they were hacked (or more accurately, someone discovered a method to exploit a bug in their withdrawal mechanism) which saw them lose about 15% of their users' funds. They did eventually make all of this back though.

Few exchanges have had zero major security issues. Cryptsy is one of the luckier ones, although lots of people complain about withdrawal delays there. I think Bittrex is another one that hasn't suffered a major hack yet.

I know some people actually prefer to deal with exchanges that have been hacked in the past too. The idea is that they would have learned from the experience and strengthened their security practices. Personally, after witnessing what happened to Mt. Gox and Bter after their first hacking incidents, I think it's a stupid idea. Cheesy
CryptKeeper
Legendary
*
Offline Offline

Activity: 2044
Merit: 1055



View Profile
May 18, 2015, 09:33:03 AM
 #403


Very interesting! I'm trying to wrap my head around this. I see a potential security issue with the "refund timeouts". What if Alice post her tx just before the timeout elapses, resulting in Bob never get the chance to receive his BURST? Could you elaborate on that?

Follow me on twitter! I'm a private Bitcoin and altcoin hodler. Giving away crypto for free on my Twitter feed!
Vrontis (OP)
Sr. Member
****
Offline Offline

Activity: 351
Merit: 250



View Profile WWW
May 18, 2015, 09:39:26 AM
 #404

Very interesting! I'm trying to wrap my head around this. I see a potential security issue with the "refund timeouts". What if Alice post her tx just before the timeout elapses, resulting in Bob never get the chance to receive his BURST? Could you elaborate on that?

Bob's AT must have have less length (expiration) than Alice's AT.So in case Alice sends the TX with the key to Bob's AT just before the expiration, Bob will have time to send the key to Alice's AT afterwards.

CryptKeeper
Legendary
*
Offline Offline

Activity: 2044
Merit: 1055



View Profile
May 18, 2015, 10:29:21 AM
 #405

Very interesting! I'm trying to wrap my head around this. I see a potential security issue with the "refund timeouts". What if Alice post her tx just before the timeout elapses, resulting in Bob never get the chance to receive his BURST? Could you elaborate on that?

Bob's AT must have have less length (expiration) than Alice's AT.So in case Alice sends the TX with the key to Bob's AT just before the expiration, Bob will have time to send the key to Alice's AT afterwards.

Can this be enforced by the AT code or must the trade participants agree on the timeouts?

Follow me on twitter! I'm a private Bitcoin and altcoin hodler. Giving away crypto for free on my Twitter feed!
vbcs
Full Member
***
Offline Offline

Activity: 137
Merit: 100


AT - Automated Transactions - CIYAM Developer


View Profile
May 18, 2015, 10:36:25 AM
 #406

Very interesting! I'm trying to wrap my head around this. I see a potential security issue with the "refund timeouts". What if Alice post her tx just before the timeout elapses, resulting in Bob never get the chance to receive his BURST? Could you elaborate on that?

Bob's AT must have have less length (expiration) than Alice's AT.So in case Alice sends the TX with the key to Bob's AT just before the expiration, Bob will have time to send the key to Alice's AT afterwards.

Can this be enforced by the AT code or must the trade participants agree on the timeouts?

No it cannot be enforced by the AT code itself as the AT on one side is not aware of the other AT. When user A initiates the ACCT then user B can see the timeout and use a proper one when creating the response ACCT.

1ELCU3hahFLMPPqsoHS2Mg2Rqjya6VXjAW
CIYAM
Legendary
*
Offline Offline

Activity: 1890
Merit: 1086


Ian Knowles - CIYAM Lead Developer


View Profile WWW
May 18, 2015, 10:41:13 AM
 #407

Can this be enforced by the AT code or must the trade participants agree on the timeouts?

The timeouts can be defaulted by the UI but of course you cannot prevent a user from changing the default.

This is why Bob and Alice must carefully check each others AT's before proceeding. I think we'll eventually create a tool for AT "verification" down the track in order to make it very easy to be sure you aren't being cheated by an incorrectly coded AT.

With CIYAM anyone can create 100% generated C++ web applications in literally minutes.

GPG Public Key | 1ciyam3htJit1feGa26p2wQ4aw6KFTejU
favdesu
Legendary
*
Offline Offline

Activity: 1764
Merit: 1000



View Profile WWW
May 18, 2015, 11:00:57 AM
 #408

news from BTER Support: "we are updating and configure the qora wallet. withdrawal and deposit will be effect. it is expected to finish in 1-2 days."

CryptKeeper
Legendary
*
Offline Offline

Activity: 2044
Merit: 1055



View Profile
May 18, 2015, 01:23:04 PM
 #409

Can this be enforced by the AT code or must the trade participants agree on the timeouts?

The timeouts can be defaulted by the UI but of course you cannot prevent a user from changing the default.

This is why Bob and Alice must carefully check each others AT's before proceeding. I think we'll eventually create a tool for AT "verification" down the track in order to make it very easy to be sure you aren't being cheated by an incorrectly coded AT.


OK, I understand that if Alice's AT - which goes first - has a small timeout of 24 hrs and Bob's AT has a much greater timeout, say 72 hrs, not much can go wrong.
Could the timeouts somehow be part of the secret, so that none of the participants can be tamper with it?

Follow me on twitter! I'm a private Bitcoin and altcoin hodler. Giving away crypto for free on my Twitter feed!
CIYAM
Legendary
*
Offline Offline

Activity: 1890
Merit: 1086


Ian Knowles - CIYAM Lead Developer


View Profile WWW
May 18, 2015, 01:27:52 PM
 #410

OK, I understand that if Alice's AT - which goes first - has a small timeout of 24 hrs and Bob's AT has a much greater timeout, say 72 hrs, not much can go wrong.

Actually you haven't quite got it - Alice's timeout needs to be the longer one (as it is Alice that will be sending the "key" to Bob's AT first).

Could the timeouts somehow be part of the secret, so that none of the participants can be tamper with it?

I'm not sure how that could be achieved - the best approach IMO is that the hash of the ACCT AT code could be published and compared to (to prove that it is the code that you think it is without having to actually understand AT machine code) and that you check the timeout value before proceeding.

Assuming there is enough of a time gap then there is not much that can go wrong (unless Bob's internet dies after Alice sent the secret and he can't get it working until the refund expiry time for Alice happens).

With CIYAM anyone can create 100% generated C++ web applications in literally minutes.

GPG Public Key | 1ciyam3htJit1feGa26p2wQ4aw6KFTejU
Lorenzo
Sr. Member
****
Offline Offline

Activity: 406
Merit: 250



View Profile
May 18, 2015, 02:12:17 PM
 #411

news from BTER Support: "we are updating and configure the qora wallet. withdrawal and deposit will be effect. it is expected to finish in 1-2 days."

Sweet!

I just checked Poloniex and it seems that they were able to fix whatever issues they had with their wallet. Only a few weeks ago, there was no way to buy, sell, or trade QORA. With both exchanges working again (or soon to be working again) and the recent news regarding ACCT integration, Qora is looking much healthier these days. Smiley
CryptKeeper
Legendary
*
Offline Offline

Activity: 2044
Merit: 1055



View Profile
May 18, 2015, 02:28:04 PM
 #412

OK, I understand that if Alice's AT - which goes first - has a small timeout of 24 hrs and Bob's AT has a much greater timeout, say 72 hrs, not much can go wrong.

Actually you haven't quite got it - Alice's timeout needs to be the longer one (as it is Alice that will be sending the "key" to Bob's AT first).

I always fail when the chances are 50:50 ...  Grin

Could the timeouts somehow be part of the secret, so that none of the participants can be tamper with it?

I'm not sure how that could be achieved - the best approach IMO is that the hash of the ACCT AT code could be published and compared to (to prove that it is the code that you think it is without having to actually understand AT machine code) and that you check the timeout value before proceeding.

Assuming there is enough of a time gap then there is not much that can go wrong (unless Bob's internet dies after Alice sent the secret and he can't get it working until the refund expiry time for Alice happens).


Couldn't you hard code reasonable timeout values into the AT code and publish the code's hash? So if everyone agrees on using the same AT code for ACCT, the timeout values would be common knowledge.

Follow me on twitter! I'm a private Bitcoin and altcoin hodler. Giving away crypto for free on my Twitter feed!
mrvegad
Hero Member
*****
Offline Offline

Activity: 616
Merit: 500


View Profile
May 18, 2015, 02:40:35 PM
 #413

OK, I understand that if Alice's AT - which goes first - has a small timeout of 24 hrs and Bob's AT has a much greater timeout, say 72 hrs, not much can go wrong.

Actually you haven't quite got it - Alice's timeout needs to be the longer one (as it is Alice that will be sending the "key" to Bob's AT first).

Could the timeouts somehow be part of the secret, so that none of the participants can be tamper with it?

I'm not sure how that could be achieved - the best approach IMO is that the hash of the ACCT AT code could be published and compared to (to prove that it is the code that you think it is without having to actually understand AT machine code) and that you check the timeout value before proceeding.

Assuming there is enough of a time gap then there is not much that can go wrong (unless Bob's internet dies after Alice sent the secret and he can't get it working until the refund expiry time for Alice happens).

Can you have this has a pop up where the user has to click OK on the pop up to close it? Having some kind of reminder is better then nothing, might help cut down on mistakes.
CIYAM
Legendary
*
Offline Offline

Activity: 1890
Merit: 1086


Ian Knowles - CIYAM Lead Developer


View Profile WWW
May 18, 2015, 02:44:07 PM
 #414

It is possible to hard-code values into ATs but understand as the Initiator and Responder would need different values we'd have to have two ACCT ATs rather than just one (at the moment the code is the same regardless of which role).

The next main focus for the AT project is going to be UI so we will consider how we can make the workflow and UX better as we proceed.

With CIYAM anyone can create 100% generated C++ web applications in literally minutes.

GPG Public Key | 1ciyam3htJit1feGa26p2wQ4aw6KFTejU
rlh
Hero Member
*****
Offline Offline

Activity: 804
Merit: 1004


View Profile
May 18, 2015, 03:08:24 PM
 #415

Check out thr block explorer.  What's with the 0 tx blocks, with 50 Qora fees.  Is this a bug on the explorer, or is Qora being exploited?

A Personal Quote on BTT from 2011:
"I'd be willing to make a moderate "investment" if the value of the BTC went below $2.00.  Otherwise I'll just have to live with my 5 BTC and be happy. :/"  ...sigh.  If only I knew.
wizzardTim
Legendary
*
Offline Offline

Activity: 1708
Merit: 1000


Reality is stranger than fiction


View Profile
May 18, 2015, 03:11:11 PM
 #416

Check out thr block explorer.  What's with the 0 tx blocks, with 50 Qora fees.  Is this a bug on the explorer, or is Qora being exploited?

Quoting from slack:

http://qora.co.in/?q=AVMvpJxRpdHxxEHcmnibDt6nYC3cBe8oH5
this is the address of an Infinite Loop AT that make's the 50 :qora: block reward

you can extend it by sending funds to it


So it is a gift for forgers!

Behold the Tangle Mysteries! Dare to know It's truth.

- Excerpt from the IOTA Sacred Texts Vol. I
rlh
Hero Member
*****
Offline Offline

Activity: 804
Merit: 1004


View Profile
May 18, 2015, 03:12:54 PM
 #417

Ah, ok.  Nice!  I would have assumed there would have been a 0 Qora TX for such a thing.  I'll take a look in the code to try and figure this one out.

A Personal Quote on BTT from 2011:
"I'd be willing to make a moderate "investment" if the value of the BTC went below $2.00.  Otherwise I'll just have to live with my 5 BTC and be happy. :/"  ...sigh.  If only I knew.
bonipper
Sr. Member
****
Offline Offline

Activity: 246
Merit: 250


View Profile
May 18, 2015, 03:14:11 PM
 #418

It is possible to hard-code values into ATs but understand as the Initiator and Responder would need different values we'd have to have two ACCT ATs rather than just one (at the moment the code is the same regardless of which role).

The next main focus for the AT project is going to be UI so we will consider how we can make the workflow and UX better as we proceed.


Have you considered testing your blockchain pruning concept on Qora?
wizzardTim
Legendary
*
Offline Offline

Activity: 1708
Merit: 1000


Reality is stranger than fiction


View Profile
May 18, 2015, 03:16:45 PM
 #419

@all: let's upvote, for visibility. It's worth it!

https://www.reddit.com/r/Bitcoin/comments/36brps/worlds_first_atomic_crosschain_transfer_performed/


http://www.reddit.com/r/CryptoCurrency/comments/36bao4/worlds_first_atomic_crosschain_transfer_completed/

Behold the Tangle Mysteries! Dare to know It's truth.

- Excerpt from the IOTA Sacred Texts Vol. I
CIYAM
Legendary
*
Offline Offline

Activity: 1890
Merit: 1086


Ian Knowles - CIYAM Lead Developer


View Profile WWW
May 18, 2015, 03:22:50 PM
 #420

Have you considered testing your blockchain pruning concept on Qora?

I am not sure exactly what you are referring to - but in regards to blockchain pruning ATs could be removed provided that they have become inactive (we are likely to further formalise this down the track).

With CIYAM anyone can create 100% generated C++ web applications in literally minutes.

GPG Public Key | 1ciyam3htJit1feGa26p2wQ4aw6KFTejU
Pages: « 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 [21] 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 ... 74 »
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!