dooglus
Legendary
Offline
Activity: 2940
Merit: 1333
|
|
September 16, 2015, 05:57:24 PM |
|
Quoted. Just to prove for future use (forum allows to edit messages, so the date of message does not prove anything) Here is another hash (this time XT/BIP101 related): d894bd6f1f8222ceb5101cc1d5d3f3eb326e04ce6b9567f74cca151bb2b7b927 The date of a message becomes underlined if it is ever edited. If you don't edit a message, the timestamp is quite reliable. Someone with direct database access could have edited the message, but not a regular account owner.
|
Just-Dice | ██ ██████████ ██████████████████ ██████████████████████████ ██████████████████████████████ ██████████████████████████████ ██████████████████████████████ ██████████████████████████████ ██████████████████████████████ ██████████████████████████████ ██████████████████████████████ ██████████████████████████████ ██████████████████████████████ ██████████████████████ ██████████████ ██████ | Play or Invest | ██ ██████████ ██████████████████ ██████████████████████████ ██████████████████████████████ ██████████████████████████████ ██████████████████████████████ ██████████████████████████████ ██████████████████████████████ ██████████████████████████████ ██████████████████████████████ ██████████████████████████████ ██████████████████████████████ ██████████████████████ ██████████████ ██████ | 1% House Edge |
|
|
|
scriptman
Member
Offline
Activity: 112
Merit: 10
|
|
September 20, 2015, 02:26:41 PM |
|
You're not the first and you certainly won't be the last person concerning themselves with how to break the Bitcoin network.
You should use your knowledge and skills for productive means and help the community.
|
|
|
|
amaclin (OP)
Legendary
Offline
Activity: 1260
Merit: 1019
|
|
September 21, 2015, 04:42:41 AM |
|
You're not the first and you certainly won't be the last person concerning themselves with how to break the Bitcoin network.
You should use your knowledge and skills for productive means and help the community.
Why?
|
|
|
|
Nancarrow
|
|
September 23, 2015, 10:12:30 PM |
|
You're not the first and you certainly won't be the last person concerning themselves with how to break the Bitcoin network.
You should use your knowledge and skills for productive means and help the community.
What exactly do you think computer security professionals DO? Or cryptologists employed by three-letter agencies? Or military strategists? A person who wants to strengthen the bitcoin network and isn't constantly thinking of ways to break it, isn't doing their job.
|
If I've said anything amusing and/or informative and you're feeling generous: 1GNJq39NYtf7cn2QFZZuP5vmC1mTs63rEW
|
|
|
scriptman
Member
Offline
Activity: 112
Merit: 10
|
|
September 25, 2015, 02:09:31 PM |
|
You're not the first and you certainly won't be the last person concerning themselves with how to break the Bitcoin network.
You should use your knowledge and skills for productive means and help the community.
Why? Because building something is a lot more fun than knocking it down
|
|
|
|
basil00
Member
Offline
Activity: 60
Merit: 10
|
|
September 25, 2015, 02:12:26 PM |
|
Just noticed this transaction: 324456fe9ec97a380effba0a0205a226e380790b93e7366d39f2a416a44d2a34. 2000 sigOps!. (each OP_CHECKMULTISIGVERIFY inside the unexecuted OP_IF will count as 20 SigOps). Also, it appears that F2Pool will mine non-standard transactions (P2SH with >15 sigOps). It only takes 10 of such transactions to completely "fill" a block.
|
|
|
|
amaclin (OP)
Legendary
Offline
Activity: 1260
Merit: 1019
|
|
September 25, 2015, 02:13:44 PM |
|
Because building something is a lot more fun than knocking it down
jedem das seine
|
|
|
|
amaclin (OP)
Legendary
Offline
Activity: 1260
Merit: 1019
|
|
September 25, 2015, 02:18:42 PM |
|
Just noticed this transaction: 324456fe9ec97a380effba0a0205a226e380790b93e7366d39f2a416a44d2a34. 2000 sigOps!. (each OP_CHECKMULTISIGVERIFY inside the unexecuted OP_IF will count as 20 SigOps). Also, it appears that F2Pool will mine non-standard transactions (P2SH with >15 sigOps). It only takes 10 of such transactions to completely "fill" a block.
It was my transaction. F2Pool confirms non-standard txs under some conditions.
|
|
|
|
basil00
Member
Offline
Activity: 60
Merit: 10
|
|
September 25, 2015, 02:21:32 PM |
|
It was my transaction. Yes I guessed from the 1aa... addresses. F2Pool confirms non-standard txs under some conditions. Interesting. What conditions are these?
|
|
|
|
amaclin (OP)
Legendary
Offline
Activity: 1260
Merit: 1019
|
|
September 25, 2015, 02:28:19 PM |
|
Interesting. What conditions are these? Do not know. You should ask macbook-air
|
|
|
|
basil00
Member
Offline
Activity: 60
Merit: 10
|
|
September 26, 2015, 05:37:58 AM Last edit: September 26, 2015, 10:49:54 AM by basil00 |
|
Damn, looks like Amaclin's bot stole my BTC. My tx even had a signature and everything Edit: I have a new version that uses at least one real sig I can create an IsStandard tx that hashes >250MB, or in other words, only 5 tx to "fill" a XT 8MB block. Lucky I'm out of bits to play with.
|
|
|
|
edric
|
|
September 26, 2015, 06:37:39 AM |
|
Seems to me that I know new way to attack & flood bitcoin network. The last attacks were based on filling the blocks with transactions. This is because of limit of block size. (Consensus rule that the blocksize is below 1mb) But there are another limits for block which can not be changed without hard fork. There is a limit of SIGOPS in transactions included to a block.consensus.h /** The maximum allowed size for a serialized block, in bytes (network rule) */ static const unsigned int MAX_BLOCK_SIZE = 1000000; /** The maximum allowed number of signature check operations in a block (network rule) */ static const unsigned int MAX_BLOCK_SIGOPS = MAX_BLOCK_SIZE/50;
So, MAX_BLOCK_SIGOPS is 20000 How does the client calculate the number of SIGOPS? Let us look to the sources. main.cpp if (fStrictPayToScriptHash) { // Add in sigops done by pay-to-script-hash inputs; // this is to prevent a "rogue miner" from creating // an incredibly-expensive-to-validate block. nSigOps += GetP2SHSigOpCount(tx, view); if (nSigOps > MAX_BLOCK_SIGOPS) return state.DoS(100, error("ConnectBlock(): too many sigops"), REJECT_INVALID, "bad-blk-sigops"); }
Miner node includes transactions to a block while the nSigOps not exceeds 20000. The block with nSigOps > 20000 will be invalid (consensus rule) and will be rejected by all other nodes. Now let us look the transaction https://blockchain.info/tx/6766e75d6166a0a14bd814921d0f903285e15779e648d7ec52a4f7c0868ec07dand calculate the number of SIGOPS in it All input scripts are redeeming from p2sh-outputs with the inner scripts build on the same template: OP_0 OP_IF OP_15 OP_CHECKMULTISIG OP_ENDIF OP_SMALLINTEGER
The number of SIGOPS in this small script is 15 (this is maximum value to pass IsStandard) And the total number of SIGOPS in 6766e75d6166a0a14bd814921d0f903285e15779e648d7ec52a4f7c0868ec07d is 15 * 15 = 225So, the maximum number of such transactions in one block is only 88 (because floor ( 20000 / 225 ) = 88) And inserting 88 such transactions in one block leaves only 200 SIGOPS for regular transactions. Which leaves a room only for ~100 transactions in block for other persons The attack vector should be: 1) create and fund a big number of such p2sh-utxo 2) redeem them to OP_RETURN or to regular output Each such transaction costs 0.00045 for dishonest attacker (can be even less) 88 transactions (attack one block) will cost only 0.0396 BTC Daily attack 5.7024 BTC - not a big deal Wanna hire me for this dirty job? My name Boris. I pay 10k USD and 100 barrels oil you do this. I want you take down evil tool of Western intelligence! We have deal?
|
|
|
|
edric
|
|
September 26, 2015, 06:40:18 AM |
|
You're not the first and you certainly won't be the last person concerning themselves with how to break the Bitcoin network.
You should use your knowledge and skills for productive means and help the community.
What exactly do you think computer security professionals DO? Or cryptologists employed by three-letter agencies? Or military strategists? A person who wants to strengthen the bitcoin network and isn't constantly thinking of ways to break it, isn't doing their job. I agree. But one also has to ask themselves, if it is so easy to destroy, why hasn't the government taken out the bitcoin network yet? Clearly there is an agenda behind letting it go forward. I will let you figure that one out.
|
|
|
|
Syke
Legendary
Offline
Activity: 3878
Merit: 1193
|
|
September 27, 2015, 11:53:08 PM |
|
The date of a message becomes underlined if it is ever edited. If you don't edit a message, the timestamp is quite reliable. Someone with direct database access could have edited the message, but not a regular account owner.
There's a small timeframe (5-10 min IIRC) where the msg can be edited without notice. Edited. Previous edit at 53:08. Edit: Ok, so the original timestamp doesn't change, but the text of the msg can change.
|
Buy & Hold
|
|
|
amaclin (OP)
Legendary
Offline
Activity: 1260
Merit: 1019
|
|
September 28, 2015, 05:11:14 AM Last edit: September 28, 2015, 06:24:39 AM by amaclin |
|
Damn, looks like Amaclin's bot stole my BTC. My tx even had a signature and everything Edit: I have a new version that uses at least one real sig I can create an IsStandard tx that hashes >250MB, or in other words, only 5 tx to "fill" a XT 8MB block. Lucky I'm out of bits to play with. This is a provocation. This vile and filthy lie. How can you prove that you did not send the funds to my address to blacken my name? Note: these btc were not stolen. It is not possible to stole btc without a knowledge of private key.
|
|
|
|
amaclin (OP)
Legendary
Offline
Activity: 1260
Merit: 1019
|
|
September 28, 2015, 05:24:45 AM |
|
I agree. But one also has to ask themselves, if it is so easy to destroy, why hasn't the government taken out the bitcoin network yet? Government s do not need to "destroy" bitcoin. Because there is no danger from it.
|
|
|
|
amaclin (OP)
Legendary
Offline
Activity: 1260
Merit: 1019
|
|
September 28, 2015, 06:25:46 AM |
|
My name Boris. I pay 10k USD and 100 barrels oil you do this. I want you take down evil tool of Western intelligence! We have deal? Yes. PM me for details.
|
|
|
|
letsplayagame
|
|
September 28, 2015, 08:47:31 AM |
|
You're not the first and you certainly won't be the last person concerning themselves with how to break the Bitcoin network.
You should use your knowledge and skills for productive means and help the community.
What exactly do you think computer security professionals DO? Or cryptologists employed by three-letter agencies? Or military strategists? A person who wants to strengthen the bitcoin network and isn't constantly thinking of ways to break it, isn't doing their job. I wish more people understood this concept. This type of testing is exactly what bitcoin needs to become stronger. You have to think of different ways to attack bitcoin in order to develop better ways to defend it.
|
Chess, Bitcoin, Privacy and Freedom Make BTC Donations via XMR.TO or Shapeshift XMR: 47nMGDMQxEB8CWpWT7QgBLDmTSxgjm9831dVeu24ebCeH8gNPG9RvZAYoPxW2JniKjeq5LXZafwdPWH7AmX2NVji3yYKy76
|
|
|
amaclin (OP)
Legendary
Offline
Activity: 1260
Merit: 1019
|
|
September 28, 2015, 09:03:08 AM |
|
I wish more people understood this concept. This type of testing is exactly what bitcoin needs to become stronger. You have to think of different ways to attack bitcoin in order to develop better ways to defend it. What is the purpose to spend time to "defend a broken thing"? Nobody will pay for it. Because this is bitcoin. Nobody will fight to increase the value in your pocket. You are in ponzi scheme. Right now you do not understand it.
|
|
|
|
RealMalatesta
Legendary
Offline
Activity: 2366
Merit: 1132
|
|
September 28, 2015, 09:05:48 AM |
|
I agree. But one also has to ask themselves, if it is so easy to destroy, why hasn't the government taken out the bitcoin network yet? Government s do not need to "destroy" bitcoin. Because there is no danger from it. But there will be competitors who just wait for the right timing...
|
|
|
|
|