Bitcoin Forum
November 11, 2024, 04:25:19 AM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Poll
Question: Should websites refuse to send coins to an already used address?
Yes - 7 (16.7%)
No - 35 (83.3%)
Total Voters: 42

Pages: [1] 2 »  All
  Print  
Author Topic: Should websites refuse to send coins to an already used address?  (Read 4241 times)
1000000 (OP)
Full Member
***
Offline Offline

Activity: 151
Merit: 100



View Profile
October 22, 2015, 10:51:36 PM
 #1

I think most of us know that address reuse is a bad idea and it's better to use a unique one for every transactions to avoid security and privacy issues. If a website owner accepts bitcoin deposits and a user wants to withdraw coins to an address which was already used in the past, should there be a warning or even an error message or would that be too annoying for the user?

I'm curious about your opinions!

“The Times 03/Jan/2009 Chancellor on brink of second bailout for banks”
achow101
Moderator
Legendary
*
expert
Offline Offline

Activity: 3542
Merit: 6886


Just writing some code


View Profile WWW
October 22, 2015, 11:12:49 PM
 #2

I don't think so. There are many legitimate uses for reusing an address. For example, many people on this forum have tip jar addresses. A lot of people also use web wallets. If those services began blocking used addresses, then those with tip jars may not be able to get tips.

c-cex-finch
Newbie
*
Offline Offline

Activity: 14
Merit: 0


View Profile WWW
October 22, 2015, 11:39:13 PM
 #3

Doesn't make much sense blocking used addresses, all recurring payments or repeat payments to an address just wont work. For one-off transactions it might make sense but I think the onus should lie on the user (my personal opinion).
gmaxwell
Moderator
Legendary
*
expert
Offline Offline

Activity: 4270
Merit: 8805



View Profile WWW
October 22, 2015, 11:42:45 PM
Merited by ABCbits (1)
 #4

Warning about it, at least, would be productive-- as there has been a fair amount of loss from people accidentally using the wrong address (in addition to the other ways reuse causes systemic harm).  If you mean "already used" ever, then prohibiting it requires a forever growing database, which isn't all that scalable.

A middle ground would be warning (or refusing) any that the site itself had previously sent to; and I think there was general agreement to do that kind of warn on (wallet local) reuse in bitcoin core in the past.
RocketSingh
Legendary
*
Offline Offline

Activity: 1662
Merit: 1050


View Profile
October 22, 2015, 11:59:50 PM
 #5

I don't think so. There are many legitimate uses for reusing an address. For example, many people on this forum have tip jar addresses. A lot of people also use web wallets. If those services began blocking used addresses, then those with tip jars may not be able to get tips.
I think, the Address re-use problem refers to spending. One may receive as many times as they want without any issue.

SFR10
Legendary
*
Offline Offline

Activity: 3178
Merit: 3529


Crypto Swap Exchange


View Profile WWW
October 23, 2015, 04:45:09 AM
 #6

It's better to use a unique one for every transactions to avoid security and privacy issues.
- Honestly I have to disagree with you as this makes the whole process a lengthy one due to the fact that each address should be created each time for every single transaction


If a website owner accepts bitcoin deposits and a user wants to withdraw coins to an address which was already used in the past, should there be a warning or even an error message or would that be too annoying for the user?
- If the address was used in the past by a different IP address then yes, there should be some sort of warning of "This address was used before with the following IP" and on top of that for the user to be able to use the same address, there should be some verification system implemented upon getting the said error

█▀▀▀











█▄▄▄
▀▀▀▀▀▀▀▀▀▀▀
e
▄▄▄▄▄▄▄▄▄▄▄
█████████████
████████████▄███
██▐███████▄█████▀
█████████▄████▀
███▐████▄███▀
████▐██████▀
█████▀█████
███████████▄
████████████▄
██▄█████▀█████▄
▄█████████▀█████▀
███████████▀██▀
████▀█████████
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
c.h.
▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
▀▀▀█











▄▄▄█
▄██████▄▄▄
█████████████▄▄
███████████████
███████████████
███████████████
███████████████
███░░█████████
███▌▐█████████
█████████████
███████████▀
██████████▀
████████▀
▀██▀▀
Envrin
Sr. Member
****
Offline Offline

Activity: 318
Merit: 251



View Profile
October 23, 2015, 06:39:33 AM
 #7

I don't believe it's something the core dev team should worry about / implement, no.  I think it's something best left up to the market, and individual merchants / online operations.

Everything I develop has generates a new address for every transaction by default, but sometimes clients will want things like change sent back to the originating address.  I explain to them why the practice is discouraged and so on, but at the end of the day, it is their business and they can do what they like.
belcher
Sr. Member
****
Offline Offline

Activity: 261
Merit: 523


View Profile
October 23, 2015, 09:08:02 AM
 #8

You realize "leaving it up to the market" could ruin bitcoin's privacy. That's what "systemic" harm means. The damage doesn't just go to the individual but to the entire system.

1HZBd22eQLgbwxjwbCtSjhoPFWxQg8rBd9
JoinMarket - CoinJoin that people will actually use.
PGP fingerprint: 0A8B 038F 5E10 CC27 89BF CFFF EF73 4EA6 77F3 1129
jacee
Legendary
*
Offline Offline

Activity: 1302
Merit: 1025


View Profile
October 23, 2015, 09:16:20 AM
 #9

I think most of us know that address reuse is a bad idea and it's better to use a unique one for every transactions to avoid security and privacy issues. If a website owner accepts bitcoin deposits and a user wants to withdraw coins to an address which was already used in the past, should there be a warning or even an error message or would that be too annoying for the user?

I'm curious about your opinions!

Well I don't it's a bad practice. Bitcoin is anonymous and so does the bitcoin address we use( for some). I think reusing the same address all over again makes it more secure for both party, let's say as a proof of ownership. Just like how it works in a staked address here in the forum, same thing as in a website, it also proves ownership or in a transaction to someone else. It proves that you are still the same person that uses the same address. Someone can claim to be that person yet can't use the old address so ye, I think the address is like a signature that proves who really is doing the transaction.
Wintermute
Full Member
***
Offline Offline

Activity: 178
Merit: 100


View Profile
October 23, 2015, 09:34:52 AM
 #10

I think most of us know that address reuse is a bad idea and it's better to use a unique one for every transactions to avoid security and privacy issues. If a website owner accepts bitcoin deposits and a user wants to withdraw coins to an address which was already used in the past, should there be a warning or even an error message or would that be too annoying for the user?

I'm curious about your opinions!

Well I don't it's a bad practice. Bitcoin is anonymous and so does the bitcoin address we use( for some). I think reusing the same address all over again makes it more secure for both party, let's say as a proof of ownership. Just like how it works in a staked address here in the forum, same thing as in a website, it also proves ownership or in a transaction to someone else. It proves that you are still the same person that uses the same address. Someone can claim to be that person yet can't use the old address so ye, I think the address is like a signature that proves who really is doing the transaction.

Bitcoin is not anonymous. The transaction history reveals a lot about addresses and connections between addresses.

Re-using addresses is bad from a security and anonymity point of view:
1) it reveals more about the owner of the address
2) when doing a transaction the public key of the address is revealed - this means that the additional protection layer by the hashing algorithm is gone

But forcing anything up on the user, is not the right way to do things. Wire transfers are less anonymous than cash, but still there are a lot of use cases why people prefer wires.


Envrin
Sr. Member
****
Offline Offline

Activity: 318
Merit: 251



View Profile
October 23, 2015, 10:13:48 AM
Last edit: October 23, 2015, 04:20:57 PM by Envrin
 #11

You realize "leaving it up to the market" could ruin bitcoin's privacy. That's what "systemic" harm means. The damage doesn't just go to the individual but to the entire system.

Understood, but again, I believe that's up to the individual users / merchants / market.  Everyone has a different usage for bitcoin, and some people don't mind their privacy being compromised in exchange for a more user-friendly system.  If your primary aim is privacy, then you should know how to do it, as it's not difficult to setup intermediate addresses for incoming funds, then split-up and bounce those funds around the blockchain enough times to skew where they went, before they hit your actual wallet.

medUSA
Legendary
*
Offline Offline

Activity: 952
Merit: 1005


--Signature Designs-- http://bit.ly/1Pjbx77


View Profile WWW
October 23, 2015, 10:27:55 AM
 #12

I understand there are advantages of having one-time addresses. There are also good reasons to reuse addresses if the owner do not need the extra privacy. Reusing an address should be a choice made by the recipient, not forced upon by any website or the network.
Delek
Full Member
***
Offline Offline

Activity: 157
Merit: 103


Salí para ver


View Profile WWW
October 23, 2015, 12:52:22 PM
 #13

I may sound paranoid, but the creation of a new address shouldn't never be done online and automatically. Creating a new private key every time you spend gives me chills.

\/\/\/\/\/\/\/
-> delek.net <-
/\/\/\/\/\/\/\
Hugroll
Hero Member
*****
Offline Offline

Activity: 756
Merit: 500


View Profile
October 23, 2015, 12:56:04 PM
 #14

i would say no, but im probably biased. personally i like to use 1address so that i can see easily the transactions that came in and out. if i had to replace my address everytime i used it thats just not organized enough for me  Sad
cellard
Legendary
*
Offline Offline

Activity: 1372
Merit: 1252


View Profile
October 23, 2015, 03:32:39 PM
 #15

I think that the wallets should have a way to automatically generate a new address each time so the average Joe doesn't get an headache and can still enjoy the increased privacy of not reusing addresses, but still have to option to reuse an address if you want to. Overall we need to simplify the functionality of stuff like this thinking on the average consumer which will not understand (and will not bother) with anything deeper that isn't clicking send, receive and whatnot.
NeuroticFish
Legendary
*
Offline Offline

Activity: 3850
Merit: 6585


Looking for campaign manager? Contact icopress!


View Profile
October 23, 2015, 03:44:49 PM
 #16

I think most of us know that address reuse is a bad idea and it's better to use a unique one for every transactions to avoid security and privacy issues. If a website owner accepts bitcoin deposits and a user wants to withdraw coins to an address which was already used in the past, should there be a warning or even an error message or would that be too annoying for the user?

I'm curious about your opinions!

Reuse of an address is the sole business of its owner. It's a matter of choice, for most people simplicity is the most important.
So imho, while talking about a coin that's about freedom.. asking about banning / blocking the freedom of choice is absurd.
Hence my answer is clearly NO! No blocking!

A warning can be done, because it helps the users learn and get more aware of what their choices mean. But that's all.

███████████████████████
████▐██▄█████████████████
████▐██████▄▄▄███████████
████▐████▄█████▄▄████████
████▐█████▀▀▀▀▀███▄██████
████▐███▀████████████████
████▐█████████▄█████▌████
████▐██▌█████▀██████▌████
████▐██████████▀████▌████
█████▀███▄█████▄███▀█████
███████▀█████████▀███████
██████████▀███▀██████████

███████████████████████
.
BC.GAME
▄▄▀▀▀▀▀▀▀▄▄
▄▀▀░▄██▀░▀██▄░▀▀▄
▄▀░▐▀▄░▀░░▀░░▀░▄▀▌░▀▄
▄▀▄█▐░▀▄▀▀▀▀▀▄▀░▌█▄▀▄
▄▀░▀░░█░▄███████▄░█░░▀░▀▄
█░█░▀░█████████████░▀░█░█
█░██░▀█▀▀█▄▄█▀▀█▀░██░█
█░█▀██░█▀▀██▀▀█░██▀█░█
▀▄▀██░░░▀▀▄▌▐▄▀▀░░░██▀▄▀
▀▄▀██░░▄░▀▄█▄▀░▄░░██▀▄▀
▀▄░▀█░▄▄▄░▀░▄▄▄░█▀░▄▀
▀▄▄▀▀███▄███▀▀▄▄▀
██████▄▄▄▄▄▄▄██████
.
..CASINO....SPORTS....RACING..


▄▄████▄▄
▄███▀▀███▄
██████████
▀███▄░▄██▀
▄▄████▄▄░▀█▀▄██▀▄▄████▄▄
▄███▀▀▀████▄▄██▀▄███▀▀███▄
███████▄▄▀▀████▄▄▀▀███████
▀███▄▄███▀░░░▀▀████▄▄▄███▀
▀▀████▀▀████████▀▀████▀▀
letsplayagame
Sr. Member
****
Offline Offline

Activity: 308
Merit: 250


View Profile
October 23, 2015, 06:54:11 PM
 #17

I think most of us know that address reuse is a bad idea and it's better to use a unique one for every transactions to avoid security and privacy issues. If a website owner accepts bitcoin deposits and a user wants to withdraw coins to an address which was already used in the past, should there be a warning or even an error message or would that be too annoying for the user?

I'm curious about your opinions!

Reuse of an address is the sole business of its owner. It's a matter of choice, for most people simplicity is the most important.
So imho, while talking about a coin that's about freedom.. asking about banning / blocking the freedom of choice is absurd.
Hence my answer is clearly NO! No blocking!

A warning can be done, because it helps the users learn and get more aware of what their choices mean. But that's all.

Privacy matters a lot to me but so does free will. This answer seems appropriate.

Chess, Bitcoin, Privacy and Freedom
Code:
 Make BTC Donations via XMR.TO or Shapeshift XMR: 47nMGDMQxEB8CWpWT7QgBLDmTSxgjm9831dVeu24ebCeH8gNPG9RvZAYoPxW2JniKjeq5LXZafwdPWH7AmX2NVji3yYKy76 
unamis76
Legendary
*
Offline Offline

Activity: 1512
Merit: 1012


View Profile
October 23, 2015, 08:39:38 PM
 #18

The website obviously should not refuse it, in my opinion. That's basically refusing a withdrawal... And that could raise suspicion and it's just not the right thing to do. That would also be discriminating Bitcoin addresses...

I'm definitely thumbs up for a warning tho Smiley
gmaxwell
Moderator
Legendary
*
expert
Offline Offline

Activity: 4270
Merit: 8805



View Profile WWW
October 23, 2015, 08:46:37 PM
Merited by ABCbits (3)
 #19

Reuse of an address is the sole business of its owner. It's a matter of choice, for most people simplicity is the most important.
Pedantically, the reuse of address harms third parties... and the decision to send coins is the sole business of the sender. I don't think you can answer this questions with simplistic reductions to arguments about free choice: there are multiple people involved in the question, and their free choices may conflict.

I may sound paranoid, but the creation of a new address shouldn't never be done online and automatically. Creating a new private key every time you spend gives me chills.
New addresses can be generated without generating new private keys.

Monero, for example, has no address reuse at all in the blockchain-- it's required for the prevention of double spending there. It seems to do okay with it.  The original bitcoin software never addresses w/ pay-to-ip; and even with addresses in use it the practice of reusing is somewhat inexplicable from a technology standpoint: it _really_ screws up your privacy along with that of people you transact with, and you can't reliably tell which of the payments you had outstanding were confirmed.... I think if it had been realized that people would behave the way they do, it likely would have been prohibited in the Bitcoin system from the start.

[I make these points as points of correctness, not to further argue it-- I think warning is more prudent, and will also have the effect of educating on this matter).
Delek
Full Member
***
Offline Offline

Activity: 157
Merit: 103


Salí para ver


View Profile WWW
October 24, 2015, 01:11:58 AM
 #20

Quote from: gmaxwell
New addresses can be generated without generating new private keys.

Monero, for example, has no address reuse at all in the blockchain-- it's required for the prevention of double spending there. It seems to do okay with it.  The original bitcoin software never addresses w/ pay-to-ip; and even with addresses in use it the practice of reusing is somewhat inexplicable from a technology standpoint: it _really_ screws up your privacy along with that of people you transact with, and you can't reliably tell which of the payments you had outstanding were confirmed.... I think if it had been realized that people would behave the way they do, it likely would have been prohibited in the Bitcoin system from the start.
Two more.questions regarding to that:
1) It was known how to generate a new address without a ptivate key back in 2009? If I'm right, this comes from a modern BIP (deterministic wallets) Shocked
2) I don't care about privacy, I prefer to have a working Donation address all the time rather than being 100% a ghost. :p

\/\/\/\/\/\/\/
-> delek.net <-
/\/\/\/\/\/\/\
Pages: [1] 2 »  All
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!