kromer
Member
 Offline
Activity: 86
Merit: 16
|
 |
November 17, 2013, 06:05:21 AM |
|
might as well ask on here: how do you verify (?pgp key) that the bitcoin qt is legit from bitcoin.org ? http://bitcoin.org/en/downloadnotice the .exe is 9mb but in actuality it is 11.1 mb.... did someone alter it? sirus runs that site, i doubt something odd is going on. (unless hacked) Isn't there a checksum? Yes, there is a link on the download page "Verify release signatures". Verifying the checksum of Bitcoin software is important. |
|
|
|
|
Kazimir
Legendary
Offline
Activity: 1176
Merit: 1011
|
|
November 17, 2013, 06:44:02 AM |
|
Isn't there a checksum?
Yes, there is a link on the download page "Verify release signatures". Verifying the checksum of Bitcoin software is important. If someone were able to change the software on the site, don't you think they'd be able to adjust the checksum mentioned there as well? |
|
|
|
|
|
bnjmnkent
|
|
November 17, 2013, 06:47:43 AM |
|
Isn't there a checksum?
Yes, there is a link on the download page "Verify release signatures". Verifying the checksum of Bitcoin software is important. If someone were able to change the software on the site, don't you think they'd be able to adjust the checksum mentioned there as well? That's why developers should always sign the checksums with their keys. However, the client_downloads to checksum_downloads ratio is daunting. |
|
|
|
|
|
Crazy
|
|
November 17, 2013, 06:51:07 AM |
|
I'm so confused.  What is actually driving this movement in China? It must be upper 90% speculation? And why are the moves so tight? Any blip in China and we almost immediately see equivalent movement in US markets. Just bots? Or something else? Full disclosure: I sold at ~$310 and yes I'm sick about it. |
|
|
|
|
|
FTWbitcoinFTW
|
|
November 17, 2013, 06:56:21 AM |
|
or maybe the first wave of interest hit china and all those rich ppl ?
|
|
|
|
|
notme
Legendary
Offline
Activity: 1904
Merit: 1002
|
|
November 17, 2013, 06:56:39 AM |
|
Isn't there a checksum?
Yes, there is a link on the download page "Verify release signatures". Verifying the checksum of Bitcoin software is important. If someone were able to change the software on the site, don't you think they'd be able to adjust the checksum mentioned there as well? That's why developers should always sign the checksums with their keys. However, the client_downloads to checksum_downloads ratio is daunting. The checksums are signed. |
|
|
|
|
CryptoMinter
Newbie
Offline
Activity: 53
Merit: 0
|
|
November 17, 2013, 06:56:55 AM |
|
Isn't there a checksum?
Yes, there is a link on the download page "Verify release signatures". Verifying the checksum of Bitcoin software is important. If someone were able to change the software on the site, don't you think they'd be able to adjust the checksum mentioned there as well? That's why developers should always sign the checksums with their keys. However, the client_downloads to checksum_downloads ratio is daunting. Checksum is for validating bit errors likely to occur in a bit stream i.e. communication channel. It is NOT EVER EVER meant to be used cryptographically!! It is very feasible to modify the file and keep a valid checksum. In fact, CRC was used in the old 802.11/WEP standard as a message authentication code, and we know how well that worked out. The entire file needs to be signed, or a secure hash (SHA256 hash in this case) that is signed. Signed by whom and validated by whom in which chain of trust is another can of worms best left unopened. I know that what is actually provided is a SHA256 hash and not a checksum so I'm just being mean :-( Edit: Technically it should be a MAC like HMAC_SHA256 as a pure SHA256 is vulnerable to a padding based attack, while SHA-3/Keccak in general is not. |
|
|
|
|
ChartBuddy
Legendary
Offline
Activity: 2366
Merit: 1822
1CBuddyxy4FerT3hzMmi1Jz48ESzRw1ZzZ
|
 |
November 17, 2013, 07:01:50 AM |
|
|
|
|
|
|
|
bnjmnkent
|
|
November 17, 2013, 07:08:29 AM |
|
Isn't there a checksum?
Yes, there is a link on the download page "Verify release signatures". Verifying the checksum of Bitcoin software is important. If someone were able to change the software on the site, don't you think they'd be able to adjust the checksum mentioned there as well? That's why developers should always sign the checksums with their keys. However, the client_downloads to checksum_downloads ratio is daunting. Checksum is for validating bit errors likely to occur in a bit stream i.e. communication channel. It is NOT EVER EVER meant to be used cryptographically!! It is very feasible to modify the file and keep a valid checksum. In fact, CRC was used in the old 802.11/WEP standard as a message authentication code, and we know how well that worked out. The entire file needs to be signed, or a secure hash (SHA256 hash in this case) that is signed. Signed by whom and validated by whom in which chain of trust is another can of worms best left unopened. I know that what is actually provided is a SHA256 hash and not a checksum so I'm just being mean :-( Edit: Technically it should be a MAC like HMAC_SHA256 as a pure SHA256 is vulnerable to a padding based attack, while SHA-3/Keccak in general is not. I think you are right. I got caught up in lingo, as they name the file SHA256SUMS.asc on their site. |
|
|
|
|
Buffer Overflow
Legendary
Offline
Activity: 1652
Merit: 1016
|
|
November 17, 2013, 07:10:11 AM |
|
Here's my detailed technical analysis of current events:  LOL, that made me chuckle. |
|
|
|
|
jubalix
Legendary
Offline
Activity: 2646
Merit: 1023
|
|
November 17, 2013, 07:12:13 AM |
|
when I look at the sell wall there seems nothing to sell after $500 to about $1000+ as if no one is selling??
|
|
|
|
|
solex
Legendary
Offline
Activity: 1078
Merit: 1006
100 satoshis -> ISO code
|
|
November 17, 2013, 07:19:28 AM |
|
 $500 to get murdered next... |
|
|
|
|
spoorancher
Newbie
Offline
Activity: 30
Merit: 0
|
|
November 17, 2013, 07:21:17 AM |
|
when I look at the sell wall there seems nothing to sell after $500 to about $1000+ as if no one is selling??
Don't worry, I'll be selling on the other side. Others will be too. The price just hasn't gotten high enough to take a position yet. |
|
|
|
|
|
|
spoorancher
Newbie
Offline
Activity: 30
Merit: 0
|
|
November 17, 2013, 07:37:25 AM |
|
|
|
|
|
|
|
|
ChartBuddy
Legendary
Offline
Activity: 2366
Merit: 1822
1CBuddyxy4FerT3hzMmi1Jz48ESzRw1ZzZ
|
|
November 17, 2013, 08:01:58 AM |
|
|
|
|
|
|
|
hmmmstrange
|
|
November 17, 2013, 08:09:31 AM |
|
Panel II
Ernie Allen
President and Chief Executive Officer
The International Centre for Missing & Exploited ChildrenI think there is a chance the bitcoin representatives may have to walk out on this hearing. Nothing good can come of this if they have already decided bitcoin is directly associated with child porn.
|
|
|
|
|
|
TERA
|
|
November 17, 2013, 08:10:49 AM |
|
Here's my detailed technical analysis of current events:  |
|
|
|
|
spooderman
Legendary
Offline
Activity: 1652
Merit: 1029
|
|
November 17, 2013, 08:12:23 AM |
|
lel so much for teh weekend dip
|
|
|
|
|
|
Poll
