Bitcoin Forum
October 29, 2020, 12:21:23 AM *
News: Latest Bitcoin Core release: 0.20.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: « 1 ... 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 [101] 102 103 104 »
  Print  
Author Topic: [ANN] ChipMixer.com - Bitcoin mixer / Bitcoin tumbler - mixing reinvented  (Read 71514 times)
HCP
Legendary
*
Offline Offline

Activity: 1498
Merit: 2996

<insert witty quote here>


View Profile
July 31, 2020, 11:46:20 AM
 #2001

U right ive point this out in an wrong way i dont mean the keys import or sweeping i mean after the import of the keys.

for ex.  when i need it on an other wallet to gather funds,  then should i  sweep or to just send the keys to the other wallet  
just the option which gains more privacy preferentially in relation to funded coins which comes from chipmixer.
If you have already imported the keys into an Electrum wallet and you want to move the funds to another wallet... just send them in a transaction as you normally would any other transaction.

Although, you might want to consider using the "spend from" option in Electrum, so that you avoid accidentally linking UTXOs back together by including them all as inputs to the same transaction. Also, it would be a go idea to avoid sending all the funds to the same address... as again, that creates a link between them all.

This is effectively the same thing as "sweeping"... all sweeping does is "simplify" the process for you and means you don't need to import any keys. Instead, it will take a private key (or keys) and then create a transaction that sends all available UTXOs controlled by those keys to an address of your choosing. Probably not ideal, as you can only specify ONE destination address when sweeping, and that will relink all the UTXOs back together again (unless you sweep each key individually).

So, your options are:

1. Import ChipMixer keys, then create transaction to send coins to other wallet (new keys)
or
2. Sweep ChipMixer keys directly into other wallet (new keys)
or
3. Do neither and leave the coins on the ChipMixer keys until you need to spend them

Neither importing nor sweeping is any more "private" than the other if you need to move the coins to another one of your wallets... they will both end up creating transactions that take coins from the ChipMixer addresses and send them to your addresses... and in both situations you need to take steps to prevent them all being relinked.

Leaving the coins on the ChipMixer keys until you wish to send them to someone else is probably better for privacy... but security wise is not great because ChipMixer have knowledge of the private keys and you have to trust them not to steal them (or leak the keys). So, in this case, it's a trade-off between privacy and security.


Which option is better for your particular use-case is only really something that you can determine.

1603930883
Hero Member
*
Offline Offline

Posts: 1603930883

View Profile Personal Message (Offline)

Ignore
1603930883
Reply with quote  #2

1603930883
Report to moderator
1603930883
Hero Member
*
Offline Offline

Posts: 1603930883

View Profile Personal Message (Offline)

Ignore
1603930883
Reply with quote  #2

1603930883
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1603930883
Hero Member
*
Offline Offline

Posts: 1603930883

View Profile Personal Message (Offline)

Ignore
1603930883
Reply with quote  #2

1603930883
Report to moderator
1603930883
Hero Member
*
Offline Offline

Posts: 1603930883

View Profile Personal Message (Offline)

Ignore
1603930883
Reply with quote  #2

1603930883
Report to moderator
1603930883
Hero Member
*
Offline Offline

Posts: 1603930883

View Profile Personal Message (Offline)

Ignore
1603930883
Reply with quote  #2

1603930883
Report to moderator
ranchoodas
Newbie
*
Offline Offline

Activity: 3
Merit: 0


View Profile
July 31, 2020, 02:32:48 PM
 #2002

I need help regarding with my session.
It's best to email chipmixer@protonmail.com (it's a good precaution never to trust third parties (such as me), always verify the email address on the actual website).

for ex.  when i need it on an other wallet to gather funds,  then should i  sweep or to just send the keys to the other wallet 

just the option which gains more privacy preferentially in relation to funded coins which comes from chipmixer.
Each new wallet means an additional risk of compromising private keys. I would only import private keys when I'm ready to use them.


I'm pretty sure I was in the right website , I was just confused why the receiving bitcoin address changed while the session token was just the same. Now I don't have access to the address I used. Hopefully the admin can help me out.
ChipMixer
Sr. Member
****
Offline Offline

Activity: 375
Merit: 391


ChipMixer.com | ChipMixerwzxtzbw.onion


View Profile WWW
July 31, 2020, 10:02:48 PM
 #2003

Attention:

At least one Tor exit node serves chipmixer.com as plain-text stripping SSL encryption and replacing deposit address with their own.

If you use Tor - please use Tor link: http://chipmixerwzxtzbw.onion/

I need help regarding with my session. I was using TOR then connected to chipmixer.com I saved my session token after that I closed the TOR browser and open it again , I pasted my session token and the btc address already changed. I need help recovering my old btc address as my funds are sent to that address. I've been using chipmixer for like 2 years already and it's my first time encountering this problem.
ChipMixer deposit address never change for active session. If it changed - you have accessed website without encryption and Tor exit node used their own address instead of ours.

If you use Tor - please use Tor link: http://chipmixerwzxtzbw.onion/

ranchoodas
Newbie
*
Offline Offline

Activity: 3
Merit: 0


View Profile
July 31, 2020, 10:22:35 PM
 #2004

Attention:

At least one Tor exit node serves chipmixer.com as plain-text stripping SSL encryption and replacing deposit address with their own.

If you use Tor - please use Tor link: http://chipmixerwzxtzbw.onion/

I need help regarding with my session. I was using TOR then connected to chipmixer.com I saved my session token after that I closed the TOR browser and open it again , I pasted my session token and the btc address already changed. I need help recovering my old btc address as my funds are sent to that address. I've been using chipmixer for like 2 years already and it's my first time encountering this problem.
ChipMixer deposit address never change for active session. If it changed - you have accessed website without encryption and Tor exit node used their own address instead of ours.

If you use Tor - please use Tor link: http://chipmixerwzxtzbw.onion/


So like even if you're typing chipmixer.com in TOR it's still considered unsecure?
jackg
Copper Member
Legendary
*
Offline Offline

Activity: 1904
Merit: 1892


https://bit.ly/387FXHi ← lightning theory


View Profile
July 31, 2020, 10:35:14 PM
 #2005



So like even if you're typing chipmixer.com in TOR it's still considered unsecure?

Yes because they're using let's encrypt to generate the certificate so they don't have to kyc with anyone.

But it also means the attacker can do the same and just push connections through to them via a non ssl protocol (http).

moejoejay
Jr. Member
*
Offline Offline

Activity: 111
Merit: 5


View Profile
August 01, 2020, 02:57:56 PM
 #2006

Quote
So like even if you're typing chipmixer.com in TOR it's still considered unsecure?

dont use clearnet adresses in TOR generally  it undermines the privacy principle and may trace u easier in some cases.

best regards  
ChipMixer
Sr. Member
****
Offline Offline

Activity: 375
Merit: 391


ChipMixer.com | ChipMixerwzxtzbw.onion


View Profile WWW
August 01, 2020, 11:47:57 PM
Merited by LoyceV (8)
 #2007

So like even if you're typing chipmixer.com in TOR it's still considered unsecure?
Yes because they're using let's encrypt to generate the certificate so they don't have to kyc with anyone.
It is not because we are using lets encrypt - any ssl certificate would work the same way in this case.

So like even if you're typing chipmixer.com in TOR it's still considered unsecure?
If you use Tor to contact non-Tor website (anything other than .onion services) - one of 1200 Tor Exit nodes will tell you what ChipMixer.com service said.
If Tor Exit node is honest - it will tell "ChipMixer use encryption and this is data they encrypted for you" - your browser will display green lock icon.
If Tor Exit node is dishonest - it will tell "ChipMixer does not use encryption and this is plain-text data with fake deposit address" - your browser will not display green lock icon.

If you use Tor to contact Tor .onion website - connection is always encrypted and nobody can alter deposit address.

TheBeardedBaby
Legendary
*
Offline Offline

Activity: 1092
Merit: 2150


The most valuable time is spent with the family ;)


View Profile
August 03, 2020, 12:37:04 AM
Merited by HCP (2), hugeblack (2)
 #2008

The vertical mobile view has some issues showing the captcha and the text needs some re-arrangement.

It's not really an issue since everything is working in horizontal mode but it's a bit annoying. It's the same with Tor browser as well but i can't take a screen shot now Smiley

Maybe just add a note that the website is optimized for Landscape viewing Smiley





.
.




░██████████████████░
████████████████████
█████████▀░░░███████
█████████░░▄████████
███████▀▀░░▀▀███████
███████▄▄░░▄▄███████
█████████░░█████████

█████████░░█████████

█████████▄▄█████████

████████████████████

░██████████████████░
░██████████████████░
████████████████████
████████████▀▀▀█▀███
███░▀█████▀░░░░░▀███
███▌░░░▀▀▀░░░░░░████
████▄░░░░░░░░░░░████
█████▀░░░░░░░░░█████

██████▄░░░░░▄▄██████

█████▄▄▄▄███████████

████████████████████

░██████████████████░
░██████████████████░
████████████████████
████████████████████
███████████▀▀░░▐████
███████▀▀░░░░░█████
████▀░░░▄█▀░░░▐█████
█████▄▄█▀░░░░░██████

███████▌▄▄▄▐██████

████████████████████

████████████████████

░██████████████████░
Bill Gates
Jr. Member
*
Offline Offline

Activity: 79
Merit: 2

Devil's Advocate


View Profile
August 06, 2020, 06:16:57 PM
 #2009

So like even if you're typing chipmixer.com in TOR it's still considered unsecure?
If you use Tor to contact non-Tor website (anything other than .onion services) - one of 1200 Tor Exit nodes will tell you what ChipMixer.com service said.
If Tor Exit node is honest - it will tell "ChipMixer use encryption and this is data they encrypted for you" - your browser will display green lock icon.
If Tor Exit node is dishonest - it will tell "ChipMixer does not use encryption and this is plain-text data with fake deposit address" - your browser will not display green lock icon.

If you use Tor to contact Tor .onion website - connection is always encrypted and nobody can alter deposit address.
You could easily avoid this problem by providing a letter of guarantee. A rogue tor node won't be able to sign a message with an address, that is under your control.

Moreover, I believe, the use .onion address by mixing services is a farce, as long as they exist on clearnet. Users can access the clearnet domain from Tor browser. .onion primarily serves two purpose...

1. It mitigates MITM attack - If you provide letter of guarantee, MITM is not possible anymore. Because, except for the original server, no one else do have the ability to sign a message with an address, that is publicly declared on clearnet to be owned by the mixing service.

2. It hides the original server - If you already have a version running on clearnet, your server is just a few clicks away from 3 letter agencies. You can keep your data encrypted though. But having an .onion address does not give users any extra benefit.
jackg
Copper Member
Legendary
*
Offline Offline

Activity: 1904
Merit: 1892


https://bit.ly/387FXHi ← lightning theory


View Profile
August 06, 2020, 06:21:00 PM
 #2010


Maybe just add a note that the website is optimized for Landscape viewing Smiley

Yeah it's been like that for a while, I just request desktop connection and then it works - didn't think to rotate it...

LoyceV
Legendary
*
Offline Offline

Activity: 2016
Merit: 7086


Thick-Skinned Gang Leader


View Profile WWW
August 06, 2020, 06:22:40 PM
 #2011

You could easily avoid this problem by providing a letter of guarantee. A rogue tor node won't be able to sign a message with an address, that is under your control.
This doesn't solve anything: if the rogue Tor node change a deposit address, they can also sign a Letter of Guarantee from any address under their control, and display said address as the "official" one.
Just use .onion if you use Tor.

HeRetiK
Legendary
*
Offline Offline

Activity: 1638
Merit: 1407


the forkings will continue until morale improves


View Profile
August 06, 2020, 06:31:13 PM
 #2012

You could easily avoid this problem by providing a letter of guarantee. A rogue tor node won't be able to sign a message with an address, that is under your control.
This doesn't solve anything: if the rogue Tor node change a deposit address, they can also sign a Letter of Guarantee from any address under their control, and display said address as the "official" one.
Just use .onion if you use Tor.

Besides, from a technical perspective, the lock icon displaying whether the connection is encrypted is pretty much like the suggested "letter of guarantee", except more reliable and less complicated.

Bill Gates
Jr. Member
*
Offline Offline

Activity: 79
Merit: 2

Devil's Advocate


View Profile
August 06, 2020, 06:38:39 PM
 #2013

You could easily avoid this problem by providing a letter of guarantee. A rogue tor node won't be able to sign a message with an address, that is under your control.
This doesn't solve anything: if the rogue Tor node change a deposit address, they can also sign a Letter of Guarantee from any address under their control, and display said address as the "official" one.
Just use .onion if you use Tor.
No. You did not understand what I said. Here is an ELI5...

Say, I am running a mixer. I have a clearnet version as well as a .onion one. I show this address on my homepage & bitcointalk thread and declare that I'll sign a message through it as letter of guarantee - 1HRnZx1ukJ338WfcqK6T59ZEWTuzehUcu1. The letter of guarantee will contain the deposit address signed by the mixer. An user can verify whether the deposit address he/she has received through Tor browser is signed by this address, i.e. 1HRnZx1ukJ338WfcqK6T59ZEWTuzehUcu1, which itself can be cross verified by visiting the home page or bitcointalk thread on clearnet.

Now, you are running a rogue Tor node and want to change the deposit address. Tell me, how can you provide a letter of guarantee containing that changed deposit address signed by the address visible on my homepage & bitcointalk thread through clearnet, i.e. 1HRnZx1ukJ338WfcqK6T59ZEWTuzehUcu1?
jackg
Copper Member
Legendary
*
Offline Offline

Activity: 1904
Merit: 1892


https://bit.ly/387FXHi ← lightning theory


View Profile
August 06, 2020, 09:10:47 PM
 #2014

You could easily avoid this problem by providing a letter of guarantee. A rogue tor node won't be able to sign a message with an address, that is under your control.
This doesn't solve anything: if the rogue Tor node change a deposit address, they can also sign a Letter of Guarantee from any address under their control, and display said address as the "official" one.
Just use .onion if you use Tor.
No. You did not understand what I said. Here is an ELI5...

Say, I am running a mixer. I have a clearnet version as well as a .onion one. I show this address on my homepage & bitcointalk thread and declare that I'll sign a message through it as letter of guarantee - 1HRnZx1ukJ338WfcqK6T59ZEWTuzehUcu1. The letter of guarantee will contain the deposit address signed by the mixer. An user can verify whether the deposit address he/she has received through Tor browser is signed by this address, i.e. 1HRnZx1ukJ338WfcqK6T59ZEWTuzehUcu1, which itself can be cross verified by visiting the home page or bitcointalk thread on clearnet.

Now, you are running a rogue Tor node and want to change the deposit address. Tell me, how can you provide a letter of guarantee containing that changed deposit address signed by the address visible on my homepage & bitcointalk thread through clearnet, i.e. 1HRnZx1ukJ338WfcqK6T59ZEWTuzehUcu1?

Err you start an instance with ChipMixer and just scrape the information from their site via tor and save the token to receive the funds later?

Captchas are fairly bypassible afaik and you'd already have to put on the effort to search for the key and verify it you're better off getting ChipMixer to list their ssl public key...

(which I can't get access to on mobile).

notblox1
Sr. Member
****
Offline Offline

Activity: 770
Merit: 416


Gambling Wizard


View Profile WWW
August 09, 2020, 06:59:15 PM
Merited by malevolent (3)
 #2015

Does anyone know is Chipmixer Electrum plugin working ok with recent Electrum updates?
I never tried it so far and I see there are no updates from 2017.
https://github.com/chipmixer/electrum/tree/plugin/plugins/chipmixer

█████
██
██
██
██
██
██
██
██
██
██
██
█████
████████████████████████████
████████████████████████████
█████████▀▀      ▀▀█████████
████████            ████████
████████            ████████
██████▀              ▀██████
██████▄        ▄███▄ ▄██████
█████▀████▀▀▀█████████▀█████
████ ███▀     ▀ ▀▀▀ ███ ████
████▄        ▄▄        ▄████
███████▄▄▄▄██████▄▄▄▄███████
████████████████████████████
████████████████████████████
Chips.gg█████
██
██
██
██
██
██
██
██
██
██
██
█████
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
██
█████
██
██
██
██
██
██
██
██
██
██
██
█████
jackg
Copper Member
Legendary
*
Offline Offline

Activity: 1904
Merit: 1892


https://bit.ly/387FXHi ← lightning theory


View Profile
August 09, 2020, 07:20:26 PM
 #2016

Does anyone know is Chipmixer Electrum plugin working ok with recent Electrum updates?
I never tried it so far and I see there are no updates from 2017.
https://github.com/chipmixer/electrum/tree/plugin/plugins/chipmixer


Afaik I think the plug in work was discontinued when ChipMixer decided to retire it
 Not sure of the reasons I think they just thought it was more work than it was worth to sort out the security parts or the captcha stuff would be difficult to manage. They gave up on it to focus on the ddos attacks I think too.

smartmixerhelper
Newbie
*
Offline Offline

Activity: 7
Merit: 1


View Profile
August 14, 2020, 09:20:22 PM
 #2017

I made a slight mistake, looks like I didn't clear cookies and cache and so without realizing it, I was using an old session and sent to an address I already sent before.

Am I screwed?

I sent the session ID, address, everything via email but haven't heard back yet.

It was a lot and I really need it so hopefully they can see it and just recreate another session for me?
jackg
Copper Member
Legendary
*
Offline Offline

Activity: 1904
Merit: 1892


https://bit.ly/387FXHi ← lightning theory


View Profile
August 14, 2020, 10:38:17 PM
 #2018

I made a slight mistake, looks like I didn't clear cookies and cache and so without realizing it, I was using an old session and sent to an address I already sent before.

Am I screwed?

I sent the session ID, address, everything via email but haven't heard back yet.

It was a lot and I really need it so hopefully they can see it and just recreate another session for me?

If this info was sent to their proton mail, just wait for their response they should be able to track it. As long as the session hasn't expired.

I'd advise you put in your token and extend it if you're near the 7 day deadline.

smartmixerhelper
Newbie
*
Offline Offline

Activity: 7
Merit: 1


View Profile
August 14, 2020, 11:32:00 PM
Merited by HCP (1)
 #2019

I made a slight mistake, looks like I didn't clear cookies and cache and so without realizing it, I was using an old session and sent to an address I already sent before.

Am I screwed?

I sent the session ID, address, everything via email but haven't heard back yet.

It was a lot and I really need it so hopefully they can see it and just recreate another session for me?

If this info was sent to their proton mail, just wait for their response they should be able to track it. As long as the session hasn't expired.

I'd advise you put in your token and extend it if you're near the 7 day deadline.

Just to provide an update. I did email and they emailed me back but it looks like it automatically takes into account any double deposits so that's pretty cool.
URHandsome
Newbie
*
Offline Offline

Activity: 2
Merit: 0


View Profile
August 16, 2020, 02:51:11 AM
 #2020

I am looking for a mixer that has good reputation.
ChipMixer seems to have great feedback.
Has anyone used it recently? Safe?
Pages: « 1 ... 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 [101] 102 103 104 »
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!