|
|
|
mustyoshi
|
 |
May 03, 2013, 02:12:58 AM |
|
While, it's good of you to alert people. I think you should have alerted them instead of publicly outing their exploits as soon as you found them.
But hey, if your tactic is to get professional penetrators to cause a stir, more power to ya. I just wouldn't have done it this way.
|
|
|
|
|
|
Todamont
|
|
May 03, 2013, 02:31:04 AM |
|
Agree with mustyoshi. People go to jail for a *long* time for doing what n4ru just did.
|
|
|
|
|
|
n4ru (OP)
|
|
May 03, 2013, 03:03:18 AM |
|
While, it's good of you to alert people. I think you should have alerted them instead of publicly outing their exploits as soon as you found them.
But hey, if your tactic is to get professional penetrators to cause a stir, more power to ya. I just wouldn't have done it this way.
The fastest way to get anything fixed is public outing. |
|
|
|
|
|
|
|
mustyoshi
|
|
May 03, 2013, 03:12:22 AM |
|
While, it's good of you to alert people. I think you should have alerted them instead of publicly outing their exploits as soon as you found them.
But hey, if your tactic is to get professional penetrators to cause a stir, more power to ya. I just wouldn't have done it this way.
The fastest way to get anything fixed is public outing. It's fine and dandy to believe that, except by outing this, you've put other people's information at risk. Let's say somebody does get into BFL's systems, what kind of information do you think they have stored on their servers? Information that somebody who has a vendetta against bitcoin could put to good use, such as the mailing addresses of tens of thousands of people. Not to mention any related payment information. |
|
|
|
|
freedomno1
Legendary
 Offline
Activity: 1806
Merit: 1090
Learning the troll avoidance button :)
|
|
May 03, 2013, 03:17:56 AM |
|
Not the right directory I believe
|
Believing in Bitcoins and it's ability to change the world
|
|
|
wabber
Member
Offline
Activity: 85
Merit: 10
|
|
May 03, 2013, 07:24:59 AM |
|
Agree with mustyoshi. People go to jail for a *long* time for doing what n4ru just did.
Which is ridiculous. We need people to focus on security if they are coding something especially a website. Sometimes I think that all that some programmers think while they are coding is that it has to work during their 10sec testing and if someone breaks into their system they say: "It wasn't my fault it's always these evil hackers who have nothing better to do than destroying my hard work". Breaking into systems and therefore exposing ppl to the laugh of the public must be legalized to improve security. There are way to many amateurs running big projects. We need a way to legally knock them out. |
|
|
|
|
|
n4ru (OP)
|
|
May 03, 2013, 07:36:16 AM |
|
Agree with mustyoshi. People go to jail for a *long* time for doing what n4ru just did.
Which is ridiculous. We need people to focus on security if they are coding something especially a website. Sometimes I think that all that some programmers think while they are coding is that it has to work during their 10sec testing and if someone breaks into their system they say: "It wasn't my fault it's always these evil hackers who have nothing better to do than destroying my hard work". Breaking into systems and therefore exposing ppl to the laugh of the public must be legalized to improve security. There are way to many amateurs running big projects. We need a way to legally knock them out. Well said. |
|
|
|
|
freedomno1
Legendary
Offline
Activity: 1806
Merit: 1090
Learning the troll avoidance button :)
|
|
May 03, 2013, 08:39:02 AM |
|
Agree with mustyoshi. People go to jail for a *long* time for doing what n4ru just did.
Which is ridiculous. We need people to focus on security if they are coding something especially a website. Sometimes I think that all that some programmers think while they are coding is that it has to work during their 10sec testing and if someone breaks into their system they say: "It wasn't my fault it's always these evil hackers who have nothing better to do than destroying my hard work". Breaking into systems and therefore exposing ppl to the laugh of the public must be legalized to improve security. There are way to many amateurs running big projects. We need a way to legally knock them out. Well said. Agreed hackers like exploring architecture and systems its a natural instinct and curiosity just make a good defense so we can learn  Sides we always say evil hackers we mean evil crackers lol (Evil soda crackers since they are the new overlords XD |
Believing in Bitcoins and it's ability to change the world
|
|
|
Inaba
Legendary
Offline
Activity: 1260
Merit: 1000
|
|
May 03, 2013, 03:49:24 PM |
|
I agree, it's the responsibility of the designer/programmer. I am displeased with this and will be investigating it going forward. Sometimes it feels like I have to do everything myself.
|
If you're searching these lines for a point, you've probably missed it. There was never anything there in the first place.
|
|
|
dhenson
Legendary
Offline
Activity: 994
Merit: 1000
|
|
May 03, 2013, 06:12:43 PM |
|
I agree, it's the responsibility of the designer/programmer. I am displeased with this and will be investigating it going forward. Sometimes it feels like I have to do everything myself.
Say what you will about Josh's usual responses, but this IMO was the perfect reaction to this situation. Crack the whip! |
|
|
|
|
|
n4ru (OP)
|
|
May 03, 2013, 08:40:23 PM |
|
I agree, it's the responsibility of the designer/programmer. I am displeased with this and will be investigating it going forward. Sometimes it feels like I have to do everything myself.
At least you guys responded to this quick and got it fixed. There was a lot more that could have been done with malicious intent. |
|
|
|
|
sgbett
Legendary
Offline
Activity: 2576
Merit: 1087
|
|
May 03, 2013, 09:39:52 PM |
|
You posted it because you wanted to flex your e-peen.
I'm sure everyone is glad that you decided there time was best spent fixing this.
|
"A purely peer-to-peer version of electronic cash would allow online payments to be sent directly from one party to another without going through a financial institution" - Satoshi Nakamoto*my posts are not investment advice*
|
|
|
|
MPOE-PR
|
|
May 03, 2013, 11:56:45 PM |
|
Pretty lulzy stuff. Agree with mustyoshi. People go to jail for a *long* time for doing what n4ru just did.
Yeah, right. In you know...Iran. Or whatever other shithole noncountry. |
|
|
|
|
Deafboy
|
|
May 04, 2013, 12:05:09 AM |
|
At first I wanted to mention Aaron Swartz as counter argument, but realized that MPOE-PR is right. Mostly shithole noncountries like Iran, USA or China are affected edit: to be a little positive +1 for Inaba's reaction. |
|
|
|
|
sgbett
Legendary
Offline
Activity: 2576
Merit: 1087
|
|
May 11, 2013, 01:00:25 AM |
|
sense disagree with mope-pr. ALERT! seek clarification?
are you saying its good practice to out people's security vulnerabilities without contacting them first?
|
"A purely peer-to-peer version of electronic cash would allow online payments to be sent directly from one party to another without going through a financial institution" - Satoshi Nakamoto*my posts are not investment advice*
|
|
|
|
|
|
MPOE-PR
|
|
May 11, 2013, 12:27:01 PM |
|
sense disagree with mope-pr. ALERT! seek clarification?
are you saying its good practice to out people's security vulnerabilities without contacting them first?
I can appreciate the theoretical outlook you're coming from. Here's what happens when you try to contact idiots first: http://www.google.com/search?q=bitdaytrade+redditLook through the posts there, you have actually competent people trying to talk the guy into safety and some strutting imbecile puffing a lot of smoke about the imaginary experts he's hired, the imaginary expertise he has and on and on. Thus I can certainly appreciate the practical outlook of warning the community first. I guess in the end it all comes down to a judgement call. Did the OP think the failed site is administered by sane people likely to take appropiate measures in a timely and effective manner, or did the OP think the failed site is a scam run by patent liars ( Vleisides, Zerlan etc)? |
|
|
|
smoothie
Legendary
Offline
Activity: 2492
Merit: 1474
LEALANA Bitcoin Grim Reaper
|
|
May 12, 2013, 09:07:56 AM |
|
I agree, it's the responsibility of the designer/programmer. I am displeased with this and will be investigating it going forward. Sometimes it feels like I have to do everything myself.
Everything? Oh you mean like those half-assed updates that have no substance? Rrrrright lol Dont make me laugh Joshy-boy. |
███████████████████████████████████████
,╓p@@███████@╗╖,
,p████████████████████N,
d█████████████████████████b
d██████████████████████████████æ
,████²█████████████████████████████,
,█████ ╙████████████████████╨ █████y
██████ `████████████████` ██████
║██████ Ñ███████████` ███████
███████ ╩██████Ñ ███████
███████ ▐▄ ²██╩ a▌ ███████
╢██████ ▐▓█▄ ▄█▓▌ ███████
██████ ▐▓▓▓▓▌, ▄█▓▓▓▌ ██████─
▐▓▓▓▓▓▓█,,▄▓▓▓▓▓▓▌
▐▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▌
▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓─
²▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓╩
▀▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▀
²▀▀▓▓▓▓▓▓▓▓▓▓▓▓▀▀`
²²²
███████████████████████████████████████
| . ★☆ WWW.LEALANA.COM My PGP fingerprint is A764D833. History of Monero development Visualization ★☆ .
LEALANA BITCOIN GRIM REAPER SILVER COINS.
|
|
|
|
|
