Bitcoin Forum
December 08, 2016, 11:53:29 AM *
News: To be able to use the next phase of the beta forum software, please ensure that your email address is correct/functional.
 
   Home   Help Search Donate Login Register  
Pages: [1]
  Print  
Author Topic: MtGox please protect our info, it's still not removed from some sites  (Read 1055 times)
cloud9
Member
**
Offline Offline

Activity: 70


View Profile
June 22, 2011, 03:00:24 PM
 #1

Accounts.csv file still not removed entirely from public sites:

http://pastebin.com/search?cx=partner-pub-4339714761096906%3A1qhz41g8k4m&cof=FORID%3A10&ie=UTF-8&q=accounts.csv#1124

MtGox please act.

Disclaimer:  Postings of Cloud9 are only individual views of opinion and/or musings and/or hypothesisses.  On a non-authoritative, peer-to-peer public forum, you do not need permission from Cloud9 to derive your own conclusions or opinions, so please do.  Calculations and assumptions to be verified.
1481198009
Hero Member
*
Offline Offline

Posts: 1481198009

View Profile Personal Message (Offline)

Ignore
1481198009
Reply with quote  #2

1481198009
Report to moderator
1481198009
Hero Member
*
Offline Offline

Posts: 1481198009

View Profile Personal Message (Offline)

Ignore
1481198009
Reply with quote  #2

1481198009
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
Bit_Happy
Legendary
*
Offline Offline

Activity: 1442


A Great Time to Start Something!


View Profile
June 22, 2011, 03:12:09 PM
 #2

Based on incoming spam it's too late already. That file will be available on multiple hacker sites, and mailing lists for years to come.
That's simply my opinion, your effort might help.

15DYJpWJe9H1YofsNQbP9JEWWNn7XPZgbS
Clipse
Hero Member
*****
Offline Offline

Activity: 504


View Profile
June 22, 2011, 03:15:01 PM
 #3

Accounts.csv file still not removed entirely from public sites:

http://pastebin.com/search?cx=partner-pub-4339714761096906%3A1qhz41g8k4m&cof=FORID%3A10&ie=UTF-8&q=accounts.csv#1124

MtGox please act.

You want mtgox to police the internet now and remove the contents wherever it got spread? I give up.

...In the land of the stale, the man with one share is king... >> Clipse

We pay miners at 130% PPS | Signup here : Bonus PPS Pool (Please read OP to understand the current process)
Alex Beckenham
Full Member
***
Offline Offline

Activity: 154


View Profile
June 22, 2011, 03:21:40 PM
 #4

Accounts.csv file still not removed entirely from public sites:

http://pastebin.com/search?cx=partner-pub-4339714761096906%3A1qhz41g8k4m&cof=FORID%3A10&ie=UTF-8&q=accounts.csv#1124

MtGox please act.

If they remove it, I'm reposting my copy.

Seriously, it's public info now and can never go back to being private no matter how hard you or anyone else tries.


irb
Newbie
*
Offline Offline

Activity: 18


Heavy metal thunder


View Profile WWW
June 22, 2011, 03:31:26 PM
 #5


If they remove it, I'm reposting my copy.

Seriously, it's public info now and can never go back to being private no matter how hard you or anyone else tries.


Speaking as someone whose info was in that database, thank you. Like you said, the info is out there and I need to be able to verify what they got for myself. I haven't as yet been able to decrypt my password but I have been trying. Luckily, I do in fact use a different password everywhere, and didn't have much at MtGox.

This is the Bitcoin address you are looking for.
1HCrATLoKHqrdZG358Ro5d9gjg3EG2RfsB
cloud9
Member
**
Offline Offline

Activity: 70


View Profile
June 22, 2011, 04:50:30 PM
 #6

Rapidshare has due dilligently removed this file's download access and views it as an illegal file - probably due to infringement of privacy.  Only MtGox being the original keeper of the privileged information, would be in a position to demand its removal from public sites.  Please act due dilligently to minimise infringement of privacy  damages.

Disclaimer:  Postings of Cloud9 are only individual views of opinion and/or musings and/or hypothesisses.  On a non-authoritative, peer-to-peer public forum, you do not need permission from Cloud9 to derive your own conclusions or opinions, so please do.  Calculations and assumptions to be verified.
Alex Beckenham
Full Member
***
Offline Offline

Activity: 154


View Profile
June 22, 2011, 04:52:50 PM
 #7

Rapidshare has due dilligently removed this file's download access and views it as an illegal file - probably due to infringement of privacy.  Only MtGox being the original keeper of the privileged information, would be in a position to demand its removal from public sites.  Please act due dilligently to minimise infringement of privacy  damages.



Grant
Full Member
***
Offline Offline

Activity: 168



View Profile
June 22, 2011, 04:55:19 PM
 #8

Accounts.csv file still not removed entirely from public sites:

http://pastebin.com/search?cx=partner-pub-4339714761096906%3A1qhz41g8k4m&cof=FORID%3A10&ie=UTF-8&q=accounts.csv#1124

MtGox please act.

What you're asking for is in conflict with the universal law of the internet: "Once It's On the Internet, It's There Forever."

And the information is also already obsolete.

cloud9
Member
**
Offline Offline

Activity: 70


View Profile
June 22, 2011, 07:34:49 PM
 #9

If you are hiding your head in the ground hoping that the problem will go away by itself, it definitely won't.  At least you can contain the damage by acting due diligently - if it concerns you.  Even though you can not absolutely quarantine the leaked information from private hands - you can at least endeavor to make it difficult to access, and even illegal to access, by prohibiting its availability on publicly accessible sites, and stake your claim on the information by notifying relevant sites of the infringement - making it illegal for the relevant site to host it.  If you do nothing - you might be considered negligent - if not grossly negligent - for not limiting damages as far as possible.

Disclaimer:  Postings of Cloud9 are only individual views of opinion and/or musings and/or hypothesisses.  On a non-authoritative, peer-to-peer public forum, you do not need permission from Cloud9 to derive your own conclusions or opinions, so please do.  Calculations and assumptions to be verified.
ryepdx
Hero Member
*****
Offline Offline

Activity: 714



View Profile WWW
June 22, 2011, 10:00:07 PM
 #10

If you are hiding your head in the ground hoping that the problem will go away by itself, it definitely won't.  At least you can contain the damage by acting due diligently - if it concerns you.  Even though you can not absolutely quarantine the leaked information from private hands - you can at least endeavor to make it difficult to access, and even illegal to access, by prohibiting its availability on publicly accessible sites, and stake your claim on the information by notifying relevant sites of the infringement - making it illegal for the relevant site to host it.  If you do nothing - you might be considered negligent - if not grossly negligent - for not limiting damages as far as possible.

My initial reaction as a techie:
"LOL. You're so funny! The genie cannot be put back into its bottle. Anyone who wants that information will be able to find it. Already the database is sitting on a thousand hard drives and available to download from just as many torrents. If the Internet is a pristine white shag carpet, that database is a bucket of blood. It ain't coming out."

My more well-considered reaction:
"Okay, you have a political point at least. The task may be Sisyphean, but it'd be bad PR to look like you're just sitting on your hands."

My final reaction:
"This information will always be available to whoever wants to look, as far as we know, but that's a theoretical weakness. There are theoretical weaknesses everywhere. Any hash, given enough time, may be broken. But the trick of cryptography has never been making it impossible to get encrypted data; the trick has been making it impractically hard. 'Slow the attacker down until we're in no danger of being caught.' If Mt. Gox can limit the database's availability to the point where it takes an interested party days to find it instead of minutes, they sharply limit the number of people who might be able to use that information for a later attack."

That all being said: yeah, that data is likely all obsolete at this point. Either their accounts have all been compromised or they've changed their passwords like a good netizen.

Edit
On the other hand, if an interested party does find it, and if they're the helpful sort, all that hard work will have been for nothing. Much like the Black Plague, it'll spring forth from its dormancy and spread once more. If the data is at all interesting at that point, that is.
Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!