Turrican
Member
 Offline
Activity: 227
Merit: 26
“BitCloud [BTDX]”
|
 |
November 09, 2017, 11:33:47 PM |
|
dam ! i give up this to understand  ... hope this attack is save for HBN ? |
|
|
|
|
|
|
|
|
|
|
Whoever mines the block which ends up containing your transaction will get its fee.
|
|
|
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
|
|
vampirus
|
|
November 09, 2017, 11:50:34 PM |
|
In CAP block trust calculated that PoW block means nothing. It was only PoS attack.
And now only one chain.
+51% Netweightattack ? ... the pow hash go from 8 to 540 ? is not a POW attack ? From log file: 11/03/17 16:31:18 received block 000000005956997051c2
11/03/17 16:31:18 SetBestChain: new best=000000005956997051c2 height=3243672 trust=174047872442947 date=11/02/17 03:23:41
11/03/17 16:31:18 ProcessBlock: ACCEPTED
11/03/17 16:31:18 received block 000000002af2445b7cbb
11/03/17 16:31:18 SetBestChain: new best=000000002af2445b7cbb height=3243673 trust=174047872442958 date=11/02/17 03:24:00
11/03/17 16:31:18 ProcessBlock: ACCEPTED
PoW block trust = 11 11/03/17 16:31:20 received block 8784a3e53e87b0cac857
11/03/17 16:31:20 SetBestChain: new best=8784a3e53e87b0cac857 height=3243680 trust=174048433060033 date=11/02/17 03:24:56
11/03/17 16:31:20 ProcessBlock: ACCEPTED
11/03/17 16:31:20 received block 1c1b102a4eab14165f56
11/03/17 16:31:20 SetBestChain: new best=1c1b102a4eab14165f56 height=3243681 trust=174048714892937 date=11/02/17 03:25:57
11/03/17 16:31:20 ProcessBlock: ACCEPTED
PoS block trust = 281832904 At current PoW difficulty 1 PoS block more valuable then 25621172 PoW blocks. |
|
|
|
almightyruler
Legendary
Offline
Activity: 2268
Merit: 1092
|
|
November 10, 2017, 12:00:01 AM |
|
At current PoW difficulty 1 PoS block more valuable then 25621172 PoW blocks. This is a common problem with many PoW+PoS coins. PoS has an incredible amount of weight when compared to PoW, as you've pointed out, so if there's no staking by others it is trivial to override a sequence of PoW blocks. When I was considering running my own exchange, one idea I had was for the exchange wallet (or perhaps a separate hot wallet controlled by the exchange) to automatically stake when a customer's deposit arrived, to help lock it in. It's not perfect, since a 'private staker' with enough weight could still overtake the chain, but it's much better than relying on 20 or 30 PoW blocks as confirmation of a deposit. |
|
|
|
|
|
paramind22
|
|
November 10, 2017, 03:42:06 AM |
|
My stakes are coming in like 1/10th of what they usually are.
|
|
|
|
vancefox
Legendary
Offline
Activity: 1033
Merit: 1005
|
|
November 10, 2017, 10:09:06 PM
Last edit: November 11, 2017, 01:00:05 AM by vancefox |
|
My stakes are coming in like 1/10th of what they usually are.
Your stakes won't matter once the roll back occurs... I'm still running it just to maintain the network but that's it... If they fork it... then I'll have a few extra coins. |
This space not for rent...
|
|
|
vancefox
Legendary
Offline
Activity: 1033
Merit: 1005
|
|
November 10, 2017, 10:10:28 PM |
|
Appears my wallet and Cryptsy aren't on a single connection possibly.. lost several coins.. never arrived.
I call on the community to start reporting these clowns... look at the post history and if it's obvious that they're posting to do nothing more than build post count, report to moderator... |
This space not for rent...
|
|
|
|
|
TangentC
Member
Offline
Activity: 266
Merit: 20
|
|
November 13, 2017, 12:25:14 AM |
|
|
|
|
|
|
|
shtako
|
|
November 16, 2017, 07:04:50 PM |
|
Any updates?
Have someone been in contact with cryptopia? Is someone working on the hard fork?
|
|
|
|
|
vancefox
Legendary
Offline
Activity: 1033
Merit: 1005
|
|
November 16, 2017, 10:49:45 PM |
|
Any updates?
Have someone been in contact with cryptopia? Is someone working on the hard fork?
Not that I've seen so far... I'm sure everyone would like to know what's going on. |
This space not for rent...
|
|
|
|
paramind22
|
|
November 16, 2017, 11:17:22 PM |
|
Wallet status is OK here. Looks like Cryptopia needs some emailing. |
|
|
|
|
ReydeApio
|
|
November 17, 2017, 12:28:02 AM |
|
Any updates?
Have someone been in contact with cryptopia? Is someone working on the hard fork?
Not that I've seen so far... I'm sure everyone would like to know what's going on. Hey all - Cryptopia has been contacted. I'm syncing up the blockchain for the checkpoint server - no bootstrap. maxsonII@bottlecaps-chk:/$ bottlecapsd getinfo { "version" : "v2.2.2.0-g418187240-Caps2.0", "protocolversion" : 70004, "walletversion" : 60002, "balance" : 0.00000000, "newmint" : 0.00000000, "stake" : 0.00000000, "blocks" : 2732428, "moneysupply" : 123621318.85863601, "connections" : 8, "proxy" : "", "difficulty" : 0.88787579, "testnet" : false, "keypoololdest" : 1510604498, "keypoolsize" : 101, "paytxfee" : 0.00100000, "mininput" : 0.00100000, "errors" : "" } As you know this part takes awhile - when there's more to share you'll see it here first. |
|
|
|
|
vancefox
Legendary
Offline
Activity: 1033
Merit: 1005
|
|
November 18, 2017, 02:32:59 AM |
|
Any updates?
Have someone been in contact with cryptopia? Is someone working on the hard fork?
Not that I've seen so far... I'm sure everyone would like to know what's going on. Hey all - Cryptopia has been contacted. I'm syncing up the blockchain for the checkpoint server - no bootstrap. maxsonII@bottlecaps-chk:/$ bottlecapsd getinfo { "version" : "v2.2.2.0-g418187240-Caps2.0", "protocolversion" : 70004, "walletversion" : 60002, "balance" : 0.00000000, "newmint" : 0.00000000, "stake" : 0.00000000, "blocks" : 2732428, "moneysupply" : 123621318.85863601, "connections" : 8, "proxy" : "", "difficulty" : 0.88787579, "testnet" : false, "keypoololdest" : 1510604498, "keypoolsize" : 101, "paytxfee" : 0.00100000, "mininput" : 0.00100000, "errors" : "" } As you know this part takes awhile - when there's more to share you'll see it here first. Options are:
- To roll back the chain past the first attack. We are looking at a loss of multiple days, most client will have issues will cause a lot of stress. But damage is already done.
- Create a fork, that will credit Cryptopia address the coins that were lost. Assuming they were the one targeted.
To prevent this, we need a checkpoint server or much higher confirmations and difficulty.
I can run a checkpoint server, but I can't foot the bill for a VPS to run it. So I would need the community to help with that, or I can give the key to someone else to run. But if that someone does not understand the security,responsibility and how to safety use it, it could kill the chain.
I'm guessing that Cryptopia isn't going to reopen the market until they're made whole... checkpoint or not... but that's just my guess. I take it there has been a decision on either option in Tranz's post above... don't know which one... but I'm guessing a simple fork would be the easier and less code intensive... And I'm guessing ReydeApio has the checkpoint key? |
This space not for rent...
|
|
|
bitmaster1x
Legendary
Offline
Activity: 1274
Merit: 1000
CRYPTO-CITY.COM 🌟 Communities
|
|
November 18, 2017, 12:00:01 PM
Last edit: November 18, 2017, 01:07:59 PM by bitmaster1x |
|
I'm curious as to how the attack on CAP was actually done. Since it didn't require someone to have 51% , but merely to generate faster blocks, how exactly did the attacker accomplish this?
Are there any other possible theoretical attacks we haven't seen on a POS network?
I'd like to see more the community have more discussions about this in order to minimize potential issues in the the future.
|
|
|
|
vancefox
Legendary
Offline
Activity: 1033
Merit: 1005
|
|
November 18, 2017, 12:28:31 PM |
|
I'm curious as to how the attack on CAP was actually done. Since it didn't require someone to have 51% , but merely to generate faster blocks, how exactly did the attacker accomplish this?
Are there any other theoretical attacks we haven't seen on a POS network?
I don't know... apparently this is a first for me... didn't even really know it was happening until someone pointed out the negative balance address. I'll have to learn a bit more about it. |
This space not for rent...
|
|
|
|
sacskate
|
|
November 18, 2017, 02:45:58 PM |
|
I'm curious as to how the attack on CAP was actually done. Since it didn't require someone to have 51% , but merely to generate faster blocks, how exactly did the attacker accomplish this?
Are there any other possible theoretical attacks we haven't seen on a POS network?
I'd like to see more the community have more discussions about this in order to minimize potential issues in the the future.
it was explained above a bit... I was under the same impression about 51%. I believe this was actually a double spend attack |
|
|
|
|
Tranz
Legendary
Offline
Activity: 1540
Merit: 1052
May the force bit with you.
|
|
November 18, 2017, 04:05:24 PM |
|
I'm curious as to how the attack on CAP was actually done. Since it didn't require someone to have 51% , but merely to generate faster blocks, how exactly did the attacker accomplish this?
Are there any other possible theoretical attacks we haven't seen on a POS network?
I'd like to see more the community have more discussions about this in order to minimize potential issues in the the future.
it was explained above a bit... I was under the same impression about 51%. I believe this was actually a double spend attack Yes just a double spend attack. Cryptopia shares some of the blame by only getting 20 confirmations. |
|
|
|
|
vampirus
|
|
November 18, 2017, 04:55:56 PM |
|
PoS attack very easy, but better not explain step by step for everyone, or more users may try it.
About Cryptopia, I think attacker not only sell CAP and get bitcoins, but also take all CAP from exchange to 3 top address in richlist and now have 38M coins.
|
|
|
|
|
vampirus
|
|
November 18, 2017, 07:11:45 PM
Last edit: November 20, 2017, 04:30:28 AM by vampirus |
|
I analyze tx from that 3 address. All belong to attacker on Cryptopia and it was not first attack.
Previous was October 8,9,10.
Admins from Cryptopia, it is hacker addresses:
EvkWsGkW1xFhNxCMDMFG7rHjF4vc23xy2D
F4GqUVjQAu2dQJeUejisw5HxbooP5CjFCJ
EyViNxLswJm8Ar8KT3MTPm6hfMrjXHmtCW
Summary hacker stole 36M CAP from Cryptopia.
PS. Better solution will be create new coin (Hyperstake clone) and send all premine to current addresses, except hackers 82 to 160 in rich list.
|
|
|
|
bitmaster1x
Legendary
Offline
Activity: 1274
Merit: 1000
CRYPTO-CITY.COM 🌟 Communities
|
|
November 18, 2017, 09:48:12 PM |
|
PoS attack very easy, but better not explain step by step for everyone, or more users may try it.
About Cryptopia, I think attacker not only sell CAP and get bitcoins, but also take all CAP from exchange to 3 top address in richlist and now have 38M coins.
I'll private message you. |
|
|
|
|
Poll
