markm
Legendary
 Offline
Activity: 2996
Merit: 1121
|
 |
July 25, 2013, 05:50:17 AM |
|
The security model is pretty simple brute force: have more block-confirming computation power than all the supercomputers/competitors in the world all put together, by several times over.
That is not conducive to having umpteen chains that are not merging the same computer-power. By far the majority of the relevant computer-power on the planet needs to all achieve consensus as to the correct blockchain. Deliberately creating alternative blockchains undermines the very basis of the blockchain-security concept.
-MarkM-
|
|
|
|
|
gr0bi42
|
|
July 25, 2013, 06:13:57 AM |
|
This seems to be a bug or a exploit regarding the "RETARGET: artificially lowered diff; hard time mining current block..." change from April.
Block generation rate is very high and so this special retarget should NOT happen.
The block generation rate in the last hour was 4.6 blocks a minute!!!
|
Donations are welcome: 1Btf3BqUegfe5iFdWsgfBf1Ew3YsAvsrLT
|
|
|
fluffypony
Donator
Legendary
Offline
Activity: 1274
Merit: 1060
GetMonero.org / MyMonero.com
|
|
July 25, 2013, 06:51:06 AM |
|
I'm not sure whether it started with miner software using sha256d to describe the double sha-256 hash or if it came from outside of bitcoin circles. A quick google is inconclusive. I know the term has become pretty common and since it's the switch for algo selection in several miners it's probably here to stay.
Sha-2 and sha-256 are the related like squares and rectangles. All sha-256 is sha-2 but not all sha-2 is sha-256.
I haven't seen shaw-256 but it reads like a phonetic typo. I'm sure I'll notice it now.
I've seen it on a thread here, and I think I even made a "SHAWty got low" comment. People speak out of ignorance without bothering to do even basic research. |
|
|
|
mcgreed
Newbie
Offline
Activity: 28
Merit: 0
|
|
July 25, 2013, 10:44:30 AM |
|
If this is a design problem (vulnerability) with the source, and if the developers have forsaken it, and the code is still publicly available, it behooves anyone with vested interest in the coin and sufficient programming skills (mine are insufficient) to address this. Even if that means pulling the newest source from an unmaintained repository (is it maintained?), making the fix, and uploading the source to some other new, maintained repository.
|
|
|
|
|
|
andrewboy44
|
|
July 25, 2013, 12:32:58 PM |
|
Someone got an ASIC working on TRC?
asics have always worked with TRC. I use my asics for it but this shit right now is insane.... |
|
|
|
|
|
roy7
|
|
July 25, 2013, 02:22:50 PM |
|
Since TRC is based off the BTC source, is the 6 hour thing something BTC fixed previously that TRC never copied? Or is it a TRC-specific bug?
|
|
|
|
|
|
|
DeathAndTaxes
Donator
Legendary
Offline
Activity: 1218
Merit: 1079
Gerald Davis
|
|
July 25, 2013, 03:07:48 PM |
|
Since TRC is based off the BTC source, is the 6 hour thing something BTC fixed previously that TRC never copied? Or is it a TRC-specific bug?
TRC not only didn't copy the fix, it made it worse. Asymmetrical difficulty changes (where difficulty can go down more than it can go up) allows the attacker to amplify the effects of the attack. No serious crypto-currency can have an asymmetrical difficulty system. It is trivial to exploit. |
|
|
|
|
scrypt
Newbie
Offline
Activity: 16
Merit: 0
|
|
July 25, 2013, 05:35:38 PM |
|
So, what some honest miner(s) can do to help the coin to survive the attack? Mining trc using official client or may be there is some more effective way?
|
|
|
|
|
|
TheSwede75
|
|
July 25, 2013, 05:38:57 PM |
|
Someone got an ASIC working on TRC?
ASIC works for TRC 'per default'. It's SHA256. |
|
|
|
|
|
roy7
|
|
July 25, 2013, 05:54:21 PM |
|
So, what some honest miner(s) can do to help the coin to survive the attack? Mining trc using official client or may be there is some more effective way?
It appears the time lapse attack is more of a bug in the code of terracoin, and would need fixed to prevent this from happening again. There isn't enough legitimate hash power on TRC to just force the attackers out if they are really using 1.2TH or more. Coinotron is by far the biggest pool and only runs about 1/3 that speed typically. |
|
|
|
|
Bogart
Legendary
Offline
Activity: 966
Merit: 1000
|
|
July 25, 2013, 06:47:01 PM |
|
I have a script that queries terracoind every 5 seconds for the current difficulty. If it's below my arbitrary threshold, it calls the cgminer API on my miners (about 200GHps), and has them hop onto mining TRC (solo, using eloipool locally).
It's worked nicely for me for a few months now, to mine when difficulty is low, and then hop off again when it becomes high (contributing to the oscillation effect).
But now that this attack is underway, no more mining for me. All of my mined blocks become orphaned now because the attacker refuses to confirm them.
|
"All safe deposit boxes in banks or financial institutions have been sealed... and may only be opened in the presence of an agent of the I.R.S." - President F.D. Roosevelt, 1933
|
|
|
|
|
|
roy7
|
|
July 25, 2013, 07:20:18 PM |
|
I see they rejected the checkpoint someone did a pull request on earlier. The "current chain" the exchanges are relying on are, I assume, the one full of the blocks from the attacker...
|
|
|
|
|
|
flound1129
|
|
July 25, 2013, 07:53:00 PM |
|
I see they rejected the checkpoint someone did a pull request on earlier. The "current chain" the exchanges are relying on are, I assume, the one full of the blocks from the attacker...
So the devs are active but either not aware of the problem or actively working against a fix? Not making me feel any better... |
Multipool - Always mine the most profitable coin - Scrypt, X11 or SHA-256!
|
|
|
|
|
STT
Legendary
Offline
Activity: 4088
Merit: 1452
|
|
July 26, 2013, 01:21:16 AM |
|
Some good comments on this thread, should archive it for future reference since new coins are so common
|
|
CHIPS.GG | | | ▄▄███████▄▄
▄████▀▀▀▀▀▀▀████▄
▄███▀░▄░▀▀▀▀▀░▄░▀███▄
▄███░▄▀░░░░░░░░░▀▄░███▄
▄███░▄░░░▄█████▄░░░▄░███▄
███░▄▀░░░███████░░░▀▄░███
███░█░░░▀▀▀▀▀░░░▀░░░█░███
███░▀▄░▄▀░▄██▄▄░▀▄░▄▀░███
▀███░▀░▀▄██▀░▀██▄▀░▀░███▀
▀███░▀▄░░░░░░░░░▄▀░███▀
▀███▄░▀░▄▄▄▄▄░▀░▄███▀
▀████▄▄▄▄▄▄▄████▀
█████████████████████████ | | ▄▄███████▄▄
▄███████████████▄
▄█▀▀▀▄█████████▄▀▀▀█▄
▄██████▀▄█▄▄▄█▄▀██████▄
▄████████▄█████▄████████▄
████████▄███████▄████████
███████▄█████████▄███████
███▄▄▀▀█▀▀█████▀▀█▀▀▄▄███
▀█████████▀▀██▀█████████▀
▀█████████████████████▀
▀███████████████████▀
▀████▄▄███▄▄████▀
████████████████████████ | | 3000+
UNIQUE
GAMES | | | 12+
CURRENCIES
ACCEPTED | | | VIP
REWARD
PROGRAM | |
◥ |
Play Now |
|
|
|
crazyearner (OP)
Legendary
Offline
Activity: 1820
Merit: 1001
|
|
July 26, 2013, 01:46:48 AM
Last edit: July 26, 2013, 02:28:14 AM by crazyearner |
|
Some good comments on this thread, should archive it for future reference since new coins are so common
Hardly a new coin. This has been here for a while. And for others talking about devs. I wish they would get their acts together and provide more support to their miners seems their never active anywhere. |
|
|
|
DeathAndTaxes
Donator
Legendary
Offline
Activity: 1218
Merit: 1079
Gerald Davis
|
|
July 26, 2013, 02:10:03 AM |
|
Some good comments on this thread, should archive it for future reference since new coins are so common
Hardly a new coins been here for a while. And for others talking about devs. I wish they would get their acts together and provide more support to their miners seems their never active anywhere. Aren't most scamcoins past the insta-mine, pump and dump phase. You didn't really think most of these have a future do you? |
|
|
|
|
markm
Legendary
Offline
Activity: 2996
Merit: 1121
|
|
July 26, 2013, 02:21:13 AM |
|
Yeah even the gimmicky "we use a different proof of work" coins seem to be losing value, which shouldn't be a surprise since all the gimmicky proofs of work are less efficient than SHA256 so its like hey not only do we have a silly gimmick we are also less efficient, isn't that great, buy us!
-MarkM-
|
|
|
|
|
