COINOTRON pool - BTC pool closed, please withdraw your coins.

[coinotron]

This topic was dedicated to BTC pool. BTC pool has been closed so topic is closed as well.

Official Coinotron topic you can find here: https://bitcointalk.org/index.php?topic=49182




FYI

Due to lack of popularity we are closing BTC pool.

Please withdraw your coins until 2013-08-15.

https://bitcointalk.org/index.php?topic=26727.msg2813737#msg2813737



We are proud to present to you world's first multi-coin mining pool: www.coinotron.com

Stratum mining is available in the following pools:
LTC  = coinotron.com:3334
TRC  = coinotron.com:3335
FRC  = coinotron.com:3336
FTC  = coinotron.com:3337

You can mine here

-ppcoins ( PPS, RBPPS )
-terracoins ( RBPPS )
-litecoins ( PPS, RBPPS )
-freicoins( PPS, RBPPS )
-feathercoins( RBPPS )

Today we've launched Coinotron pool. Everyone is welcome to join us!

We are not using pushpool. Pool engine is written in c#, is fast and reliable.

Coinotron advantages:
-  security is our priority, users passwords are hashed and salted
-  we are startup pool, so odds of DDOS attack are at this moment slight  
-  anti-cheating score system punishing pool-hooping cheaters
-  long poll support ( mining efficiency raises about 2% )
-  SSL
-  automatic payouts
-  Stratum

How can you join us?
1. Register here: http://www.coinotron.com/coinotron/AccountServlet?action=register
2. Create worker(s)
3. Configure your mining application to point to our server - examples:  http://www.coinotron.com/coinotron/AccountServlet?action=help
4. Start mining

IMPORTANT
For security reasons we introduced some limitations into registration process.
- Username and password must have at least 8 characters
- You should enter your real email address. It is the only way to unblock your account if you forgot password.

[gentakin]

We are not using pushpool. Pool engine is written in c#, is fast and reliable.

Nice.

-  Proportional payouts. For each block generated in our pool we get 50 BTC. Next we split these coins between miners proportionally to amount of work delivered.
[..]
-  anti-cheating score system punishing pool-hooping cheaters

So it's not really proportional, or is it? (Can you explain a bit more about your reward system?)

-  security is our priority, users passwords are hashed and salted
[..]
1. Register here: http://www.coinotron.com/coinotron/AccountServlet?action=register

If security is your priority, why don't you use https - at least for register/login, so passwords are not transmitted in plain text?

[coinotron]

So it's not really proportional, or is it? (Can you explain a bit more about your reward system?)

Here you have exact formula :

Share Score = exp ( C * time span from beginning of the round to share delivery time / round duration )

Payout = 50 * sum( miner’s share scores ) / sum( all miners share scores )

For C = 0 we have Share Score = 1 for each delivered share i.e system is proportional.
When we raise C value, system becomes similar to Slush’s method. Most precious are shares delivered at the end of the round.

Currently we use C = 0 – pool is small, round duration is measured in days.
But when we observe increase of pool-hoopers activity we will set this value to about 6.

If security is your priority, why don't you use https - at least for register/login, so passwords are not transmitted in plain text?

Workin on it

[coinotron]

!!! BOUNTY !!!

6 BTC for miner who finds first block in our pool.

Good luck !

[coinotron]

Today we’ve launched new version of Coinotron.
Now you can mine namecoins!

In few days difficulty in namecoins chain will decrease from 56000 to 23000.
Mining namecoins should be then very profitable.

[coinotron]

10 Gh/s total NMC+BTC !

[coinotron]

Yesterday we have found our first Namecoin block !!
After 120 confirmations we will pay out

Regards

[coinotron]

New hashrate record in our pool :  28 Gh/s !!

[coinotron]

New record today : total = 50 Gh/s

[shotgun]

Is there a JSON API? I've got all of my 3Ghash in your pool and would like to be able to monitor it without logging in.

[coinotron]

There is not JSON api. But it waits in development queue.

[coinotron]

It is hard to believe, but we have grown up from 10 Gh/s on Jul 17th to 70 Gh/s  today !!!!

That is 700% in 4 days.

Namecoins rules

[Jine]

Expected length of the name: 8
Expected length of the password: 8 - 12


Seriously?!

I won't even register now, and i would suggest no one else does it either.

[coinotron]

Expected length of the name: 8
Expected length of the password: 8 - 12


Seriously?!

I won't even register now, and i would suggest no one else does it either.

Please do your trolling job somewhere else.
Cold regards

[shotgun]

Expected length of the name: 8
Expected length of the password: 8 - 12


Seriously?!

I won't even register now, and i would suggest no one else does it either.

If that's your reason for not joining then mine elsewhere. It's not hard to create a 8 char username and a 8-12 char password. wtf.

[simonk83]

Any chance of getting more details statistics in the blocks solved page, eg how many shares you contributed and the value received?

The "Current Round Reward" seems to have borked and is just stuck on 0.00000000.  The unconfirmed seems to be updating when a block is solved though.

The "Duration" on the statistics page is wrong as well, eg:

41    16768    2011-07-22 00:28:03    0:31:38    116 to confirm
40    16767    2011-07-22 00:26:17    0:31:38    115 to confirm
39    16757    2011-07-21 23:54:39    0:30:44    105 to confirm
38    16756    2011-07-21 23:49:45    0:30:44    104 to confirm

[Jine]

Expected length of the name: 8
Expected length of the password: 8 - 12


Seriously?!

I won't even register now, and i would suggest no one else does it either.

Please do your trolling job somewhere else.
Cold regards

I was dead serious, why the HELL are you limiting the length of passwords?
I can only think of ONE reasons to such a limit:

1) Storing passwords in clear text (VARCHAR(12) for example)

It's pure idiotic to demand low security for passwords on a site that actually handles any kind of currency - virtual or not.

EDIT: Tried out the site with something really, really low security - "password" is 8 chars.
Then the next issue came up - 20 chars limit for e-mails? WTF?

mynameis@hotmail.com makes exactly 20 chars.

I would suggest you to remove the password limit completly, the username limit is up to you - i don't really care.
And increase the e-mail limit to at least the double for people that actually have long emails.

EDIT2:
Also, learn to santize your inputs to avoid these kind of issues:
http://xkcd.com/327/

Full XSS-vuln on frontpage all pages, no CSRF protection, possible SQL-injection issues.
Really, really, really bad security. No santizing of inputs WHAT so ever. Even possible to register with <script>alert(1);</script>

[Luke-Jr]

I was dead serious, why the HELL are you limiting the length of passwords?

Maybe he uses the same password for the miners (bad idea), which have a limit (I forget what) on length of username+password.

[Jine]

I was dead serious, why the HELL are you limiting the length of passwords?

Maybe he uses the same password for the miners (bad idea), which have a limit (I forget what) on length of username+password.

Worker credentials are user-choosen, not using same password.

EDIT:
"-  security is our priority, users passwords are hashed and salted"

Ok, they why the hell? Still, if security IS your priority. I'd suggest you to not take me as a troll, cause that will only make you look like a fool.

[Luke-Jr]

I'd suggest you to not take me as a troll, cause that will only make you look like a fool.

I'd suggest he does, since you've been doing an awful lot of trolling lately.

But at the same time, I agree he should work a bit more on the security.