SgtSpike
Legendary
Offline
Activity: 1400
Merit: 1005
|
|
August 08, 2011, 04:47:18 PM |
|
It's all alphanumeric (for now). I copy/pasted it directly from the other script I have that works just fine. I'll keep playing around with it and see if I can figure out what the problem is. Obviously, it's not the code, or other people would be having trouble as well. Maybe firewall, or port forwarding? localhost has nothing to do with that. SgtSpike never said anything about his server architecture, so maybe you are jumping into conclusions. All he said was that he installed phpcoin in a VPS, he never said that his bitcoind was on the same machine. My bad. Bitcoind is running on the same VPS, so it should connect using localhost.
|
|
|
|
Raoul Duke
aka psy
Legendary
Offline
Activity: 1358
Merit: 1002
|
|
August 08, 2011, 05:04:09 PM |
|
My bad. Bitcoind is running on the same VPS, so it should connect using localhost.
So, it was me who jumped into conclusions... My bad.
|
|
|
|
NothinG
|
|
August 08, 2011, 05:28:24 PM |
|
Request Feature: Have a list of all Addresses associated with an account, rather than just generating a new one.
|
|
|
|
NothinG
|
|
August 10, 2011, 06:22:35 AM Last edit: August 10, 2011, 09:51:48 AM by NothinG |
|
Do you have any more updates on this project? I'm eager to see what you've done so far Mind posting the project on https://github.com with updates? I've got some simple hosting for this. Made some changes for me (until admin panel is working). http://phpcoin.zombietoday.comWill get a dedicated domain (with SSL) once it gets a little further in development.
|
|
|
|
BCEmporium (OP)
Legendary
Offline
Activity: 1218
Merit: 1000
|
|
August 10, 2011, 02:10:03 PM |
|
There're already some changes in my version, however I'm setting up a new server before go on holidays (from everyday job), so I must have some more available time pretty soon.
|
|
|
|
hamburger
|
|
August 11, 2011, 06:24:04 PM |
|
Hi,
Neat script, could even run it on my desktop using EasyPHP and the standard Bitcoin client.
Just two questions, how does it handle payments between two account holders and how do you set up an admin or main account - I see there is provision made for it in the database [is_admin]
Thank you,
Hamburger
|
Datacoin : DHZ6H91fsDoBHbdqED3ysCJJ2TUh3zRMZD Krugercoin : Yz3A9sTMp2yh5QLuAL8YQyvS5PdjHRHkkf
|
|
|
NothinG
|
|
August 11, 2011, 06:26:51 PM |
|
Hi,
Neat script, could even run it on my desktop using EasyPHP and the standard Bitcoin client.
Just two questions, how does it handle payments between two account holders and how do you set up an admin or main account - I see there is provision made for it in the database [is_admin]
Thank you,
Hamburger
Admin isn't coded yet.
|
|
|
|
Mushroomized
Legendary
Offline
Activity: 1470
Merit: 1002
Hello!
|
|
August 11, 2011, 08:12:04 PM |
|
Interesting project I will have to watch this! Feel free to use this animated gif I made into the design in any way
|
hi
|
|
|
|
Raoul Duke
aka psy
Legendary
Offline
Activity: 1358
Merit: 1002
|
|
August 12, 2011, 06:26:47 PM |
|
Every time i read The sight may be reset at any time for upgrades. I get chills... Is BCEmporium going to reset his eyes? lol
|
|
|
|
NothinG
|
|
August 12, 2011, 06:31:04 PM |
|
Every time i read The sight may be reset at any time for upgrades. I get chills... Is BCEmporium going to reset his eyes? lol Oh, lulz... It was 3am when I wrote that note.
|
|
|
|
Raoul Duke
aka psy
Legendary
Offline
Activity: 1358
Merit: 1002
|
|
August 12, 2011, 07:08:48 PM |
|
Every time i read The sight may be reset at any time for upgrades. I get chills... Is BCEmporium going to reset his eyes? lol Oh, lulz... It was 3am when I wrote that note. So it's your eyes who were needing a reset I thought it was BCEmporium who had wrote that.
|
|
|
|
naturallaw
Newbie
Offline
Activity: 56
Merit: 0
|
|
August 12, 2011, 07:41:45 PM |
|
Any chance of getting this project up on GitHub for better collaboration?
|
|
|
|
BCwinning
|
|
August 12, 2011, 07:46:28 PM |
|
hilarious mtgox is now an expert on security. oh the irony
|
The New World Order thanks you for your support of Bitcoin and encourages your continuing support so that they may track your expenditures easier.
|
|
|
NothinG
|
|
August 12, 2011, 07:52:11 PM |
|
hilarious mtgox is now an expert on security. oh the irony
I'm confused??
|
|
|
|
BCwinning
|
|
August 12, 2011, 07:53:55 PM |
|
As password security is the subject of the moment, due that MtGox thing, here's my system's function for it: <?php $salt = md5(rand().$name.microtime()); $passh = hash("ripemd160",$pass.$salt); mysql_query("INSERT INTO users(user,pass,name,email) VALUES('$user','$passh','$name','$email')"); $myuid = mysql_insert_id(); mysql_query("INSERT INTO salt(uid,salt) VALUES($myuid,'$salt')"); $success = "You're now registered to this system"; ?>
Your method is not good enough (not mentioning it seems you are not escaping properly variables when passing them to mysql). I could do 50000 iterations of ripemd160 in 94.16ms without any optimization. I'd suggest you at least add some iterations to make bruteforcing harder. hilarious mtgox is now an expert on security. oh the irony
I'm confused??
|
The New World Order thanks you for your support of Bitcoin and encourages your continuing support so that they may track your expenditures easier.
|
|
|
NothinG
|
|
August 12, 2011, 08:02:08 PM |
|
Still would be cool to have the project source public.
I'm thinking about adding a About US page which will contain your BTC Donation Address as well as Mine (as the host).
|
|
|
|
Xephan
Newbie
Offline
Activity: 42
Merit: 0
|
|
August 13, 2011, 03:07:33 PM |
|
hilarious mtgox is now an expert on security. oh the irony
How is that hilarious when making the mistake first is how many people learn their lessons that get passed on to others?
|
|
|
|
BCEmporium (OP)
Legendary
Offline
Activity: 1218
Merit: 1000
|
|
August 13, 2011, 05:07:03 PM |
|
How is that hilarious when making the mistake first is how many people learn their lessons that get passed on to others? I still believe M'Tux took the wrong lessons there. He wasn't hacked due to strength or lack of strength of his password hashing, he was hacked by leting his database fell in the wrong hands. Starting from here, hashing algorithms doesn't "save you" of anything and enforce "strong passwords" will make your customers unhappy. Nothing, PHP is inheritelly "Open Source", unless I obfuscate that with Zend or Roadsend, as I didn't the source is openly available. I'd delay those two days due to Linux, I'm giving it a try at my desktop (part 1001st) and started with the wrong foot; OpenSuSE... well... I've a nForce chipset, isn't easy for starters, but OpenSuSE always manage to screw graphics - had the same issue with SuSE and Via C3 some 5 years ago. That mean format and reformat to end up with Ubuntu and today is party time with my old army mates.
|
|
|
|
NothinG
|
|
August 13, 2011, 05:12:16 PM |
|
How is that hilarious when making the mistake first is how many people learn their lessons that get passed on to others? I still believe M'Tux took the wrong lessons there. He wasn't hacked due to strength or lack of strength of his password hashing, he was hacked by leting his database fell in the wrong hands. Starting from here, hashing algorithms doesn't "save you" of anything and enforce "strong passwords" will make your customers unhappy. Nothing, PHP is inheritelly "Open Source", unless I obfuscate that with Zend or Roadsend, as I didn't the source is openly available. I'd delay those two days due to Linux, I'm giving it a try at my desktop (part 1001st) and started with the wrong foot; OpenSuSE... well... I've a nForce chipset, isn't easy for starters, but OpenSuSE always manage to screw graphics - had the same issue with SuSE and Via C3 some 5 years ago. That mean format and reformat to end up with Ubuntu and today is party time with my old army mates. Real life comes first. Anyways, I was meaning an updated version of the source. I'm going on vacation, and I'll only have 4GB of bandwidth for 5 days. Meaning, I'll be Internet Suffocation and that's when I get many of my projects done. I've got one project that allows someone to resell our gameservers (I work for a GSP). I can assume that anyone who'd like to...could buy a reseller from us and re-sell under Bitcoins.
|
|
|
|
|