Bitcoin Forum
November 13, 2024, 04:38:57 PM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: Is this a possible attack or am I missing something?  (Read 1238 times)
Xenland (OP)
Legendary
*
Offline Offline

Activity: 980
Merit: 1003


I'm not just any shaman, I'm a Sha256man


View Profile
September 05, 2011, 06:58:16 PM
 #1

On average I get about 100 connections through the bitcoin client but this is on Linux; On windows I get about 8 connections sometimes 9 if I'm lucky. I've heard similar reports for windows users.

Don't I only have to have control of 8 of those nodes and I could potentially fake send bitcoins?
And the user wouldn't even know right?
jackjack
Legendary
*
Offline Offline

Activity: 1176
Merit: 1280


May Bitcoin be touched by his Noodly Appendage


View Profile
September 05, 2011, 06:59:42 PM
 #2

Quote
fake send bitcoins
Huh

Own address: 19QkqAza7BHFTuoz9N8UQkryP4E9jHo4N3 - Pywallet support: 1AQDfx22pKGgXnUZFL1e4UKos3QqvRzNh5 - Bitcointalk++ script support: 1Pxeccscj1ygseTdSV1qUqQCanp2B2NMM2
Pywallet: instructions. Encrypted wallet support, export/import keys/addresses, backup wallets, export/import CSV data from/into wallet, merge wallets, delete/import addresses and transactions, recover altcoins sent to bitcoin addresses, sign/verify messages and files with Bitcoin addresses, recover deleted wallets, etc.
Xenland (OP)
Legendary
*
Offline Offline

Activity: 980
Merit: 1003


I'm not just any shaman, I'm a Sha256man


View Profile
September 05, 2011, 07:04:35 PM
 #3

Sorry

Send fake data to make them think you sent valid bitcoins...

Is that clearer?
newminerr
Member
**
Offline Offline

Activity: 147
Merit: 11

The day to rise has come.


View Profile
September 05, 2011, 07:05:05 PM
 #4

If you control those 8 nodes -or most of them- you can fake a transaction to your CLIENT.

But transactions are saved in the bitcoin block thingy so you can't fake that unless you can mine all the blocks consecutively.
dree12
Legendary
*
Offline Offline

Activity: 1246
Merit: 1078



View Profile
September 05, 2011, 08:29:48 PM
 #5

This is a possible attack, but not in the way you suggest. You can DOS the nodes connected only to you, reject their blocks, and reject their txs. In theory, it should also be possible to fake tx to them (double-spend) and not broadcast it over the network, but this is very dangerous since you must keep them in quarentine until the coins are confirmed to be spent into your other wallet. (and you don't know if they are in quarentine or not).

This attack is very dangerous, and costly since many IPs in different blocks (bitcoin allows only one connection per block) needs to be purchaced. To avoid this attack, remain well-connected, keep a peers file on your computer and do not rely on IRC too much.
Xenland (OP)
Legendary
*
Offline Offline

Activity: 980
Merit: 1003


I'm not just any shaman, I'm a Sha256man


View Profile
September 05, 2011, 09:08:53 PM
 #6

This is a possible attack, but not in the way you suggest. You can DOS the nodes connected only to you, reject their blocks, and reject their txs. In theory, it should also be possible to fake tx to them (double-spend) and not broadcast it over the network, but this is very dangerous since you must keep them in quarentine until the coins are confirmed to be spent into your other wallet. (and you don't know if they are in quarentine or not).

This attack is very dangerous, and costly since many IPs in different blocks (bitcoin allows only one connection per block) needs to be purchaced. To avoid this attack, remain well-connected, keep a peers file on your computer and do not rely on IRC too much.
That sounds like a good plan. I feel that I am safe as I've get a good 100 connects on my computer. Its the windows peeps I feel are vulnerable, especially since 60% or more of bitcoiners use windows while sending and receiving coins.
dree12
Legendary
*
Offline Offline

Activity: 1246
Merit: 1078



View Profile
September 05, 2011, 09:23:44 PM
 #7

The attacker has no way of knowing if its target is quarentined. See the wiki article on cancer nodes: https://en.bitcoin.it/wiki/Weaknesses#Cancer_nodes.

The wiki identifies it at medium threat level, the highest it goes. For a comparison, the 51% attack is at low threat level. Unfortunately, the wiki is probably poorly organized (it places Illegal Content at medium (should be none IMO), Scalability at low (should be medium at least)), and is missing some recent allergations about MyBitcoin attacks.
ctoon6
Sr. Member
****
Offline Offline

Activity: 350
Merit: 251



View Profile
September 13, 2011, 03:03:31 AM
 #8

uh, i use windows and get over 100 connections, you obviously don't understand how to properly forward ports.

Xenland (OP)
Legendary
*
Offline Offline

Activity: 980
Merit: 1003


I'm not just any shaman, I'm a Sha256man


View Profile
September 13, 2011, 06:30:03 AM
 #9

uh, i use windows and get over 100 connections, you obviously don't understand how to properly forward ports.
Hey we don't all live in areas with Gigabits of Internet just laying around I'm running off out in the middle of the woods. My point was mainly for those who don't actively forward ports......
ctoon6
Sr. Member
****
Offline Offline

Activity: 350
Merit: 251



View Profile
September 13, 2011, 11:16:30 AM
 #10

uh, i use windows and get over 100 connections, you obviously don't understand how to properly forward ports.
Hey we don't all live in areas with Gigabits of Internet just laying around I'm running off out in the middle of the woods. My point was mainly for those who don't actively forward ports......

your posts made it sound like it was a windows problem, and not a user problem.

Xenland (OP)
Legendary
*
Offline Offline

Activity: 980
Merit: 1003


I'm not just any shaman, I'm a Sha256man


View Profile
September 13, 2011, 12:09:41 PM
 #11

uh, i use windows and get over 100 connections, you obviously don't understand how to properly forward ports.
Hey we don't all live in areas with Gigabits of Internet just laying around I'm running off out in the middle of the woods. My point was mainly for those who don't actively forward ports......

your posts made it sound like it was a windows problem, and not a user problem.

I wasn't implying either. I was just asking given the circumstances of the low amount of windows connections is it possible to own 1000 nodes to attack one specific node. So what I did was, I took a real world problem and asked a real world question but I'm glad we got all of this cleared up. Cancer node was the answer in case anyone was wondering.
Pages: [1]
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!