|
cryptoknightt
|
 |
February 01, 2014, 09:07:47 PM |
|
I am real!! this is so funny.
Who would waste such a great name
CRYPTOKNIGHTT on a sock puppet!!
You guys just dont get it.
You are so out of control
Actually can you list the coins I should stay away from?
That's the list I want to know. Ether and NEX. what else LOL
|
|
|
|
|
Come-from-Beyond
Legendary
 Offline
Activity: 2142
Merit: 1009
Newbie
|
|
February 01, 2014, 09:11:27 PM |
|
I am real!!
Of coz u r real. My mom told me to never argue with a crazy person... |
|
|
|
|
|
|
Come-from-Beyond
Legendary
Offline
Activity: 2142
Merit: 1009
Newbie
|
|
February 01, 2014, 09:22:08 PM |
|
Hell, I thought FC was ~15 y.o. taking into account his level of mentality. But that guy in the photo is 30+ y.o. Looks like only a psychoanalist is able to help him. Now it's not even funny... |
|
|
|
|
|
EvilDave
|
|
February 01, 2014, 10:50:48 PM |
|
I am real!! this is so funny.
Who would waste such a great name
CRYPTOKNIGHTT on a sock puppet!!
You guys just dont get it.
You are so out of control
Actually can you list the coins I should stay away from?
That's the list I want to know. Ether and NEX. what else LOL
If u do invest in NEX, make sure u ask the FCs for their corporate info, as they claim to be a Delaware corporation, it would be nice to see some info about their corporate activities......... And there is a very long history of the FCs investor threads being full of very recently created accounts with almost no activity that somehow find their way to the FC and offer him lots of money for no real reason. Sock puppets, or are the FCs a new Messiah? I like to use poetry as a turing test: so throw down an original limerick/ haiku/sonnet or whatever and I'll declare u human. |
|
|
|
|
EvilDave
|
|
February 01, 2014, 10:54:34 PM |
|
Hell, I thought FC was ~15 y.o. taking into account his level of mentality. But that guy in the photo is 30+ y.o. Looks like only a psychoanalist is able to help him. Now it's not even funny... That pic looks very unhappy.....it's a real possibilty that the FCs do have some actual issues. We've all seen how he/it/whatever flips between almost sane and obviously intellligent(ish) to complete lunatic idiot. I'd almost feel sorry for him, if he wasn't so much trouble for everyone. EDIT: carlos quote: Venture - Covers ideas and principles of how to make a buck in an increasingly deflationary world. |
|
|
|
city19akro
Newbie
Offline
Activity: 26
Merit: 0
|
|
February 01, 2014, 10:58:31 PM |
|
Is the giveaway still running? If so, i'm in!
|
|
|
|
|
|
visaco
|
|
February 01, 2014, 11:40:41 PM |
|
Interested add me to stakeholder list plz  |
I have told you NEM will make you a millionaire and we have made it ...IOST is the new baby Money making machine. keep an eye on this little Monster...
|
|
|
FrictionlessCoin (OP)
Legendary
Offline
Activity: 868
Merit: 1000
Cryptotalk.org - Get paid for every post!
|
|
February 02, 2014, 12:17:04 AM |
|
Fun fact: the genesis account http://www.mynxt.info/blockexplorer/details.php?action=ac&ac=1739068987193023818 that credited all the original stakeholders used this passphrase: Quote from: 1984 - George Orwell It was a bright cold day in April, and the clocks were striking thirteen. As I've pointed out in my first post https://nextcoin.org/index.php/topic,3608.msg34002.html1.5% of NXT accounts are trivially crackable with a 15 line script and a widely-available passphrase list (the rockyou leak dataset). I've let my script keep running on more lists since then and at current measure have recovered the passphrases of a little more than 3% of all accounts that have ever been used. Since genesis ~8M NXT has been sent to these "weak" accounts. As I pointed out in my original post, my motivation for doing this was to investigate the root cause of the rash of thefts that had been reported (since I suspected weak passphrases) as well as prod the devs to drop the brainwallet-based key management scheme as the default option. I actually cracked the genesis account a few days ago but originally thought my code was just buggy when I saw it's balance was negative ... LOL. As a side note, I should point out that widespread knowledge of the genesis account key isn't a security issue per se. Although I'd advise devs to be defensive moving forward about the possibility of integer overflow/underflow whenever dealing with amounts/fees now that the whole world has access to an account with a negative balance. Breaking news... Nxt genesis account compromised. 3% of all Nxt accounts already compromised. |
|
|
|
|
EvilDave
|
|
February 02, 2014, 01:24:16 AM |
|
Fun fact: the genesis account http://www.mynxt.info/blockexplorer/details.php?action=ac&ac=1739068987193023818 that credited all the original stakeholders used this passphrase: Quote from: 1984 - George Orwell It was a bright cold day in April, and the clocks were striking thirteen. As I've pointed out in my first post https://nextcoin.org/index.php/topic,3608.msg34002.html1.5% of NXT accounts are trivially crackable with a 15 line script and a widely-available passphrase list (the rockyou leak dataset). I've let my script keep running on more lists since then and at current measure have recovered the passphrases of a little more than 3% of all accounts that have ever been used. Since genesis ~8M NXT has been sent to these "weak" accounts. As I pointed out in my original post, my motivation for doing this was to investigate the root cause of the rash of thefts that had been reported (since I suspected weak passphrases) as well as prod the devs to drop the brainwallet-based key management scheme as the default option. I actually cracked the genesis account a few days ago but originally thought my code was just buggy when I saw it's balance was negative ... LOL. As a side note, I should point out that widespread knowledge of the genesis account key isn't a security issue per se. Although I'd advise devs to be defensive moving forward about the possibility of integer overflow/underflow whenever dealing with amounts/fees now that the whole world has access to an account with a negative balance. Breaking news... Nxt genesis account compromised. 3% of all Nxt accounts already compromised. Breaking news...FCs spread their usual FUD. And don't acknowledge the source: https://nextcoin.org/index.php/topic,3752.0.htmlIn other words, don't worry too much. |
|
|
|
whitepaper
Newbie
Offline
Activity: 4
Merit: 0
|
|
February 02, 2014, 03:56:21 AM |
|
interested
|
|
|
|
|
topluto
Newbie
Offline
Activity: 5
Merit: 0
|
|
February 02, 2014, 06:16:54 AM |
|
interested
|
|
|
|
|
robinfx
Newbie
Offline
Activity: 4
Merit: 0
|
|
February 02, 2014, 06:33:39 AM |
|
interested
|
|
|
|
|
bitadem
Newbie
Offline
Activity: 1
Merit: 0
|
|
February 02, 2014, 11:35:25 AM |
|
interested
|
|
|
|
|
FrictionlessCoin (OP)
Legendary
Offline
Activity: 868
Merit: 1000
Cryptotalk.org - Get paid for every post!
|
|
February 02, 2014, 11:51:18 AM |
|
Fun fact: the genesis account http://www.mynxt.info/blockexplorer/details.php?action=ac&ac=1739068987193023818 that credited all the original stakeholders used this passphrase: Quote from: 1984 - George Orwell It was a bright cold day in April, and the clocks were striking thirteen. As I've pointed out in my first post https://nextcoin.org/index.php/topic,3608.msg34002.html1.5% of NXT accounts are trivially crackable with a 15 line script and a widely-available passphrase list (the rockyou leak dataset). I've let my script keep running on more lists since then and at current measure have recovered the passphrases of a little more than 3% of all accounts that have ever been used. Since genesis ~8M NXT has been sent to these "weak" accounts. As I pointed out in my original post, my motivation for doing this was to investigate the root cause of the rash of thefts that had been reported (since I suspected weak passphrases) as well as prod the devs to drop the brainwallet-based key management scheme as the default option. I actually cracked the genesis account a few days ago but originally thought my code was just buggy when I saw it's balance was negative ... LOL. As a side note, I should point out that widespread knowledge of the genesis account key isn't a security issue per se. Although I'd advise devs to be defensive moving forward about the possibility of integer overflow/underflow whenever dealing with amounts/fees now that the whole world has access to an account with a negative balance. Breaking news... Nxt genesis account compromised. 3% of all Nxt accounts already compromised. Breaking news...FCs spread their usual FUD. And don't acknowledge the source: https://nextcoin.org/index.php/topic,3752.0.htmlIn other words, don't worry too much. I really don't thing you understand by the statement: I've let my script keep running on more lists since then and at current measure have recovered the passphrases of a little more than 3% of all accounts that have ever been used. Since genesis ~8M NXT has been sent to these "weak" accounts. What he said was that after running his 15 line script since January 27th, he has discovered the secret phrase for 3% of all Nxt accounts. He is saying that 8million NXT has been compromised by his simple 15 line script. He has of course said that he has not drained those accounts. However, he did publish the code, so someone else could do so. Furthermore, a more sophisticated script running longer could compromise over time even more Nxt accounts. If the genesis account can be compromised in such a short time, then almost every Nxt account can be compromised. |
|
|
|
|
EvilDave
|
|
February 02, 2014, 12:50:04 PM |
|
The genesis account passphrase was spectacularly weak, although long.
The opening line of 1984 ?
I'm surprised it wasn't cracked in December, TBH.
So, there's no real surprise here, DoctorEvil has simply highlighted a known issue. Password security needs to be ramped up, either by making users choose better passphrases or by beefing up password security in the client. or both...
So stop waving your arms around and claiming that the sky is falling, FC.
|
|
|
|
smdino
Newbie
Offline
Activity: 2
Merit: 0
|
|
February 02, 2014, 12:52:47 PM |
|
Interested
|
|
|
|
|
|
EvilDave
|
|
February 02, 2014, 01:06:26 PM |
|
Interested
How did u find this thread, possible sock puppet dude? |
|
|
|
FrictionlessCoin (OP)
Legendary
Offline
Activity: 868
Merit: 1000
Cryptotalk.org - Get paid for every post!
|
|
February 02, 2014, 01:07:02 PM |
|
The genesis account passphrase was spectacularly weak, although long.
The opening line of 1984 ?
I'm surprised it wasn't cracked in December, TBH.
So, there's no real surprise here, DoctorEvil has simply highlighted a known issue. Password security needs to be ramped up, either by making users choose better passphrases or by beefing up password security in the client. or both...
Security is obviously not a top priority for Nxt. Explains why there is a demand for NEX. |
|
|
|
|
EvilDave
|
|
February 02, 2014, 01:17:53 PM |
|
Interesting use of the word "demand"
Anyone apart from the FCs and freshly created, no activity accounts want to weigh in on the demand for nex?
Come on, lets see that demand, kids.
|
|
|
|
|
