Bitcoin Forum
December 08, 2016, 10:04:40 AM *
News: Latest stable version of Bitcoin Core: 0.13.1  [Torrent].
 
   Home   Help Search Donate Login Register  
Poll
Question: What keeps you from testing the service?
I already tested it and posted my comments in the thread - 3 (27.3%)
I already tested it but I'm too lazy to post my comments - 0 (0%)
TL;DR (The post is "Too Long; Didn't Read") - 3 (27.3%)
Safety issues - I am concerned about my e-mail/testnet coins - 0 (0%)
Some bug didn't let me do something (please post which) - 0 (0%)
I'm waiting to see this site in my language (please post which) - 0 (0%)
I don't like the theme, the service looks unattractive - 0 (0%)
Usability issues (for example, the need to register; please post which exactly) - 0 (0%)
The choice of protocol used - I don't feel like setting up a testnet Bitcoin client or have problems with it (please post details) - 1 (9.1%)
I don't understand the idea of the service or find it useless - 2 (18.2%)
I wouldn't trust you my precious coins - 2 (18.2%)
Total Voters: 11

Pages: « 1 2 [3]  All
  Print  
Author Topic: bitcoinbounties.org - collect bounties!  (Read 8146 times)
Retired
Jr. Member
*
Offline Offline

Activity: 57



View Profile
December 29, 2011, 11:00:00 PM
 #41

With all due respect (since any contribution is always a huge investment of time), I must say you have a way to go in terms of security. mysql_real_escape_string() is not the function you must use to sanitize all inputs (although you can use it to help your cleanup), but each variable must be sanitized by its own limits (alphanumeric ones using, for example, a regex; the email using a different one; and values which are always integers using string-to-integer functions like intval(), doubleval() or floatval(), or directly using number_format() to take care of it...)

I've not seen all the code, only a good part of it, and I must say you have tried hard to make it safe.

As I said, I hope this project (and so the time you've spent on it) gets the recognition it deserves, since it's a great initiative.
And I know you already said the security on the script was not yet production-ready; just wanted to give my 2 cents. Smiley

▲▼ No.1 Bitcoin Binary Options ▲▼
████████████ sec◔nds trade ████████████
↑↓ Highest Reward 190% ↑↓
1481191480
Hero Member
*
Offline Offline

Posts: 1481191480

View Profile Personal Message (Offline)

Ignore
1481191480
Reply with quote  #2

1481191480
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1481191480
Hero Member
*
Offline Offline

Posts: 1481191480

View Profile Personal Message (Offline)

Ignore
1481191480
Reply with quote  #2

1481191480
Report to moderator
DeathAndTaxes
Donator
Legendary
*
Offline Offline

Activity: 1218


Gerald Davis


View Profile
December 29, 2011, 11:22:51 PM
 #42

I will be more interested when it is on main net. 

You should include the ability for others to fund an existing bounty without registration simply sending funds to an address.

For example I make a bounty for xyz offering 5 BTC.  Someone else says hey that is a great idea.  Only 5 BTC?  I will add to that.  He clicks the "add to this bounty" link/button and gets and address. He sends 3 BTC to that address and after confirmation your website updates to reflect 8 BTC bounty on "xyz".
d33tah
Jr. Member
*
Offline Offline

Activity: 47



View Profile
December 30, 2011, 01:34:06 AM
 #43

It's already implemented, see the "donate" button.

d33tah
Jr. Member
*
Offline Offline

Activity: 47



View Profile
January 01, 2012, 10:12:56 PM
 #44

With all due respect (since any contribution is always a huge investment of time), I must say you have a way to go in terms of security. mysql_real_escape_string() is not the function you must use to sanitize all inputs (although you can use it to help your cleanup), but each variable must be sanitized by its own limits (alphanumeric ones using, for example, a regex; the email using a different one; and values which are always integers using string-to-integer functions like intval(), doubleval() or floatval(), or directly using number_format() to take care of it...)

I've not seen all the code, only a good part of it, and I must say you have tried hard to make it safe.

As I said, I hope this project (and so the time you've spent on it) gets the recognition it deserves, since it's a great initiative.
And I know you already said the security on the script was not yet production-ready; just wanted to give my 2 cents. Smiley

I understand you mean the script is insecure at the moment, right? Mind pointing me out some attack scenario I could reproduce? You might have a point that validation is incomplete somewhere.

ZodiacDragon84
Sr. Member
****
Offline Offline

Activity: 266


The king and the pawn go in the same box @ endgame


View Profile
January 02, 2012, 06:50:11 AM
 #45

I logged in as demo, and did a test bounty submission. I pulled the following error message:

Warning: move_uploaded_file(/var/www/uploads/test by ZodiacDragon84.txt): failed to open stream: Permission denied in /var/www/models/newsolution.php on line 29 Warning: move_uploaded_file(): Unable to move '/tmp/phpzcSAWc' to '/var/www/uploads/test by ZodiacDragon84.txt' in /var/www/models/newsolution.php on line 29

I would hazard a guess that the uploader didnt work, or I didnt have user permission under the demo account to upload a solution?

Looking for a quick easy mining solution? Check out
www.bitminter.com

See my trader rep at Bitcoinfeedback.com
!
ZodiacDragon84
Sr. Member
****
Offline Offline

Activity: 266


The king and the pawn go in the same box @ endgame


View Profile
January 02, 2012, 06:54:42 AM
 #46

Also. The homepage is not very user friendly. I know sort of what is going on because I read the posts you put up previously. However, a newcomer who is reading deficient might not know whats going on when they get to your site. Maybe have a description on the homepage that lets newcomers know what you are about. and perhaps set up the bounties by category? Software bounties, hardware design bounties, mining bounties, startup bitcoin website bounties, etc. I would like to see where this goes otherwise!

Looking for a quick easy mining solution? Check out
www.bitminter.com

See my trader rep at Bitcoinfeedback.com
!
ZodiacDragon84
Sr. Member
****
Offline Offline

Activity: 266


The king and the pawn go in the same box @ endgame


View Profile
January 02, 2012, 07:00:56 AM
 #47

Also just noticed. I tried to set up a user account to see if my use of the demo account was what threw my previous error message, only to get this message:

The login you have entered is too long (it has to be between 4 and 30 characters). Please choose a different one.

The login name I entered Was my forum tag, ZodiacDragon84, which is well within the parameters stated in the character length in the error message.

Is there anything specific on the user end that you would like to test for? Let me know what you are looking for, and I will beta test the crap out of this!

Looking for a quick easy mining solution? Check out
www.bitminter.com

See my trader rep at Bitcoinfeedback.com
!
marked
Full Member
***
Offline Offline

Activity: 168



View Profile
April 16, 2012, 06:50:21 PM
 #48

This site is down, or at least I am only getting what looks like a default hosting page in chinese.


marked
girlsgonebitcoin
Member
**
Offline Offline

Activity: 99



View Profile WWW
April 16, 2012, 06:54:37 PM
 #49

This site is down, or at least I am only getting what looks like a default hosting page in chinese.


marked

site has been down for awhile.
highlevelminer
Jr. Member
*
Offline Offline

Activity: 42



View Profile
April 18, 2012, 11:41:57 PM
 #50

I'm sorry to hear this.

Bitcoin bounties are all the rage in the underground network to which I belong.

You can make a heft sum, especially when done with a core mining base of course Smiley

PM or email for Deathbylollipop Youtube Ads

Also be sure to check out our company business agenda vlog

Donations for bitcoin support and advertisements always welcome:

1GsaRJFGqCSFQ97NfaQ9KiMFXMur3bwxk
Raoul Duke
aka psy
Legendary
*
Offline Offline

Activity: 1442



View Profile
April 19, 2012, 12:08:07 AM
 #51

I'm sorry to hear this.

Bitcoin bounties are all the rage in the underground network to which I belong.

You can make a heft sum, especially when done with a core mining base of course Smiley

Watcha saying? The site was only an example site. Working on testnet.
The VPS where it was hosted ended its yearly subscription. If I get an extra empty VPS I can donate again to put it live I will. At the moment I have none. Sad Not even sure if d33tah is still developing it actively.

highlevelminer
Jr. Member
*
Offline Offline

Activity: 42



View Profile
April 19, 2012, 12:17:03 AM
 #52

Well for one I would directly like to be involved in the promotion of the bitcoin in general... youtube videos, links to mining pools etc.

I have a few partners who are interested in promoting the bitcoin as a lifestyle choice.

If you want to start up another website with a similar program we will definitely promote for you!

Already have a few youtube videos up with the tag pristine miner under the name Shao Ling - one of the developers of pristine miner (which is NOT available for download currently due to discretion of moderators)

PM or email for Deathbylollipop Youtube Ads

Also be sure to check out our company business agenda vlog

Donations for bitcoin support and advertisements always welcome:

1GsaRJFGqCSFQ97NfaQ9KiMFXMur3bwxk
Raoul Duke
aka psy
Legendary
*
Offline Offline

Activity: 1442



View Profile
April 19, 2012, 01:43:45 AM
 #53

Take your trojans/wallet stealers elsewhere n00b.

We are way more blackhat than you around here, remember that Wink

Pages: « 1 2 [3]  All
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!