Bitcoin Forum
December 07, 2016, 04:37:38 PM *
News: Latest stable version of Bitcoin Core: 0.13.1  [Torrent].
 
   Home   Help Search Donate Login Register  
Pages: « 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 [22] 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 »
  Print  
Author Topic: [ANN] bitaddress.org Safe JavaScript Bitcoin address/private key  (Read 110060 times)
candoo
Hero Member
*****
Offline Offline

Activity: 602


Vertrau in Gott


View Profile
May 30, 2013, 10:57:34 PM
 #421

Hey,

this guy http://www.davidduckwitz.de got a 1:1 copy of your script and writes down that his script is by "danielduckwitz"

Is that okay for you that other people use your code and claim that is theirs? He also sells is on the website for 18 euro



How is your copyright? Are you fine with that or not?

If you are not fine with that than you might write in this posting

https://bitcointalk.org/index.php?topic=200820.0

Copy his name and address and reply it in his thread. so his theft is written down there forever.


BTW: He changed the donation address to his own wallet. We should bust this moth********

He broke multiple laws in germany with that. "urheberrecht". And he SOLD you script for 18 EUR. Maybe you should  accept a donation of 10k€ in order to get his public address deleted in the forums... You have the right to do that.

Einer trage des andern Last, so werdet ihr das Gesetz Christi erfüllen.
1481128658
Hero Member
*
Offline Offline

Posts: 1481128658

View Profile Personal Message (Offline)

Ignore
1481128658
Reply with quote  #2

1481128658
Report to moderator
1481128658
Hero Member
*
Offline Offline

Posts: 1481128658

View Profile Personal Message (Offline)

Ignore
1481128658
Reply with quote  #2

1481128658
Report to moderator
1481128658
Hero Member
*
Offline Offline

Posts: 1481128658

View Profile Personal Message (Offline)

Ignore
1481128658
Reply with quote  #2

1481128658
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1481128658
Hero Member
*
Offline Offline

Posts: 1481128658

View Profile Personal Message (Offline)

Ignore
1481128658
Reply with quote  #2

1481128658
Report to moderator
1481128658
Hero Member
*
Offline Offline

Posts: 1481128658

View Profile Personal Message (Offline)

Ignore
1481128658
Reply with quote  #2

1481128658
Report to moderator
1481128658
Hero Member
*
Offline Offline

Posts: 1481128658

View Profile Personal Message (Offline)

Ignore
1481128658
Reply with quote  #2

1481128658
Report to moderator
payb.tc
Hero Member
*****
Offline Offline

Activity: 812



View Profile
May 30, 2013, 11:22:38 PM
 #422

Hey,

this guy http://www.davidduckwitz.de got a 1:1 copy of your script and writes down that his script is by "danielduckwitz"

i'd be more concerned if it wasn't a 1:1 copy
Dabs
Staff
Legendary
*
Offline Offline

Activity: 1526


64blocks.com


View Profile WWW
May 31, 2013, 04:22:17 AM
 #423

I'm waiting for the bulk generation of compressed public keys. The page already has this capability in the Wallet Details Tab.

Try the patch I just wrote.  It's a pretty straightforward change, especially since compressed support is nicely integrated into the core code.  You can download the html here.

That works. Thanks. I also got the vanitygen version that makes compressed keys. That one is faster (since it is compiled.)

64blocks.com Social Multiplayer Dice (Gambling) - Escrow Service (Services) - GPG ID: 32AD7565, OTC ID: Dabs
All messages concerning escrow or with bitcoin addresses are GPG signed. Please verify.
CompTIA A+, Microsoft Certified Professional, MCSA: Windows 10; Windows Server 2012, MCSE: Cloud Platform and Infrastructure; Productivity; Messaging
pointbiz
Sr. Member
****
Offline Offline

Activity: 426

1ninja


View Profile
June 02, 2013, 05:04:19 PM
 #424

Hey,

this guy http://www.davidduckwitz.de got a 1:1 copy of your script and writes down that his script is by "danielduckwitz"

Is that okay for you that other people use your code and claim that is theirs? He also sells is on the website for 18 euro



How is your copyright? Are you fine with that or not?

If you are not fine with that than you might write in this posting

https://bitcointalk.org/index.php?topic=200820.0

Copy his name and address and reply it in his thread. so his theft is written down there forever.


BTW: He changed the donation address to his own wallet. We should bust this moth********

He broke multiple laws in germany with that. "urheberrecht". And he SOLD you script for 18 EUR. Maybe you should  accept a donation of 10k€ in order to get his public address deleted in the forums... You have the right to do that.

I don't know what happened with the thread you pointed me too. I think the posts got deleted. Thank you for notifying me of this.
As a general notice what David Duckwitz has done is not okay with me. I ran a diff and essentially all he did was change the logo and then claim copyright over the complete work/page by removing my copyright from the footer and replacing his. He should have left my copyright and donation address. At least he has maintained the copyright notice within the source. He can copyright his own logo in his image file but he cannot claim copyright over the complete work.

Two summarize there is a copyright within the source code (the unrendered document) and also a copyright displayed in the rendered version. Both copyrights should be maintained when people fork. Those who make significant changes can add on their own copyright notices.

I have licensed this as an MIT license to encourage people to produce valuable forks. And also because the project relies heavily on MIT and BSD licenses from code I got from the projects of Stephan Thomas, Tom Wu and others. I've even noted in the footer that there is code from other people included in the project.

Coder of: https://www.bitaddress.org      Thread
Open Source JavaScript Client-Side Bitcoin Wallet Generator
Donations: 1NiNja1bUmhSoTXozBRBEtR8LeF9TGbZBN   PGP
pointbiz
Sr. Member
****
Offline Offline

Activity: 426

1ninja


View Profile
June 02, 2013, 05:16:43 PM
 #425

In addition to what I mentioned above. For the safety of end users of these JavaScript Wallet Generators be vary cautious when you use a fork... not everything is the real McCoy. Remember it's safer to download the HTML and run locally with your internet disconnected. Use firebug or Chrome developer tools to monitor the network calls and make sure no calls to external URLs are made.

Example's of forks that are well done and respectful of the original copyrights and donation addresses:
http://liteaddress.org/
https://bitcoinpaperwallet.com/bitcoinpaperwallet/generate-wallet.html

I personally reviewed the liteaddress.org fork at v2.3 and it's trustworthy.

Coder of: https://www.bitaddress.org      Thread
Open Source JavaScript Client-Side Bitcoin Wallet Generator
Donations: 1NiNja1bUmhSoTXozBRBEtR8LeF9TGbZBN   PGP
payb.tc
Hero Member
*****
Offline Offline

Activity: 812



View Profile
June 02, 2013, 09:10:06 PM
 #426

I personally reviewed the liteaddress.org fork at v2.3 and it's trustworthy.

when you did that, did you do a checksum you can share with us? because your 2.3 might not be the same as our 2.3.
canton
Sr. Member
****
Offline Offline

Activity: 259



View Profile WWW
June 03, 2013, 02:19:44 AM
 #427

Example's of forks that are well done and respectful of the original copyrights and donation addresses

Hi pointbiz,

I super super super want to make sure I'm being respectful and complete with my forking and copyright notices. Can you please make sure I'm making proper attribution? I'm enormously thankful of your work, and each time I update my code I've got the phrase "standing on the shoulders of giants" running through my head.

https://bitcoinpaperwallet.com/bitcoinpaperwallet/generate-wallet.html

Thanks and please feel free to let me know with total candor anything you'd like amended.

- Canton Becker

PS: the main/instructional website at bitcoinpaperwallet.com also credits bitaddress.org, see: http://cl.ly/image/3K2h362D3O26

https://bitcoinpaperwallet.com - Gorgeous 2-sided tri-fold paper wallets with tamper-evident features. *** Now with BIP38 & dice generator ***

My RSA Key ID & Fingerprint: 36E1D9B6 / AB12 6777 451C 7A18 C172 3297 C525 F065 0B16 DF4B
pointbiz
Sr. Member
****
Offline Offline

Activity: 426

1ninja


View Profile
June 03, 2013, 04:06:11 AM
 #428

Example's of forks that are well done and respectful of the original copyrights and donation addresses

Hi pointbiz,

I super super super want to make sure I'm being respectful and complete with my forking and copyright notices. Can you please make sure I'm making proper attribution? I'm enormously thankful of your work, and each time I update my code I've got the phrase "standing on the shoulders of giants" running through my head.

https://bitcoinpaperwallet.com/bitcoinpaperwallet/generate-wallet.html

Thanks and please feel free to let me know with total candor anything you'd like amended.

- Canton Becker

PS: the main/instructional website at bitcoinpaperwallet.com also credits bitaddress.org, see: http://cl.ly/image/3K2h362D3O26

All good. Your site is an example of how to do it right  Grin

FYI David Duckwitz translated your site into German and put it copyright under his name. At least he kept the donation addresses...
http://bitcoinwallet.davidduckwitz.de/

Coder of: https://www.bitaddress.org      Thread
Open Source JavaScript Client-Side Bitcoin Wallet Generator
Donations: 1NiNja1bUmhSoTXozBRBEtR8LeF9TGbZBN   PGP
Michael_S
Sr. Member
****
Offline Offline

Activity: 277


Bitcoin-Note-and-Voucher-Printing-Empowerer


View Profile
June 08, 2013, 06:06:01 PM
 #429

Seems this guy (davidduckwitz.de) has removed the inadequate copyright note in the meantime, but he still sells the free software for 19 Euro in his web shop.

Moreover, there are plenty of embarrassing spelling errors everywhere on his pages, and his web design is very bad, which is funny because he advertises himself as a web designer. But I think this still does not give him the right to sell free software for his own benefit.

PS: This person seems to also have an account in this forum: user name "davidduckwitz", zero posts.

Summary: David Duckwitz, Fulda, Germany, Homepage davidduckwitz.de (hosted by 1und1.de), claims to be a web designer, however his own website shows a relatively disadvantageous web design, he does not write proper German as a matter of fact, he sells other people's (free) software as his own SW as a matter of fact.

(given all these facts it is difficult to refrain from using ..... words, but everyone can judge by him/herself - I feel sick for some completely unknown reason .............)

pointbiz
Sr. Member
****
Offline Offline

Activity: 426

1ninja


View Profile
June 09, 2013, 03:20:03 AM
 #430

I personally reviewed the liteaddress.org fork at v2.3 and it's trustworthy.

when you did that, did you do a checksum you can share with us? because your 2.3 might not be the same as our 2.3.


Code:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

liteaddress.org v2.3 reviewed on June 8 2013:
https://raw.github.com/litecoin-project/liteaddress.org/fb0d5318b8eb2102ecf7c3310a0e8ae4a03b8445/bitaddress.org.html
SHA1: 3b71cca53ebb0e892b7f5577e08339c828707573
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.17 (MingW32)

iQEcBAEBAgAGBQJRs/PVAAoJEIdJe5Fjl09a4JMH/jBcttw0TRuNLJNThQL1g1nF
ncV4xbbxoVm1xXz7Y+HfLTjSpVfLtHmZxjjhoIRuWi7vgO013/yCA3KY6gVebGF3
NEuRY9IPmF/RurpAXrSMKRJJfgXhj4IoI4XsDbqmp7qYbLVjz9EWXYiXlcaefAp9
GS8ecp8SnbLE/b7EPm8/oUL/Z9n3RQgcd8m7OSSC9dITkAWcJbizmDcaJNZvepVJ
ZpU73f1XjgaymkMxLxq7kfxi7aHjbrgZsxeDOhuP1Lgwc2vvJvUYvMhplSeU0R+5
fUx8rqh9U5XwdVnE2q2tm7vKD+7lT+W7efWxpS/2QmQYGE3BL21EtqXbfBdSh5E=
=qPn1
-----END PGP SIGNATURE-----

Coder of: https://www.bitaddress.org      Thread
Open Source JavaScript Client-Side Bitcoin Wallet Generator
Donations: 1NiNja1bUmhSoTXozBRBEtR8LeF9TGbZBN   PGP
coblee
Donator
Legendary
*
Offline Offline

Activity: 1078


firstbits.com/1ce5j


View Profile WWW
June 28, 2013, 09:22:52 AM
 #431

Thanks pointbiz. I created the Litecoin clone of bitaddress.org and wasn't planning to profit from it. So I left your donation address as is. Thanks for such a great site!

bitpop
Legendary
*
Offline Offline

Activity: 1932


https://keybase.io/bitpop


View Profile WWW
July 11, 2013, 01:24:37 AM
 #432

pointbiz, everytime I try to check your pgp messages, I get an error, not enough info?
I imported your ninja key

Reputation  |  PGP  |  DigitalOcean  |  OpenVPN 2GB Free  |  TorGuard  |  Ethereum Classic
Bitcoin: 3DSh6AnmvBpDJFUz2mnLirMLmTMcFs9nDm
Bitmessage: BM-2cXN9j8NFT2n1FxDVQ6HQq4D4MZuuaBFyb
Financisto
Sr. Member
****
Offline Offline

Activity: 463

★BFG★


View Profile
July 21, 2013, 12:28:36 PM
 #433

What about a namecoin implementation of bitaddress.org ?
It would be very useful.

Glad to see that you forked and did it (namecoinia) by yourself!

"If you want it well done, do it yourself!"

By the way, what about adding a zip version (github) in order to use it as an offline address generator?

Compilation of Brainwallet & Paper wallet generators Blockchain Financial Group Blokĉeno Financa Grupo
dilb3rt
Newbie
*
Offline Offline

Activity: 21


View Profile
July 31, 2013, 03:17:55 PM
 #434

What about a namecoin implementation of bitaddress.org ?
It would be very useful.

Glad to see that you forked and did it (namecoinia) by yourself!

"If you want it well done, do it yourself!"

By the way, what about adding a zip version (github) in order to use it as an offline address generator?

You can save the bitcoinaddress.org.html file locally and load it in the browser to use it offline.
niko
Hero Member
*****
Offline Offline

Activity: 742


There is more to Bitcoin than bitcoins.


View Profile
September 09, 2013, 05:36:41 AM
 #435

Android complains about non-trusted CA for bitaddress. Pointbiz, would you please state here who issued the certificate, and provide the serial number and the fingerprint? Thanks!

They're there, in their room.
Your mining rig is on fire, yet you're very calm.
TradeFortress
VIP
Legendary
*
Offline Offline

Activity: 910


View Profile
September 09, 2013, 06:20:38 AM
 #436

Android complains about non-trusted CA for bitaddress. Pointbiz, would you please state here who issued the certificate, and provide the serial number and the fingerprint? Thanks!

Just verify the SHA256 hash: 1d5951f6a04dd5a287ac925da4e626870ee58d60
niko
Hero Member
*****
Offline Offline

Activity: 742


There is more to Bitcoin than bitcoins.


View Profile
September 09, 2013, 06:51:38 AM
 #437

Android complains about non-trusted CA for bitaddress. Pointbiz, would you please state here who issued the certificate, and provide the serial number and the fingerprint? Thanks!

Just verify the SHA256 hash: 1d5951f6a04dd5a287ac925da4e626870ee58d60
How do I save a page from android stock browser, then verify the sha256?

They're there, in their room.
Your mining rig is on fire, yet you're very calm.
payb.tc
Hero Member
*****
Offline Offline

Activity: 812



View Profile
September 10, 2013, 10:37:24 AM
 #438

What about a namecoin implementation of bitaddress.org ?
It would be very useful.

Glad to see that you forked and did it (namecoinia) by yourself!

"If you want it well done, do it yourself!"

By the way, what about adding a zip version (github) in order to use it as an offline address generator?

sorry couldn't find a namecoinia thread...

any chance you could make this value known in the popup box that comes up:

Quote
minPassphraseLength: 15

saying it's "too short" without actually telling the user how short, is a bit

salfter
Hero Member
*****
Offline Offline

Activity: 550


My PGP Key: 92C7689C


View Profile WWW
September 19, 2013, 04:50:51 PM
 #439

A while back, I did a Bitgem fork.  It's on my pool site:

https://bitgem.dyndns.org/bitgemaddress.html

It's also at GitHub:

https://github.com/salfter/bitaddress.org

I removed the bitaddress.org logo at the top (since it doesn't really apply here), replaced the paper-wallet artwork with my hastily cobbled-together Bitgem note design, edited some of the text on the bulk-wallet tab, and changed a few constants here and there to produce Bitgem addresses.  Copyright and donation-address messages were left alone, but I figured it'd be appropriate to remove the PGP-key and version-history links and redirect the GitHub link to my fork.  My donation addresses (BTC & BTG) are included at the bottom as an add-on.

My Bitgem Pool - PPLNS, Stratum | Gridseed Miners - $25 off your first order | BTG Explorer
Tipjars: BTC 1TipsGocnz2N5qgAm9f7JLrsMqkb3oXe2 LTC LTipsVC7XaFy9M6Zaf1aGGe8w8xVUeWFvR BTG gTipsVB9qmyYHuqMMKTuCYMHpfkUFBXKrZ | My Bitcoin Note Generator | Pyramining: 1 2 3 4 5
casascius
Mike Caldwell
VIP
Legendary
*
Offline Offline

Activity: 1344


The Casascius 1oz 10BTC Silver Round (w/ Gold B)


View Profile WWW
September 20, 2013, 01:41:24 AM
 #440

Here is a feature request that I think would help assuage people's fears about random number generation, which have become more valid the more we hear about NSA-rigged RNG.

Right now, the script collects entropy by way of mouse movements.

I propose that the script also collect some additional entropy by way of the keyboard.

When the script generates new private keys, the private key should be SHA256(user-entered-string | prng-generated-string) (where | is concatenation).  Further, the string provided to SHA256 should be optionally printed somewhere on the note as an "audit code" (it could be invisible unless the user decides to click something to make it visible).

The purpose of the audit code is to allow anybody to reproduce the private key by hashing the string.  If it can be proven that the user-entered-string is part of the entropy that went into the private keys, then any user sophisticated enough to actually provide enough entropy via the keyboard can be reasonably assured that even if the prng is defective (whether by design or accident), that his keys are secure.

A side benefit is it also allows for easier practical auditing of forks.  Someone who is rightfully paranoid that a fork created to add feature X could also contain a weakened PRNG can satisfy his fear by making up for it in the form of extra entropy typed into the box.

Companies claiming they got hacked and lost your coins sounds like fraud so perfect it could be called fashionable.  I never believe them.  If I ever experience the misfortune of a real intrusion, I declare I have been honest about the way I have managed the keys in Casascius Coins.  I maintain no ability to recover or reproduce the keys, not even under limitless duress or total intrusion.  Remember that trusting strangers with your coins without any recourse is, as a matter of principle, not a best practice.  Don't keep coins online. Use paper wallets instead.
Pages: « 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 [22] 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 »
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!