Bitcoin Forum
July 17, 2019, 05:41:38 AM *
News: Latest Bitcoin Core release: 0.18.0 [Torrent] (New!)
 
   Home   Help Search Login Register More  
Pages: « 1 2 [3] 4 5 6 7 8 9 10 11 12 »  All
  Print  
Author Topic: Bitcoin Core (Bitcoin-Qt) 0.9.1 released - update required  (Read 63860 times)
vayvanne
Full Member
***
Offline Offline

Activity: 216
Merit: 100

GPG ID 48298AFC


View Profile
April 09, 2014, 12:42:32 AM
 #41

It should depend does rpc accept connections from network by default config or not. If it does then wallets on such systems can be compromised and need a replacement. If it does not and user did not opened it to network then no reasons to worry.
1563342098
Hero Member
*
Offline Offline

Posts: 1563342098

View Profile Personal Message (Offline)

Ignore
1563342098
Reply with quote  #2

1563342098
Report to moderator
1563342098
Hero Member
*
Offline Offline

Posts: 1563342098

View Profile Personal Message (Offline)

Ignore
1563342098
Reply with quote  #2

1563342098
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1563342098
Hero Member
*
Offline Offline

Posts: 1563342098

View Profile Personal Message (Offline)

Ignore
1563342098
Reply with quote  #2

1563342098
Report to moderator
1563342098
Hero Member
*
Offline Offline

Posts: 1563342098

View Profile Personal Message (Offline)

Ignore
1563342098
Reply with quote  #2

1563342098
Report to moderator
1563342098
Hero Member
*
Offline Offline

Posts: 1563342098

View Profile Personal Message (Offline)

Ignore
1563342098
Reply with quote  #2

1563342098
Report to moderator
BlockchainHelp?
Newbie
*
Offline Offline

Activity: 28
Merit: 0


View Profile
April 09, 2014, 12:43:03 AM
 #42

I created 4 private keys offline in Bitcoin-QT 9.0 via TailsOS. My client never touched the internet, do I need to bring my cold storage online to create 4 new wallets in 9.1?

Man I'm worried now, I guess I will bring my wallets online tomorrow and create 4 new wallets *sigh*
theymos
Administrator
Legendary
*
Offline Offline

Activity: 3444
Merit: 6003


View Profile
April 09, 2014, 12:47:54 AM
 #43

I hate being forced into new updates. Like MoonShadow once said (and I am paraphrasing): "I like to wait until they have ironed out the bugs with new releases before I update". I've been following that same rule, and only update if it's absolutely necessary. Which is why I never even upgraded to v0.9

That's a good policy. I also do that. You don't need to update from versions older than 0.9.0 unless you're using rpcssl. Most people aren't.

EDIT: Also, are the cold addresses generated from bitaddress.org safe? Most of my cold Bitcoins are stored on addresses (with their keys) generated from bitaddress.org (i.e. the "Bulk Wallet" option)

bitaddress.org's HTTPS may have been compromised due to this OpenSSL bug, which could have allowed a man-in-the-middle to serve you malicious JavaScript.

I recommend not using JavaScript Bitcoin software for anything important.

I created 4 private keys offline in Bitcoin-QT 9.0 via TailsOS. My client never touched the internet, do I need to bring my cold storage online to create 4 new wallets in 9.1?

No, but don't ever run your 0.9.0 installation. When you want to access your cold storage, update to the latest version first.

1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD
LogicalUnit
Sr. Member
****
Offline Offline

Activity: 299
Merit: 250


View Profile
April 09, 2014, 12:53:18 AM
 #44

I'm using Armory 0.90-beta with bitcoind 0.9.0. I don't believe I've ever used rcpssl -- but I'm not sure. I have an encrypted online wallet, and an offline wallet. Could my wallets be compromised?
STT
Legendary
*
Offline Offline

Activity: 2142
Merit: 1132


CyberDice - Best Bitcoin Dice Game


View Profile WWW
April 09, 2014, 12:54:12 AM
Last edit: April 09, 2014, 01:45:07 AM by STT
 #45

If you ever used the payment protocol (you clicked a bitcoin: link and saw a green box in Bitcoin Core's send dialog), then you should consider your wallet to be compromised.


What about to use ALERT
https://en.bitcoin.it/wiki/Alerts

My exact thoughts. I think this is serious enough.

alert is like defcon 1 I think, Im trying to imagine the crypto equal of an impending nuclear winter

Quote
This vulnerability is caused by a critical bug in the OpenSSL library used by Bitcoin Core. Successfully attacking Bitcoin Core by means of this bug seems to be difficult in most cases, and it seems at this point that even successful attacks may be limited, but I recommend taking the above actions just in case.


I shivered for a monent. Next time try mentioning the good news first.

Thanks for the heads up!
I think action first is probably wise, prevention before cure?


My noob question here is could gox claim this bug had any influence at all in their case

Quote
That's a good policy. I also do that. You don't need to update from versions older than 0.9.0 unless you're using rpcssl. Most people aren't.

Do they do alpha beta test before then allowing a recommended update to the masses

almightyruler
Legendary
*
Offline Offline

Activity: 1988
Merit: 1040


View Profile
April 09, 2014, 12:58:12 AM
 #46

I hate being forced into new updates. Like MoonShadow once said (and I am paraphrasing): "I like to wait until they have ironed out the bugs with new releases before I update". I've been following that same rule, and only update if it's absolutely necessary. Which is why I never even upgraded to v0.9

If you know how to use (or can figure it out) Gitian you could always recompile your favourite version of Bitcoin-qt with the newer version of OpenSSL.

Third parties could do the same thing but obviously that would require a lot of trust.
southerngentuk
Sr. Member
****
Offline Offline

Activity: 392
Merit: 250


View Profile
April 09, 2014, 01:00:14 AM
 #47

Is there a quick guide to install this ?

I have just switched from windows to Ubuntu, Help!

I got 0.9.0 installed via PPA but the PPA is not updated yet ( + I would like to know how to do it without)

I have :-

Downloaded bitcoin-0.9.1-linux.tar.gz

Then tar xvzf bitcoin-0.9.1-linux.tar.gz


This gives me a folder with bin + src but no ./configure. src has but that  fails.

Obviously I just don't get it  Grin


mufa23
Legendary
*
Offline Offline

Activity: 1022
Merit: 1001


I'd fight Gandhi.


View Profile
April 09, 2014, 01:02:48 AM
 #48

I hate being forced into new updates. Like MoonShadow once said (and I am paraphrasing): "I like to wait until they have ironed out the bugs with new releases before I update". I've been following that same rule, and only update if it's absolutely necessary. Which is why I never even upgraded to v0.9

That's a good policy. I also do that. You don't need to update from versions older than 0.9.0 unless you're using rpcssl. Most people aren't.
How can you tell when you are using rpcssl? What activates/turns it on? I've never manually ran any RPC commands that had to do with SSL. Just importing privkeys.

Positive rep with: pekv2, AzN1337c0d3r, Vince Torres, underworld07, Chimsley, omegaaf, Bogart, Gleason, SuperTramp, John K. and guitarplinker
theymos
Administrator
Legendary
*
Offline Offline

Activity: 3444
Merit: 6003


View Profile
April 09, 2014, 01:08:52 AM
 #49

How can you tell when you are using rpcssl? What activates/turns it on? I've never manually ran any RPC commands that had to do with SSL. Just importing privkeys.

When you run bitcoind, you can run it with a number of command-line switches such as -config=..., -connect=..., etc. If you run bitcoind with -rpcssl=1, then you're potentially vulnerable to this bug.

1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD
theymos
Administrator
Legendary
*
Offline Offline

Activity: 3444
Merit: 6003


View Profile
April 09, 2014, 01:11:20 AM
 #50

Is there a quick guide to install this ?

I have just switched from windows to Ubuntu, Help!

I got 0.9.0 installed via PPA but the PPA is not updated yet ( + I would like to know how to do it without)

I have :-

Downloaded bitcoin-0.9.1-linux.tar.gz

Then tar xvzf bitcoin-0.9.1-linux.tar.gz


This gives me a folder with bin + src but no ./configure. src has but that  fails.

Obviously I just don't get it  Grin



The downloaded bin directory contains a few executable files. Find the locations of those files already on your system and replace them with the new versions. Maybe they're in /usr/bin?

1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD
defaced
Legendary
*
Offline Offline

Activity: 2016
Merit: 1011


Franko is Freedom


View Profile WWW
April 09, 2014, 01:15:05 AM
 #51

I hate being forced into new updates. Like MoonShadow once said (and I am paraphrasing): "I like to wait until they have ironed out the bugs with new releases before I update". I've been following that same rule, and only update if it's absolutely necessary. Which is why I never even upgraded to v0.9

If you know how to use (or can figure it out) Gitian you could always recompile your favourite version of Bitcoin-qt with the newer version of OpenSSL.

Third parties could do the same thing but obviously that would require a lot of trust.

Yup, pretty easy stuff.

Fortune Favors the Brave
Borderless CorpEXPANSETokenlabEXREXP.LIFEFranko Is Freedom
BlockchainHelp?
Newbie
*
Offline Offline

Activity: 28
Merit: 0


View Profile
April 09, 2014, 01:17:16 AM
 #52

I created 4 private keys offline in Bitcoin-QT 9.0 via TailsOS. My client never touched the internet, do I need to bring my cold storage online to create 4 new wallets in 9.1?

Shameful quote, I need to know Sad

H34P5PR4Y
Newbie
*
Offline Offline

Activity: 11
Merit: 0


View Profile
April 09, 2014, 01:19:42 AM
 #53

just downloaded 0.9.1 win64 bit and i get this error: Assertion Failed! Program C:\Program Files\Bitcoin\bitcoin-qt.exe
File ../../src/serialize.h, Line1013

Expression: nSize >=0

poordeveloper
Hero Member
*****
Offline Offline

Activity: 896
Merit: 526


₿₿₿₿₿₿₿


View Profile WWW
April 09, 2014, 01:21:12 AM
 #54

For Windows users, if you are using a vulnerable OpenSSL version and want to update it to the latest, non-vulnerable one:
http://slproweb.com/products/Win32OpenSSL.html (linked from http://www.openssl.org/related/binaries.html)

🎰 Bitcoin Casinos ⭐⭐⭐⭐⭐
.
🔵 Buy Bitcoin (Visa / Mastercard / SEPA / Bank Transfer / Western Union / MoneyGram / RIA)
7Priest7
Sr. Member
****
Offline Offline

Activity: 392
Merit: 250


View Profile
April 09, 2014, 01:35:00 AM
 #55

Memorized private keys, the safest way to own bitcoin.
Encrypted paper wallets, almost as safe.

Paper wallets without encryption could be physicly stolen then claimed.
Bitcoin clients have the possibility of security vulnerabilities and are targeted by bitcoin related malware.
Physical digital wallets are subject to theft just as unencrypted paper wallets are.
bitpop
Legendary
*
Offline Offline

Activity: 2520
Merit: 1045


https://keybase.io/bitpop


View Profile WWW
April 09, 2014, 01:51:02 AM
 #56

I created 4 private keys offline in Bitcoin-QT 9.0 via TailsOS. My client never touched the internet, do I need to bring my cold storage online to create 4 new wallets in 9.1?

Shameful quote, I need to know Sad



Almost everyone should be pretty safe especially you. Unless they're not telling us something yet.

Reputation  |  PGP  |  Ethereum Classic
Bitcoin: 3DSh6AnmvBpDJFUz2mnLirMLmTMcFs9nDm
Siegfried
Sr. Member
****
Offline Offline

Activity: 266
Merit: 250


View Profile
April 09, 2014, 01:54:26 AM
 #57

How do I install this for Linux Mint? On the previous version there was just a bitcoin-qt file which I could click on and run. Now the extracted folder contains several files, none of which are executable. I am stupid and know almost nothing about using the terminal, compiling libraries, etc. Can someone give me a simple explanation please?
bitpop
Legendary
*
Offline Offline

Activity: 2520
Merit: 1045


https://keybase.io/bitpop


View Profile WWW
April 09, 2014, 01:58:19 AM
 #58

How do I install this for Linux Mint? On the previous version there was just a bitcoin-qt file which I could click on and run. Now the extracted folder contains several files, none of which are executable. I am stupid and know almost nothing about using the terminal, compiling libraries, etc. Can someone give me a simple explanation please?

Go to bin 64

Reputation  |  PGP  |  Ethereum Classic
Bitcoin: 3DSh6AnmvBpDJFUz2mnLirMLmTMcFs9nDm
DeathAndTaxes
Donator
Legendary
*
Offline Offline

Activity: 1218
Merit: 1005


Gerald Davis


View Profile
April 09, 2014, 02:00:16 AM
 #59

I hate being forced into new updates. Like MoonShadow once said (and I am paraphrasing): "I like to wait until they have ironed out the bugs with new releases before I update". I've been following that same rule, and only update if it's absolutely necessary. Which is why I never even upgraded to v0.9

That's a good policy. I also do that. You don't need to update from versions older than 0.9.0 unless you're using rpcssl. Most people aren't.
How can you tell when you are using rpcssl? What activates/turns it on? I've never manually ran any RPC commands that had to do with SSL. Just importing privkeys.

Even if you are using RPC you would have had to manually create a SSL private key and SSL cert using openssl and then manually install those by setting params in the bitcoin.conf in order to be be exectuing those RPC calls over SSL.

If all of those sounds foreign the simple answer is unless you already knew you were using RPC over SSL you weren't using it.
Siegfried
Sr. Member
****
Offline Offline

Activity: 266
Merit: 250


View Profile
April 09, 2014, 02:00:54 AM
 #60

How do I install this for Linux Mint? On the previous version there was just a bitcoin-qt file which I could click on and run. Now the extracted folder contains several files, none of which are executable. I am stupid and know almost nothing about using the terminal, compiling libraries, etc. Can someone give me a simple explanation please?

Go to bin 64

I have done that and clicked bitcoin-qt. I get the following error:

Could not display "/home/robert/Programs/bitcoin-0.9.1-linux/bin/64/bitcoin-qt". There is no application installed for shared library files. Do you want to search...
Pages: « 1 2 [3] 4 5 6 7 8 9 10 11 12 »  All
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!