dserrano5
Legendary
 Offline
Activity: 1974
Merit: 1029
|
 |
December 03, 2014, 07:23:42 AM |
|
You must be joking right? Considering his machine, the virus was probably written 15 years ago or longer.
You implying that it's impossible for it to have gotten a new virus in the last month? |
|
|
|
|
|
johoe (OP)
|
|
December 03, 2014, 05:53:19 PM |
|
I just noticed that amaclin tries to double spend the broken transaction in real-time: https://blockchain.info/tx/df02f56b230c397cb67bb5334209f7e45d58f1f9d6eb1df1bc17e6ecb107e206This is a double spend of the transaction that revealed the private keys. In this case the double spend was not successful (despite the fact that he used twice the fee). Since my lists are generated using only the transactions in the block chain, the list won't contain the addresses where the broken transactions were successfully double spent. |
Donations to 1CF62UFWXiKqFUmgQMUby9DpEW5LXjypU3
|
|
|
newIndia
Legendary
Offline
Activity: 2226
Merit: 1052
|
|
December 06, 2014, 03:19:41 PM |
|
You must be joking right? Considering his machine, the virus was probably written 15 years ago or longer.
You implying that it's impossible for it to have gotten a new virus in the last month? A Pentium II machine, which is not connected online for long is supposed to be safe from new viruses. Is not it ? |
|
|
|
|
altcoinex
|
|
December 06, 2014, 04:14:01 PM |
|
You must be joking right? Considering his machine, the virus was probably written 15 years ago or longer.
You implying that it's impossible for it to have gotten a new virus in the last month? A Pentium II machine, which is not connected online for long is supposed to be safe from new viruses. Is not it ? Nothing is safe. You have to ASSUME compromise and act under that assumption. Nothing wrong with using this machine, but only after a full whipe and clean and you verify no root kits, and not running and old software or some decades old OS etc.. Beyond that, there is NO REASON to connect the system to the internet for ANY time as opposed to 'not long'. If your going the route of an isolated machine for generating keys, I would recommend a livecd version of a linux distro, with a python or shell based tool for address/key generation included on it. No exposure to the internet for the system.... |
╓╢╬╣╣╖
┌║██████║∩
]█████████
╜██████╝`
╙╜╜╜`
╓╥@@@@@@╥╓
╓╖@@╖, ,@║██████████╢@, ,╓@@╖╓
╓╢██████╢. ╓╢███████████████╖ ║╢█████║╓
║█████████ ,,╓╓,, ┌║█████████████████┐ ,,╓╓,, ]█████████
└╢██████║` ╓╢║██████╢║∩``╙╙╙╙╙╙╙╙╙╙╙╙╙╙╙╙╙`»╢╢██████╢║╖ ║███████╜
"╜╜╜╜` ╖╢█████████╣╜ └╢██████████@ `╜╜╜╜╜
║██████████╜ ╙╢██████████
┌█████████╜ ╙╢█████████
└███████╨` ╜████████
║████╨╜ `╢█████
╙╢╣╜ └╢█╜
,, ,,
╓@║██┐ ┌██║@╓
╢██████ ]█████H
╢███████∩ ┌████████
╓@@@@╓ █████████ ║████████` ╓@@@@╖
╓╢██████║. █████████∩ ┌█████████ ,║███████╖
██████████ └█████████ ██████████ ]█████████
`║██████╜` └╢████████ ┌███████╣╜ ╙██████╨`
`╙╜╜╙` `╙╨╢████ █████╝╜` `╙╜╜`
]@╓ ╓╖H
███╢║@╓, ,╓@╢╢███`
████████╢@╖╓. ╓╖@║████████`
]███████████╢║@╓, ,╓@╢╢████████████
╙╢█████████████╨` ╜██████████████╜
╙╝╢███████║╜` `╜║████████╝╜`
,╓@@@╓ `²╙`` `╙²` ╓@@@╖,
║╢█████╢H ╓╢██████H
█████████ █████████`
╙╢██████╜ ╙╢██████╜
└╨╩╝┘ └╨╩╝╜ | WINFLOW | . |
██
██
██
██
██
██
██
██
██
██
██
██
██
| . | | . |
██
██
██
██
██
██
██
██
██
██
██
██
██
| . | |
|
|
|
amaclin
Legendary
Offline
Activity: 1260
Merit: 1019
|
|
December 07, 2014, 12:43:26 PM |
|
Since this thread was bumped, I think I should update it.
There seems to be a new buggy program that reuses the same R value for all signatures in a transaction. It started around September 2014.
[...]
Does anyone know what the buggy program is? I know. |
|
|
|
|
|
yakuza699
|
|
December 07, 2014, 12:54:20 PM |
|
Since this thread was bumped, I think I should update it.
There seems to be a new buggy program that reuses the same R value for all signatures in a transaction. It started around September 2014.
[...]
Does anyone know what the buggy program is? I know. Would you mind charing it? |
|
|
|
amaclin
Legendary
Offline
Activity: 1260
Merit: 1019
|
|
December 07, 2014, 02:51:43 PM |
|
Would you mind charing it? Do you mean "share info"? I do now want to do it right now. Everything is visible enough in the blockchain. Just open your eyes and use your brain. |
|
|
|
|
|
arnuschky
|
|
December 07, 2014, 03:07:03 PM |
|
You must be joking right? Considering his machine, the virus was probably written 15 years ago or longer.
You implying that it's impossible for it to have gotten a new virus in the last month? A Pentium II machine, which is not connected online for long is supposed to be safe from new viruses. Is not it ? Why take the risk if you can just start a bootable live cd of some linux distro? |
|
|
|
|
|
arnuschky
|
|
December 07, 2014, 03:08:42 PM |
|
Would you mind charing it? Do you mean "share info"? I do now want to do it right now. Everything is visible enough in the blockchain. Just open your eyes and use your brain. Well, either you keep that information because you have informed the developers of the buggy program that they have to fix it (which would be laudable) or you have other, possible sinister reasons to keep the program's name for yourself. Which one is it? |
|
|
|
|
cr1776
Legendary
Offline
Activity: 4214
Merit: 1312
|
|
December 07, 2014, 03:10:05 PM |
|
Would you mind charing it? Do you mean "share info"? I do now want to do it right now. Everything is visible enough in the blockchain. Just open your eyes and use your brain. Well, either you keep that information because you have informed the developers of the buggy program that they have to fix it (which would be laudable) or you have other, possible sinister reasons to keep the program's name for yourself. Which one is it? He sweeps those addresses for the coins. |
|
|
|
|
amaclin
Legendary
Offline
Activity: 1260
Merit: 1019
|
|
December 07, 2014, 03:19:40 PM |
|
you have informed the developers of the buggy program that they have to fix it I haven't said that I have developers contacts. How can I inform them? He sweeps those addresses for the coins. Are you ready to prove it? |
|
|
|
|
cr1776
Legendary
Offline
Activity: 4214
Merit: 1312
|
|
December 07, 2014, 04:54:37 PM |
|
you have informed the developers of the buggy program that they have to fix it I haven't said that I have developers contacts. How can I inform them? He sweeps those addresses for the coins. Are you ready to prove it? I was just reporting what you said here: What wallet? It is old given the bug you encountered.
Fix the issue and amaclin may return it. He is usually helpful - many people will just sweep it and do not help people who have an issue.
Do not import compromised private keys to your walletDo not give your private keys to anybodyDo not use untrusted servicesHow else can I help you? I think this advises cost more than 0.02 PS. No. I do not return btc. I can give you knowledge and experience - they cost more.See: https://bitcointalk.org/index.php?topic=879419.20And other threads where you say you scan for the addresses (like many other people do). |
|
|
|
|
amaclin
Legendary
Offline
Activity: 1260
Merit: 1019
|
|
December 07, 2014, 05:18:18 PM |
|
These are only words. This is not a proof.
Let me say here that I am a president of United States.
Do you trust me and my words now?
|
|
|
|
|
|
johoe (OP)
|
|
December 08, 2014, 11:18:08 AM |
|
Hello, there were a large bunch of new broken addresses today (several 100s in one day). I took the liberty of saving some funds before they got swiped by others. If you can convince me that they belong to you (signing a message with the address is obviously not enough; the private key is already known), I will send the funds back. Look into the file http://johoe.mooo.com/bitcoin/broken.txt, to see whether your address was broken. |
Donations to 1CF62UFWXiKqFUmgQMUby9DpEW5LXjypU3
|
|
|
amaclin
Legendary
Offline
Activity: 1260
Merit: 1019
|
|
December 08, 2014, 12:30:23 PM |
|
I took the liberty of saving some funds before they got swiped by others. Is it your address 1HuqM18GMVaLxTRGdmSgytzVYnhRzu7U68 ? And is it your service: http://sharedcoin.com/ ?  |
|
|
|
|
|
johoe (OP)
|
|
December 08, 2014, 01:07:14 PM |
|
I took the liberty of saving some funds before they got swiped by others. Is it your address 1HuqM18GMVaLxTRGdmSgytzVYnhRzu7U68 ? yes no. Just plain old bitcoind using rawtransaction interface I think this is not related to the other bug that started in September. There are a lot of reused R-values sometimes not even in the same transaction. The scale is also much bigger (500 addresses in one day, >200 BTC). I still count almost 300 unspent outputs (but I'm too lazy to swipe them all). |
Donations to 1CF62UFWXiKqFUmgQMUby9DpEW5LXjypU3
|
|
|
|
|
btcdrak
Legendary
Offline
Activity: 1064
Merit: 1000
|
|
December 08, 2014, 04:57:19 PM |
|
|
|
|
|
|
|
|
zymfk
Newbie
Offline
Activity: 1
Merit: 0
|
|
December 08, 2014, 06:57:00 PM |
|
Dude you took from my address, I was saving up for my family for christmas and you went and stolen it this morning..
Please have the heart to give it back, PMing you now
|
|
|
|
|
|
