jl777
Legendary
Offline
Activity: 1176
Merit: 1134
|
|
September 03, 2014, 12:26:41 AM |
|
Why not just run a preorder now for the first batch of cards, with a 3 or four day deadline.
volume discounts, cost per card, delivery time > 3 days, etc 50 cards, 100 cards, 250 cards, 1000 cards? just a rough ballpark
|
|
|
|
jl777
Legendary
Offline
Activity: 1176
Merit: 1134
|
|
September 03, 2014, 12:30:09 AM |
|
Put me down for an Anon Card.
Ooh, ooh, me too, me too!! James, at least 100 pages ago, when we were still collecting funds for the anon card, you mentioned the possibility of picking the anon cards up at trade shows. Individuals who did not want to supply a shipping address would then have the opportunity to get their hands on a card. What are the odds that this will be a viable option, how serious were you about this idea? It seems, with all that's going on, this wouldn't be possible for quite some time. Just asking for those who might have reservations..... it is SuperNET card, so the next time any coin in the SuperNET core (BTCD + NXT currently) is having a presence (or anybody) at a tradeshow, we can get the people to say how many cards, then ship that many, plus some few extra to the person going to the trade show. Then some sort of secret handshake to show you are already paying for the card and you grab a random one from the box of SuperNET cards I dont see why this cant be done. All we need is some sort of list of txid for paying of the card issuing fee and the person at the trade show crosses off the list your txid when you grab the random card
|
|
|
|
jl777
Legendary
Offline
Activity: 1176
Merit: 1134
|
|
September 03, 2014, 12:35:36 AM |
|
Maybe someone can answer what step we are at now regarding BTCD? Are we still waiting for someone to review JL's code or waiting for something else? I checked the ANN thread and through all of the conversation on here and questions, it's hard to figure out where we are right now and what the next steps are.
Thanks!
I am busy with some new project until Thursday, after that I will be able to 100% be on Teleport debug and I am getting initial releases so I should be able to start tomorrow. please understand there is a lot of work behind the scenes to put together a 10,000+ BTC offering I think this is worth whatever delay to Teleport it causes, but since I am still waiting on release, the time lost will be less than a couple days still no volunteers or even anybody that is willing to be hired to look at my some few lines of C code. James
|
|
|
|
koralon
|
|
September 03, 2014, 12:48:57 AM |
|
Maybe someone can answer what step we are at now regarding BTCD? Are we still waiting for someone to review JL's code or waiting for something else? I checked the ANN thread and through all of the conversation on here and questions, it's hard to figure out where we are right now and what the next steps are.
Thanks!
I am busy with some new project until Thursday, after that I will be able to 100% be on Teleport debug and I am getting initial releases so I should be able to start tomorrow. please understand there is a lot of work behind the scenes to put together a 10,000+ BTC offering I think this is worth whatever delay to Teleport it causes, but since I am still waiting on release, the time lost will be less than a couple days still no volunteers or even anybody that is willing to be hired to look at my some few lines of C code. James Dan Metcalf?
|
|
|
|
jl777
Legendary
Offline
Activity: 1176
Merit: 1134
|
|
September 03, 2014, 12:59:23 AM |
|
mostly right, seems a bit confused that node specific script written for that node is not adding any security issues that are not already there. now when we have linked-tradebots that are downloaded to multiple machines, this does become some factor. but that is for later anyway also the anon-card of $500/day is a bit above what he says is possible I have been working at my pace of 7+ years I like kitchen sinks James P.S. oh yes, wait for the pullback, BTCD is already pretty high. How many peoples are listening to him? seems he is not heard of SuperNET yet, but since it is recorded cant fault him for that. The majority of the show was about BTCD, is that normal?
|
|
|
|
jl777
Legendary
Offline
Activity: 1176
Merit: 1134
|
|
September 03, 2014, 01:05:30 AM |
|
Maybe someone can answer what step we are at now regarding BTCD? Are we still waiting for someone to review JL's code or waiting for something else? I checked the ANN thread and through all of the conversation on here and questions, it's hard to figure out where we are right now and what the next steps are.
Thanks!
I am busy with some new project until Thursday, after that I will be able to 100% be on Teleport debug and I am getting initial releases so I should be able to start tomorrow. please understand there is a lot of work behind the scenes to put together a 10,000+ BTC offering I think this is worth whatever delay to Teleport it causes, but since I am still waiting on release, the time lost will be less than a couple days still no volunteers or even anybody that is willing to be hired to look at my some few lines of C code. James Dan Metcalf? does he have any time for this? is he willing? does anybody know him personally?
|
|
|
|
clovis A.
Legendary
Offline
Activity: 1206
Merit: 1000
|
|
September 03, 2014, 01:38:32 AM |
|
mostly right, seems a bit confused that node specific script written for that node is not adding any security issues that are not already there. now when we have linked-tradebots that are downloaded to multiple machines, this does become some factor. but that is for later anyway also the anon-card of $500/day is a bit above what he says is possible I have been working at my pace of 7+ years I like kitchen sinks James P.S. oh yes, wait for the pullback, BTCD is already pretty high. How many peoples are listening to him? seems he is not heard of SuperNET yet, but since it is recorded cant fault him for that. The majority of the show was about BTCD, is that normal? Absolutely not, pretty sure Kristov has made mention of btcd only twice before this. Both were very short mentions, but he does do some homework before commenting, so i assume he just recently heard of BTCD and needed to catch up.
|
. |
| .
| . |
| s i a
| . |
| .
| . |
| .
| . |
| .
| . |
| .
| . |
| .
Cloud storage is about to change Are you ready?
|
|
|
|
koralon
|
|
September 03, 2014, 01:46:33 AM |
|
Maybe someone can answer what step we are at now regarding BTCD? Are we still waiting for someone to review JL's code or waiting for something else? I checked the ANN thread and through all of the conversation on here and questions, it's hard to figure out where we are right now and what the next steps are.
Thanks!
I am busy with some new project until Thursday, after that I will be able to 100% be on Teleport debug and I am getting initial releases so I should be able to start tomorrow. please understand there is a lot of work behind the scenes to put together a 10,000+ BTC offering I think this is worth whatever delay to Teleport it causes, but since I am still waiting on release, the time lost will be less than a couple days still no volunteers or even anybody that is willing to be hired to look at my some few lines of C code. James Dan Metcalf? does he have any time for this? is he willing? does anybody know him personally? Well he did audit Keycoin code and he is pro-crypto in general so I don't see why he wouldn't do a favour for BTCD. That is assuming he does have time outside developing his own coin.
|
|
|
|
threecats
|
|
September 03, 2014, 03:04:10 AM |
|
Actually Kristov tends to spend time on coins he is intrigued with. If you are looking for an auditor he might be available, he said he is wrapping up his DRK audit this week.
|
|
|
|
Tuck Fheman
|
|
September 03, 2014, 03:04:38 AM |
|
“ C is probably the worst language in the world in terms of making it easy for vulnerabilities to be encoded into the programs that you write.” - Kristov Atlas Source : http://youtu.be/upcVcW2d790?t=16m43sHas this been addressed? If so, where? Edit : I see above it has been posted already.
|
|
|
|
jl777
Legendary
Offline
Activity: 1176
Merit: 1134
|
|
September 03, 2014, 03:18:43 AM |
|
“ C is probably the worst language in the world in terms of making it easy for vulnerabilities to be encoded into the programs that you write.” - Kristov Atlas Source : http://youtu.be/upcVcW2d790?t=16m43sHas this been addressed? If so, where? Edit : I see above it has been posted already. remember all Turing complete languages map to each other. What this means is that there is nothing inherent in the language about vulnerabilities, it is dependent on the specific coder. stuff like all the gnu code, unix, apache, a lot of code is written in C, so it is natural for a lot of bugs to be in C code. Changing the language doesnt usually change the vulnerability. Maybe there are many C coders who shouldnt be? Now, the C code for Tradebots is interpreted code running on the node that your are writing the Tradebot for. So if you want to blow up your computer, you dont need an C to help you, you can just use a hammer. At some point there will be Tradebot vendors sharing profits with people that are using their Tradebots. The open source requirement and user feedbacks should allow for a good way to know if a Tradebot is stable. So, until a Tradebot is certified by some third party Tradebot certification agency, then maybe it is user needs to use their judgement James P.S. I think it is safe to say that assembler is the worst language in the world to use for the vulnerabilities
|
|
|
|
cloudboy
|
|
September 03, 2014, 03:33:02 AM |
|
“ C is probably the worst language in the world in terms of making it easy for vulnerabilities to be encoded into the programs that you write.” - Kristov Atlas Source : http://youtu.be/upcVcW2d790?t=16m43sHas this been addressed? If so, where? Edit : I see above it has been posted already. remember all Turing complete languages map to each other. What this means is that there is nothing inherent in the language about vulnerabilities, it is dependent on the specific coder. stuff like all the gnu code, unix, apache, a lot of code is written in C, so it is natural for a lot of bugs to be in C code. Changing the language doesnt usually change the vulnerability. Maybe there are many C coders who shouldnt be? Now, the C code for Tradebots is interpreted code running on the node that your are writing the Tradebot for. So if you want to blow up your computer, you dont need an C to help you, you can just use a hammer. At some point there will be Tradebot vendors sharing profits with people that are using their Tradebots. The open source requirement and user feedbacks should allow for a good way to know if a Tradebot is stable. So, until a Tradebot is certified by some third party Tradebot certification agency, then maybe it is user needs to use their judgement James P.S. I think it is safe to say that assembler is the worst language in the world to use for the vulnerabilities I agree, what is it about C that makes people think everything is automatically going to break? I think people are just scared of C for some reason. You can easily break stuff in any language.
|
|
|
|
jl777
Legendary
Offline
Activity: 1176
Merit: 1134
|
|
September 03, 2014, 03:50:01 AM |
|
“ C is probably the worst language in the world in terms of making it easy for vulnerabilities to be encoded into the programs that you write.” - Kristov Atlas Source : http://youtu.be/upcVcW2d790?t=16m43sHas this been addressed? If so, where? Edit : I see above it has been posted already. remember all Turing complete languages map to each other. What this means is that there is nothing inherent in the language about vulnerabilities, it is dependent on the specific coder. stuff like all the gnu code, unix, apache, a lot of code is written in C, so it is natural for a lot of bugs to be in C code. Changing the language doesnt usually change the vulnerability. Maybe there are many C coders who shouldnt be? Now, the C code for Tradebots is interpreted code running on the node that your are writing the Tradebot for. So if you want to blow up your computer, you dont need an C to help you, you can just use a hammer. At some point there will be Tradebot vendors sharing profits with people that are using their Tradebots. The open source requirement and user feedbacks should allow for a good way to know if a Tradebot is stable. So, until a Tradebot is certified by some third party Tradebot certification agency, then maybe it is user needs to use their judgement James P.S. I think it is safe to say that assembler is the worst language in the world to use for the vulnerabilities I agree, what is it about C that makes people think everything is automatically going to break? I think people are just scared of C for some reason. You can easily break stuff in any language. I guess most people cant look at C code and simulate the flow of data and progress of the algorithms. Seems this is a lost art. Once you can feel the data flowing through the algorithm, then you just fix it until it stops feeling wrong. James
|
|
|
|
Tuck Fheman
|
|
September 03, 2014, 04:00:00 AM |
|
I guess most people cant look at C code and simulate the flow of data and progress of the algorithms. Seems this is a lost art.
If " most people can't look at C code and simulate the flow of data and progress of the algorithms" and " it's a lost art" and this is known beforehand, then why choose C? Perhaps this is what was behind Kristov's logic?
|
|
|
|
cloudboy
|
|
September 03, 2014, 04:10:00 AM |
|
I guess most people cant look at C code and simulate the flow of data and progress of the algorithms. Seems this is a lost art.
If " most people can't look at C code and simulate the flow of data and progress of the algorithms" and " it's a lost art" and this is known beforehand, then why choose C? Perhaps this is what was behind Kristov's logic? The 'logic' being that btcd must cater to subpar programmers who only know scripting languages? Not that there is anything wrong with scripting languages, any Turing-complete language will do. But a programmer who knows the fundamentals should be able to pick up virtually any language pretty quickly, especially THE classical language, C.
|
|
|
|
longzai1988
Member
Offline
Activity: 77
Merit: 10
|
|
September 03, 2014, 04:14:32 AM |
|
Initial SuperNET support is done on BTCD qt wallet & BTCD-reskin (NxtInside) Below are my repository for the 2 items :https://bitbucket.org/longzai1988/bitcoindark-qt (latest commit checksum at writing time : e63aade) https://bitbucket.org/longzai1988/btcd-reskin (latest commit checksum at writing time : dc9b238) Some screenshot provided :
|
sweet & happy cryptocurrency , cheers NXT : NXT-HSBE-8PWL-CUCD-BHUD6 BTCD : RTaMoRXsA7uCv869dX1TfCZmHw4ExbMVmQ
|
|
|
cloudboy
|
|
September 03, 2014, 04:31:43 AM |
|
|
|
|
|
jl777
Legendary
Offline
Activity: 1176
Merit: 1134
|
|
September 03, 2014, 04:51:53 AM |
|
I guess most people cant look at C code and simulate the flow of data and progress of the algorithms. Seems this is a lost art.
If " most people can't look at C code and simulate the flow of data and progress of the algorithms" and " it's a lost art" and this is known beforehand, then why choose C? Perhaps this is what was behind Kristov's logic? I am a simple C programmer I am superfluent in C This allows me to be order of magnitude more productive I still have this art
|
|
|
|
jl777
Legendary
Offline
Activity: 1176
Merit: 1134
|
|
September 03, 2014, 04:52:47 AM |
|
we need graphics guys to reskin this ASAP!
|
|
|
|
Tuck Fheman
|
|
September 03, 2014, 04:56:13 AM |
|
The 'logic' being that btcd must cater to subpar programmers who only know scripting languages?
Not that there is anything wrong with scripting languages, any Turing-complete language will do. But a programmer who knows the fundamentals should be able to pick up virtually any language pretty quickly, especially THE classical language, C.
I defer to your supreme knowledge on the matter. However, it is the dev's opinion (as stated above) that " most people" do not know the fundamentals and it's a " lost art". Therefore (to me) the logical question is ... why choose the language " most people" are incompetent with ( allegedly) thereby yielding the most vulnerabilities which would require extensive work by third-parties to oversee and vet the code? Would this not delay progress? Is it not inviting a lot of possible security issues (due to their lack of understanding, laziness or malicious intent) needlessly? I fully understand your reasoning that you and the dev can do it without error (allegedly) so why cater to the majority that can't ... but, is that not instead creating an undue burden on the majority of people that want to contribute and especially troublesome for all of the end users? Sorry for all of the questions, I'm a complete idiot.
|
|
|
|
|