Bitcoin Forum
December 15, 2024, 09:14:28 AM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1] 2 »  All
  Print  
Author Topic: [BOUNTY] 0.03 BTC for testing  (Read 1591 times)
btc_enigma (OP)
Hero Member
*****
Offline Offline

Activity: 692
Merit: 569


View Profile
December 29, 2014, 12:04:14 PM
 #1

0.03 BTC for first one who reports 3 major bugs in staging website http://www.blockonomics.co:1947

Definition of major bugs :
can corrupt data, or crash a system, security loophole / majorly impends functionality of the service


Notes
  • Don't test Login with gmail functionality . It redirects to the production site, Register with email and login
  • User should recieve an email on debit / credit of bitcoins in his address , if he is subscribed to email notification
  • If address is tagged, notifications / activity logs should contain the tag instead of the address
  • Staging website is http, don't worry about this. Production is running on https
  • More details can be found here https://bitcointalk.org/index.php?topic=880995.msg9861010#msg9861010

If you report any minor bugs too , that catch my attention; I would consider a bonus 0.01 BTC

Joca97
Legendary
*
Offline Offline

Activity: 3850
Merit: 1031


Top-tier crypto casino and sportsbook


View Profile
December 29, 2014, 12:06:47 PM
 #2

0.03 BTC for first one who reports 3 major bugs in staging website http://blockonomics:1947

Definition of major bugs :
can corrupt data, or crash a system, security loophole / majorly impends functionality of the service


Notes
  • Don't test Login with gmail functionality . It redirects to the production site, Register with email and login
  • User should recieve an email on debit / credit of bitcoins in his address , if he is subscribed to email notification
  • If address is tagged, notifications / activity logs should contain the tag instead of the address
  • More details can be found here https://bitcointalk.org/index.php?topic=880995.msg9861010#msg9861010

If you report any minor bugs too , that catch my attention; I would consider a bonus 0.01 BTC

the site dosent work!

btc_enigma (OP)
Hero Member
*****
Offline Offline

Activity: 692
Merit: 569


View Profile
December 29, 2014, 12:07:58 PM
 #3

0.03 BTC for first one who reports 3 major bugs in staging website http://blockonomics:1947

Definition of major bugs :
can corrupt data, or crash a system, security loophole / majorly impends functionality of the service


Notes
  • Don't test Login with gmail functionality . It redirects to the production site, Register with email and login
  • User should recieve an email on debit / credit of bitcoins in his address , if he is subscribed to email notification
  • If address is tagged, notifications / activity logs should contain the tag instead of the address
  • More details can be found here https://bitcointalk.org/index.php?topic=880995.msg9861010#msg9861010

If you report any minor bugs too , that catch my attention; I would consider a bonus 0.01 BTC

the site dosent work!

Sorry for typo, fixed now

Small
Sr. Member
****
Offline Offline

Activity: 266
Merit: 250


Grow SMALL amount of BTC by earning it


View Profile
December 29, 2014, 12:15:57 PM
 #4

This could potentially overload the server --
You can click register over and over and over again and it sends an activation email every time.
Though it's not that major that you can register again even though you're registered.



  ╓▄▄    ,,,╓╓,,                     ,   ▄██▌`        ,╓▄▄▄▄▄▄╓  ╓▄▄               ,▄████@             ╙▀██▀░██W▐██
  ▀█████████▀██████@░                ▀█████▀       ╓▄█████▀▀▀██████▀               `▀███▀                ▓▌ `█▀██▒█
   ▒███████░  ╙██████          ▄╖     ████▌  ╓▄▄ ▄██████▌     ╙███▌       ╓▄,       ╓╖      ,,,   ,╓     ▐▀  █`▀▌░█
    ▐██████`   ▐█████`     ,╓▄███▓α ▄██████████Ñ▄██████▌       ▓██▌     ,▄████▄▄,   ███╖    █████▄████▄▄╖
    ]██████╢╖  ▓████▀   ▓████▀████▌ ▀█████████▌ ███████▌       ▐██▌ ╥█████▀▀█████▌╫██████[▐███████▀█████▌
    ]█████▌▐██████▀▒    ▐████▌ ▀███▌ ]█████ ```]███████▌       └▀▀╩ ▒▐███▌  ]████  ▐█████`╙╜█████   ████▌
    ]██████╜╙▀██████▄c  ]████▓▒▄███▀╩]█████    ████████▌        ,,  `▐███▌   ████  ]█████   ▐████▌  ████▌
    ▐██████   `▀██████▄▒]███████▀`   ]█████    ▐███████▌       ▐██   ▐████   ████L  █████   ▐████▌  ████▌
    ▐██████     ███████ ╫█████▒  ▄▄p ]█████     ███████▌       ███   ▐████   ▓███U  █████U  ▐████▌  ████▌
     ▓██████p    ██████▌░▓██████▄▄██Ü ▐█████▄▄╖  ▐███████      ▐███   ▐█████▄.████µ ▐█████▄, █████▄ ,█████▄
  ╓▄████████, ,███████ `▀████████▀   ▀███████▌   ╙██████▄    ▄████▒  ╙███████▀▀▀▀▓▓██████╜ ╚██████ ▀█████▀
▐█████████████████▀▀      ▐▀████▌      ╙▀████     `▀███████████████    ╙▀███▌     `╙▀▀██▌   └▀██▌    ▀██
└▀▀                        `   ╙                       '`╙╙╙`   ▐███▄▄
                                                                ╙████▀
  Highest BTC Payouts in the World!
Truly a one-stop casino for any player| 301% Deposit Bonus
Slots
          ██▄,   ▄███████████▄
         █████▌ ███████▀███████
           ▀██▌ ███▀  ,╓,  ▀███
       ██   ██▌ ███   ███   ███
          ▄███▌ ████▄     ▄████
      ▄▄▄  ▀██▌ ███▀  ▄▄▄  ▀███
     ▀███   ██▌ ██▌  ▐███▌  ▐██
   ╓       ▄██▌ ███▄       ▄███
  ▄███████████▀ ███████████████
  ▀▀▀▀▀▀▀▀▀▀▀    ▀▀▀▀▀▀▀▀▀▀▀▀
Casino              ▄▄▄█▀▀█.     
           ███▄▄▄    █     
                 █   ▐▌   
                 █    █   
         ╓,      █     █   
        ▐█,▄,    ██▄   ▐▌ 
        █████▌   ███▌   █µ
       ██████▀   ███▀    █
       ████▀     █     ▓Æ▐▌
         ▀     , █      ▀ █
               ▀ █  ,▄▄Æ▀▀▀
               ▀ █▀▀`     
    ▀▀▀▀▀▀▀▀▀▀▀▀▀
Sports        "▀▀▀▄▄,     
       ,     ▐██▄   
      ╒██▀▀▀▀▀████▄ 
      ██       ▀███▌
     ▐█▄        █▀▀█µ
       ▐█      ▄▀  ]▌
         ███████   j▌
        ▐███████   █
   ,,╓▄▄█████████▄▄▀
 ,▀     ╙▀████▀ ,█▀ 
 █,       ╔█  ▄▀▀   
 ▀▀█▄▄▄▄▄██▀▀▀
Poker         ██▄▄,       
        ▐██████▄,   
        ▀████████▌   
       ▌    ▀█████▀ 
      ██▄▄▄   ███   
        ███▌   ██▌   
    ╒██████▄   ▐█████
    µ    ███▌  ▓█████
   ████████▀  ╓█████▌
  ▐█▌▐█▌    ,▄██████
 ╒▄▄,   ,▄▄███▀▀██▀ 
 ██████████▌         
▄███████████         
  '▀▀▀▀▀▀╙
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
hexafraction
Sr. Member
****
Offline Offline

Activity: 392
Merit: 268

Tips welcomed: 1CF4GhXX1RhCaGzWztgE1YZZUcSpoqTbsJ


View Profile
December 29, 2014, 02:35:19 PM
 #5

Is there no way to change a password?

I have recently become active again after a long period of inactivity. Cryptographic proof that my account has not been compromised is available.
viriat0
Hero Member
*****
Offline Offline

Activity: 1008
Merit: 501


View Profile
December 29, 2014, 02:39:28 PM
 #6

0.03 BTC for first one who reports 3 major bugs in staging website http://www.blockonomics.co:1947

Definition of major bugs :
can corrupt data, or crash a system, security loophole / majorly impends functionality of the service


Notes
  • Don't test Login with gmail functionality . It redirects to the production site, Register with email and login
  • User should recieve an email on debit / credit of bitcoins in his address , if he is subscribed to email notification
  • If address is tagged, notifications / activity logs should contain the tag instead of the address
  • Staging website is http, don't worry about this. Production is running on https
  • More details can be found here https://bitcointalk.org/index.php?topic=880995.msg9861010#msg9861010

If you report any minor bugs too , that catch my attention; I would consider a bonus 0.01 BTC

Good service!

It will be very useful!
rozee
Legendary
*
Offline Offline

Activity: 1736
Merit: 1001


View Profile
December 29, 2014, 03:24:57 PM
Last edit: December 29, 2014, 03:35:34 PM by rozee
 #7

its doesnt work on mobile version right?
in my android its not smooth Smiley
kenw2
Sr. Member
****
Offline Offline

Activity: 344
Merit: 250


Feed me btc ^


View Profile
December 29, 2014, 03:57:12 PM
 #8

its doesnt work on mobile version right?
in my android its not smooth Smiley

Not working on my android either.  Undecided
btc_enigma (OP)
Hero Member
*****
Offline Offline

Activity: 692
Merit: 569


View Profile
December 29, 2014, 04:47:54 PM
 #9

its doesnt work on mobile version right?
in my android its not smooth Smiley

Not working on my android either.  Undecided

Yes mobile version isn't completely supported yet

Nerazzura
Sr. Member
****
Offline Offline

Activity: 378
Merit: 250


View Profile
December 29, 2014, 04:48:16 PM
 #10

It work for my phone (android versi 4.2)
Hope u make for android aplication too
BitcoinAddicts
Hero Member
*****
Offline Offline

Activity: 502
Merit: 500


View Profile
December 29, 2014, 04:55:31 PM
 #11

just a suggestion
you should work on your site design
i love your idea behind this
it is a good feature to monitor our wallet transaction with email

     ▄█
   ▄██▌
 ▄████
▀▀▀█████▀
  ▐███▀
  ██▀
  ▀
.
▄▄▄███████▄▄▄
▄▄█████████████████▄▄
▄███████████████████████▄
███████████████████████████
██████████
███████████████████
██████████
█████████████████████
█████████████████████████████
█████████████████████████████
██
███████████████████████████
██
█████████████████████████
███████████████████████
▀▀█████████████████▀▀

▀▀▀███████▀▀▀
▄▄▄███████▄▄▄
▄▄█▀▀███████████▀▀█▄▄
▄████▄▄███████████▄▄████▄
█████
███▀▀▄▄▄▄▄▄▄▀▀████████
█████
██▀▄██████▀████▄▀███████
███████▀▄█████▀ ▐█████▄▀███████
██  ███ ████▀   ▀▀█████ ███  ██
██████▄▀█████  ▄█████▀▄██████
██████▄▀███▌▄██████▀▄██████
██
██████▄▄▀▀▀▀▀▀▀▄▄████████
▀█
███▀▀███████████▀▀████▀
▀▀█▄▄███████████▄▄█▀▀
▀▀▀███████▀▀▀
▄▀▀▀▀▀▀▀▀▀▀█████████
▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
█████████████████████

██████████▄▀▀▀▀▀▀▀▀▀

▄▄▄████████████████████▄▄▄
████████████████████████████
██████████████████████████████
███████████████████████████████
███████████████████████████████
███████████████████████████
▀██
█████████▀   ▀███████████▀
▀▀█████▀▀       ▀▀█████▀▀
.
..SPORTS  │  CASINO  │  ESPORTS..
.
btc_enigma (OP)
Hero Member
*****
Offline Offline

Activity: 692
Merit: 569


View Profile
December 29, 2014, 04:56:25 PM
 #12

Is there no way to change a password?

Yes, right way there is no way to change password. Only way is to mail administrator to deactivate account, they you can reregister with new password

btc_enigma (OP)
Hero Member
*****
Offline Offline

Activity: 692
Merit: 569


View Profile
December 29, 2014, 05:02:29 PM
 #13

just a suggestion
you should work on your site design
i love your idea behind this
it is a good feature to monitor our wallet transaction with email


Good service!

It will be very useful!

Thanks a lot for your support . You can post suggestions  / monitor updates to our service on our project development thread https://bitcointalk.org/index.php?topic=880995.msg9861010

Cheers !

franckuestein
Legendary
*
Offline Offline

Activity: 1960
Merit: 1130


Truth will out!


View Profile WWW
December 29, 2014, 08:04:25 PM
Last edit: December 29, 2014, 08:14:45 PM by franckuestein
 #14

Hi @btc_enigma! I was analyzing your site to check everything and know if there are problems and that are my suggestions  Wink

Site have a Javascript problem know as:
TypeError:
undefined is not a function (evaluating '$("input[type='tel']").intlTelInput({ defaultCountry: "auto" })')


You can solve it easily:
  • Make sure you have all the scripts pointing to the correct location in your workspace.
  • Add, jQuery and reference to the scripts after the control.
Remark that you're using jQuery v2.1.1 on your site, just as a reminder  Wink

Check it out everything and seems to be ok, site looks really good!

[ AVAILABLE SIGNATURE SPACE ]
akula999
Hero Member
*****
Offline Offline

Activity: 509
Merit: 500


View Profile
December 30, 2014, 02:13:14 AM
 #15

slight spelling error - when clicking on login with an incorrect username/password - invalid emailid (no spaces) shows up. Email ID...

Not sizing properly on android and on linux\ubuntu - tolerable Smiley

Script pointing needs a little cleaning

Once you're logged in, there is no way to log out.

Other than that, not bad...

Bitcoin: 1FzZehkiwfeeUmfmBrym8VvXX7gUj3miHe
XMR: 4AqrzGPfEKeZrVXyPDNXUrNeKZZGNYiXMDoY49PvdffKNTRg6xp2Qz74SZ72gT5F9HH8Vaic99ndRg6 UBGcVijaNStQjwwf
josef2000
Sr. Member
****
Offline Offline

Activity: 280
Merit: 250


Bro, you need to try http://dadice.com


View Profile WWW
December 30, 2014, 09:04:45 PM
 #16

When I do some small configs. THIS HAPPENS... Not going to say how until bounty given. So every hacker can steal the password easily





Password register problem. Not going to say how until bounty given



You can register an already registered google plus account email(e.g test@gmail.com). when you login, you can access all the data on the google plus account.

e.g some one logged in with test@gmail.com GOOGLE PLUS. But I can still register ac account with test@gmail.com, which has all the information the google plus account has saved.

Mainly uses public scripts:



Small errors:
Cant go back from register page to homepage without forcing back button.
Always shows balances approx 30 min behind the blockchain in adress watcher (not immidiate update of balance)



███████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████
█   ⚂⚄⚀⚃⚅⚁    ██  d a d i c e  ██    Next Generation Dice Game
• Low 1% house edge. • Provably Fair.  
███████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████
btc_enigma (OP)
Hero Member
*****
Offline Offline

Activity: 692
Merit: 569


View Profile
December 30, 2014, 10:07:09 PM
 #17

Quote
When I do some small configs. THIS HAPPENS... Not going to say how until bounty given. So every hacker can steal the password easily
In your html , you have changed the type of input box from password to text. This is not a bug. You are trying to undermine your own security

Quote
You can register an already registered google plus account email(e.g test@gmail.com). when you login, you can access all the data on the google plus account.
Can you show me proof of this. You cannot login until you click the email link containing the activation code

I have already paid for similar bounties https://bitcointalk.org/index.php?topic=889020.msg9835960#msg9835960 and lot of people are monitoring this thread. If you want to give excuses for not revealing the bug and claiming bounty, this is not going to happen.

Quote
Small errors:
Cant go back from register page to homepage without forcing back button.
Always shows balances approx 30 min behind the blockchain in adress watcher (not immidiate update of balance)
This is correct, it waits for 2 confirmations. You can see synced till block on dashboard

josef2000
Sr. Member
****
Offline Offline

Activity: 280
Merit: 250


Bro, you need to try http://dadice.com


View Profile WWW
December 30, 2014, 11:18:03 PM
 #18

Quote
When I do some small configs. THIS HAPPENS... Not going to say how until bounty given. So every hacker can steal the password easily
In your html , you have changed the type of input box from password to text. This is not a bug. You are trying to undermine your own security

Quote
You can register an already registered google plus account email(e.g test@gmail.com). when you login, you can access all the data on the google plus account.
Can you show me proof of this. You cannot login until you click the email link containing the activation code

I have already paid for similar bounties https://bitcointalk.org/index.php?topic=889020.msg9835960#msg9835960 and lot of people are monitoring this thread. If you want to give excuses for not revealing the bug and claiming bounty, this is not going to happen.

Quote
Small errors:
Cant go back from register page to homepage without forcing back button.
Always shows balances approx 30 min behind the blockchain in adress watcher (not immidiate update of balance)
This is correct, it waits for 2 confirmations. You can see synced till block on dashboard

Thats how hackers could easily get your password.

I cant prove this. you need to try this. just register any gmail account and try. The thing is, that someone, who knows the googleplus email of the victim, can register with the same email of the googleplus account. and the database and information is same

███████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████
█   ⚂⚄⚀⚃⚅⚁    ██  d a d i c e  ██    Next Generation Dice Game
• Low 1% house edge. • Provably Fair.  
███████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████
vm_mpn
Hero Member
*****
Offline Offline

Activity: 605
Merit: 500


View Profile
December 31, 2014, 01:34:58 AM
 #19

Oh! What a wonderful idea for a service / website. May be you can add some multisig capability where your registered users can login and confirm their wallet transactions in case they are getting hacked. Just thinking out loud. Bravo!
franckuestein
Legendary
*
Offline Offline

Activity: 1960
Merit: 1130


Truth will out!


View Profile WWW
December 31, 2014, 02:14:47 AM
 #20

@btc_enigma, did you solved the scripts pointing to the correct location as well as the scripts references?
Me and a user after my comment reported that problem and I just want to know if everything is ok now and your site is fully optimized Wink

Thanks!

[ AVAILABLE SIGNATURE SPACE ]
Pages: [1] 2 »  All
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!