seocrow
Member
 Offline
Activity: 112
Merit: 10
|
 |
April 21, 2013, 11:50:57 PM |
|
An easy fix would be to set a 2nd password for any withdrawal transactions. If a hacker does compromise an account then its unlikely they will crack the 2nd layer password for the withdrawal. The withdrawal password must not allow the same password as the ltcmine.ru login password. I think this would stop the majority of hack attempts.
seocrow
|
|
|
|
|
|
|
|
There are several different types of Bitcoin clients. The most secure are full nodes like Bitcoin Core, which will follow the rules of the network no matter what miners do. Even if every miner decided to create 1000 bitcoins per block, full nodes would stick to the rules and reject those blocks.
|
|
|
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
|
|
|
|
|
|
skyhigh2004
|
|
April 21, 2013, 11:56:39 PM |
|
Sent you a PM Balthazar about my account on the pool.
BTW awesome pool. First pool I have mined at in awhile where I actually earn my projected daily LTC.
|
BTC:157BZV5z5dEdEoE5KSr5D7CQGXamLpsZ7n LTC:LYCf5PnQpXCCmpR4ka3mR8DFDe5hKhTdfc
MEC:MAgTT8QdhVCkgHTkUoKvs4w1TQvv3NU99v DGC:D8Ubh9oYTpSe1HEBptY8wf6ZrPpj7bhkV5
FTC:6hb1VsGzkej4kSsssGA4FMnkCoVp7PLi8D PXC:PqQwQKJoYxGSVrKtVfDa5aaJVL9Yevhb2b
|
|
|
Balthazar (OP)
Legendary
Offline
Activity: 3108
Merit: 1358
|
|
April 22, 2013, 12:00:40 AM |
|
An easy fix would be to set a 2nd password for any withdrawal transactions. If a hacker does compromise an account then its unlikely they will crack the 2nd layer password for the withdrawal. The withdrawal password must not allow the same password as the ltcmine.ru login password. I think this would stop the majority of hack attempts.
seocrow
I agree that this will prevent majority of attacks, but second password could be compromised by keyloggers without any problem. Temporary codes for withdrawal address edit operations are much more secure than "static" password for the withdrawal.  |
|
|
|
|
seocrow
Member
Offline
Activity: 112
Merit: 10
|
|
April 22, 2013, 12:08:20 AM |
|
True, Keyloggers would get around this  . I am paranoid when it comes to security and keyloggers are less common on linux but still exist.. If we wanted to be extra paranoid we could all use RSA Secure ID tokens for login :-) |
|
|
|
|
Balthazar (OP)
Legendary
Offline
Activity: 3108
Merit: 1358
|
|
April 22, 2013, 12:41:12 AM |
|
True, Keyloggers would get around this . I am paranoid when it comes to security and keyloggers are less common on linux but still exist.. If we wanted to be extra paranoid we could all use RSA Secure ID tokens for login :-) But those can be stolen, so better to use a password, an RSA Secure ID token, and biometric ID. Enemies can cut off a finger and use it. |
|
|
|
|
|
btchaver
|
|
April 22, 2013, 04:34:47 AM |
|
can litecoin be mined with a mac computer by anychance i thought i read that it could is this true.
|
|
|
|
|
|
Vbs
|
|
April 22, 2013, 09:26:08 AM |
|
You could only allow wallet address changes when the balance is below a specific threshold (like 0.1 for example, or even zero, since the payouts are only done at the end of rounds).
|
|
|
|
|
Balthazar (OP)
Legendary
Offline
Activity: 3108
Merit: 1358
|
|
April 22, 2013, 09:53:13 AM |
|
It's PPS, there is no rounds. Anyway, temporary codes it's the most logical solution, I think. Because it can be used for protecting other operations in the future, not only address change. |
|
|
|
|
|
Vbs
|
|
April 22, 2013, 11:29:25 AM |
|
It's PPS, there is no rounds. Anyway, temporary codes it's the most logical solution, I think. Because it can be used for protecting other operations in the future, not only address change. Isn't the pool using RBPPS for payouts? |
|
|
|
|
Marrs
Member
Offline
Activity: 112
Merit: 10
|
|
April 22, 2013, 11:46:50 AM |
|
can litecoin be mined with a mac computer by anychance i thought i read that it could is this true.
Technically yes, but most Macs don't have good airflow to remove the excess heat generated by mining, so unless you have a power Mac or a hackintosh in a case with good airflow, it's not recommended. |
|
|
|
|
Balthazar (OP)
Legendary
Offline
Activity: 3108
Merit: 1358
|
|
April 22, 2013, 11:49:08 AM |
|
Vbs
No, it's PPS.
|
|
|
|
|
|
Vbs
|
|
April 22, 2013, 01:10:54 PM |
|
Nice.  Anyway, an interesting solution would be to lock wallet address changes on any balances above zero, for users without 2FA. This way its guaranteed that any savings can't be redirected to a new address, in case of password theft. Only if the user logged with 2FA, would he be able to change the wallet address without any restriction. Also, please remember to redirect ltcmine.ru:8080 or ltcmine.ru:443 to the stratum server. If you wish to support https further down for the web ui, then 8080 would be a safe choice. |
|
|
|
|
duketogo
Newbie
Offline
Activity: 25
Merit: 0
|
|
April 22, 2013, 02:31:00 PM |
|
Is the pool offline at the moment? I get page not available in Chrome.
|
|
|
|
|
Flatlinezor
Member
Offline
Activity: 84
Merit: 10
Funny quote
|
|
April 22, 2013, 02:31:30 PM |
|
I just stumbled upon this pool, after notoroll being abusive, coinotron having too much rejects and wemineltec and givemeltc having crappy yields, not to mention the very first pool-x being mediocre.
I am absolutely satisfied even after 2 days of mining. Even the website design is more than enough, just the info that is needed.
Hats off, will stay with my humble 5.5mhash.
|
Calm sea doesn't breed skilled sailors!
|
|
|
Balthazar (OP)
Legendary
Offline
Activity: 3108
Merit: 1358
|
|
April 22, 2013, 02:34:57 PM |
|
Is the pool offline at the moment? I get page not available in Chrome.
Web interface connections limit was exceeded sometimes. I'll increase it soon. |
|
|
|
|
|
skyhigh2004
|
|
April 22, 2013, 02:35:30 PM |
|
Strange but I cant connect to the pool from either of my miners or to the website form either of my computers or phone. It just says the website cont be found. Anyone else getting this?
Edit: I see im not the only one and it is a known issue.
I can't connect any of my miners to the pool. It says there is no pool detected. Its the same settings I used to mine yesterday so idk what's up.
Edit 2: as I type that it connects :-).
|
BTC:157BZV5z5dEdEoE5KSr5D7CQGXamLpsZ7n LTC:LYCf5PnQpXCCmpR4ka3mR8DFDe5hKhTdfc
MEC:MAgTT8QdhVCkgHTkUoKvs4w1TQvv3NU99v DGC:D8Ubh9oYTpSe1HEBptY8wf6ZrPpj7bhkV5
FTC:6hb1VsGzkej4kSsssGA4FMnkCoVp7PLi8D PXC:PqQwQKJoYxGSVrKtVfDa5aaJVL9Yevhb2b
|
|
|
duketogo
Newbie
Offline
Activity: 25
Merit: 0
|
|
April 22, 2013, 02:37:20 PM |
|
Is the pool offline at the moment? I get page not available in Chrome.
Web interface connections limit was exceeded sometimes. I'll increase it soon. Oh ok. As usual thanks for your quick reply Balthazar. You're becoming a victim of your own success! |
|
|
|
|
Balthazar (OP)
Legendary
Offline
Activity: 3108
Merit: 1358
|
|
April 22, 2013, 02:46:14 PM |
|
Hm... It seems that I was wrong. Our DNS provider http://nichost.ru also unavailable now. Possible workaround is adding to hosts file. |
|
|
|
|
Balthazar (OP)
Legendary
Offline
Activity: 3108
Merit: 1358
|
|
April 22, 2013, 02:56:54 PM |
|
Плaниpyeмoe вpeмя oкoнчaния paбoт - 19:00 MCК. Пpинocим извинeния зa дocтaвлeнныe нeyдoбcтвa. Maintenance will be completed at 19:00 GMT+4 approximately. We apologize for inconvenience. // Message from Nichost. Hm... Current local time is 19:06 and I still see this message...  |
|
|
|
|
Balthazar (OP)
Legendary
Offline
Activity: 3108
Merit: 1358
|
|
April 22, 2013, 03:09:17 PM |
|
===> Плaниpyeмoe вpeмя oкoнчaния paбoт - 20:00 MCК. Пpинocим извинeния зa дocтaвлeнныe нeyдoбcтвa. Maintenance will be completed at 20:00 GMT+4 approximately. We apologize for inconvenience. FAIL  |
|
|
|
|
|
