Bitcoin Forum
May 09, 2016, 01:00:40 AM *
News: New! Latest stable version of Bitcoin Core: 0.12.1 [Torrent]
 
  Home Help Search Donate Login Register  
  Show Posts
Pages: « 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 [17] 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 ... 114 »
321  Bitcoin / Development & Technical Discussion / Re: Can we use Bitcoin client to on: January 28, 2013, 09:12:29 PM
I guess if about 20 people all said "I have something that needs a provable trust-free timestamp right now, and it would be worth 5 cents to me if you would finish your service so I can use it tomorrow" to me, I'd get mine ready for public consumption and announce it here.

I'd just point them to http://www.timemarker.org/
322  Bitcoin / Development & Technical Discussion / Re: Let's Embrace BTC Trusted Timestamping on: January 28, 2013, 06:49:30 PM
There are already free, centralized services that will timestamp arbitrary hashes for you.

.... another random thought:  I wouldn't be surprised if you could get tricky with nonces to get any https-enabled web server to act as a free timestamping service, too...
323  Bitcoin / Development & Technical Discussion / Re: Let's Embrace BTC Trusted Timestamping on: January 28, 2013, 06:48:06 PM
Is there a lot of demand for timestamping? Are people willing to pay for it?

There are already free, centralized services that will timestamp arbitrary hashes for you. Besides the risk that they might go away (which you could mitigate by getting timstamps from several of them), is there any real advantage to using the blockchain?

If I can already get timestamps for free, why would I bother to pay a transaction fee to get a blockchain timestamp?

I'm often wrong, so feel free to ignore me, but blockchain timestamping seems to me like one of those gee-whiz ideas that appeals to us techies but isn't "enough better" than existing solutions to be interesting to non-techies.
324  Bitcoin / Bitcoin Discussion / Re: New blog post: Hiding Bitcoins in Your Brain on: January 28, 2013, 02:02:33 AM
Quote
In fact, the suggestion of associating your personal information with your bitcoins puts a very bad taste in my mouth. Why would you suggest this, Gavin?
Because it is critical that YOUR passphrase be different from EVERYBODY ELSE'S passphrase.

Adding your email address or driver's license number or some other certainly-unique-for-you information makes that work.

That shifts the problem from "attacker is trying to guess EVERYBODY's passphrase" to "attacker happens to know that you have a bunch of BTC in a brainwallet and is trying to attack YOUR brainwallet, specifically."

Quote
It's an improvement but Moore's law is ruthless, especially considering the economic incentives to recover those keys and how bitcoin mining causes people to accumulate massive amounts of computing power.

Nicely said.

Again: we are really bad at thinking up good, unique passphrases. We share so much experience and culture that whatever you think of, somebody else will probably think of, too.  Or some attacker will think of something similar enough to crack your passphrase.

And we are really bad at imaging what it means that an attacker might try a few hundred BILLION passphrases to try to crack everybody's brainwallet.
325  Bitcoin / Bitcoin Discussion / Re: New blog post: Hiding Bitcoins in Your Brain on: January 27, 2013, 11:49:08 PM
Humans are pretty bad at being original. REALLY bad at being random. And we are terrible at comprehending huge numbers.

So if you ask the average person to create a secure passphrase, they're very likely to create something that a "determined attacker" with a lot of computing power can crack.

I think if people start to use quotes from obscure literary works as their brain wallets, then they're going to lose their bitcoins sooner or later. Attackers can try MILLIONS of passphrases per minute, to crack EVERY SINGLE brainwallet that has ever been created.

So: if you absolutely, positively won't be dissuaded from using a brainwallet, here is my advice on how you might be able to come up with a secure passphrase:

Think of two passphrases that you think you can remember. And think of a government-issued number that you can easily lookup or remember (like your driving license or social security number).

Create a brainwallet passphrase that is:

the first passphrase,the government id number,the second passphrase

Then create a 'sentinel' brainwallet that is just the first passphrase, and send a small number of bitcoins to it. When those bitcoins get spent (or more bitcoins are sent to it by somebody else), you know that the first passphrase you chose isn't good enough any more.  Choose a more complicated passphrase and create a new 'sentinel' and real brainwallet, and move your old brainwallet there.

326  Bitcoin / Bitcoin Discussion / Re: SERIOUS VULNERABILITY related to accepting zero-confirmation transactions on: January 26, 2013, 07:56:56 PM
The reference implementation patch is scheduled for the (real soon now!) 0.8 release:
  https://github.com/bitcoin/bitcoin/pull/2223
327  Bitcoin / Development & Technical Discussion / Re: Returning BTC to the sender on: January 25, 2013, 08:49:45 PM
I've been trying to imagine a vout containing objects with addresses that the payer can't use, and I think the only way for that to happen is for the payer to create it, but even then, the ability to create it requires that he have the private keys for all the addresses, right?

No. It is perfectly possible for multiple people to provide inputs to a transaction, each signing their input but without knowledge of the other people's keys.

That is extremely rare now, but that is exactly what you would do to implement a peer-to-peer coin-mixing service, which I suspect may be a very popular way of paying for things since it increases your privacy significantly.

328  Bitcoin / Bitcoin Discussion / Re: Win 10 BTC: Guess the price on February 1st (no entry fee) on: January 24, 2013, 01:21:27 PM
20.11
329  Economy / Services / Re: PAY FOR INFORMATION - 600 BTC REWARD FOR IDENTITY OF HACKER on: January 24, 2013, 02:51:39 AM
Isn't two-factor something that's already been implemented, or already worked on ? Ie. you want to send coins, and then you have to use two devices to do it ?

It is very high on the priority list, yes. Miners already support it, but there are still a couple of steps to go before you can create a wallet split between Bitcoin-Qt running on your desktop computer and an app running on your iPhone.
330  Other / Meta / Re: New subforums for alternative clients on: January 23, 2013, 04:09:52 AM
I think Dev&Tech == generic technical discussion, then sub-forums for discussion of development of the popular clients makes sense (including 'Reference Client (Bitcoin-Qt/bitcoind)' ).  And a catch-all for any not-yet-popular (or used-to-be-popular) clients.
331  Bitcoin / Development & Technical Discussion / Re: smart property as an alternative to invoicing on: January 22, 2013, 11:05:41 PM
The only problem I see is that firstbits lookup requires full blockchain scan, which is sort of expensive.

"sort of expensive" ?  Really expensive and getting more expensive all the time.  And absolutely impossible for a lightweight hardware or mobile-phone wallet, which I think a lot of people will use as their second-factor device.
332  Bitcoin / Bitcoin Discussion / Re: Bitcoinfoundation.org - Is it worth joining? on: January 22, 2013, 10:14:16 PM
RE: what's my role in the core team:  I try to do whatever needs to get done, that isn't getting done.  Today I'm cross-compiling the 0.8 release and testing it on Windows, trying to track down a crash-at-exit issue and an excessive-memory-use issue that seems to only happen on Windows.

When I'm not doing nitty-gritty things like that, I try to work on big, what-is-most-likely-to-make-Bitcoin-succeed problems.

RE: why pay me a salary?  "why pay for the cow if you can get the milk for free?"

I told myself (and my wife) a couple of years ago that I wasn't going to sink dollars into Bitcoin-- that I'd sink time into it, and that I'd EARN bitcoins by starting a bitcoin-related startup.

Well, there's enough core development work to keep me busy full time. I wasn't very happy doing core development work AND trying to make ClearCoin happen; I'm happier when I can concentrate on one thing.  Besides, having my own startup introduces potential conflicts of interest (ClearCoin sparked conspiracy theories about why I push for multisig transactions so hard).

RE: what if I get hit by a bus?

Then the other core developers will carry on without me. I'm not indispensable.

RE: Why should you join the Foundation?  What is in it for you, personally?

That is a hard question, because you can "free ride" -- if we're successful making Bitcoin successful, everybody will benefit. Personally, I don't respect people with that kind of "I'm not going to do it because I'm sure somebody else will" attitude, and I think in the long run the people who take the risks and roll up their sleeves and do the work needed tend to win in the end.

Really, the main benefit of joining the Foundation is it is an organization full of people who are rolling up their sleeves and doing the work. If you're smart, you'll realize that networking with those types of people is to your long-term benefit.

333  Bitcoin / Bitcoin Discussion / Re: when will 0.8 be released ? on: January 22, 2013, 03:03:26 PM
I started working through a GUI design for secure multi-device wallets a couple months ago:
  https://moqups.com/gavinandresen/no8mzUDB/p:afbbfb850

But to be secure, I think we need the payment protocol first, because otherwise an attacker can simply replace the bitcoin address given to the first device and trick you into paying them.
334  Economy / Service Announcements / Re: New, simple online wallet: www.instawallet.org - no signup required on: January 21, 2013, 10:18:36 PM
Why so long?
Because the wallet is massive

... and because bitcoind's wallet code hasn't been optimized for massive wallets.  "patches welcome"
(although I think the wallet code needs a complete rewrite, we've learned a lot over the last couple of years and need wallets that are much easier to back up and keep secure).
335  Bitcoin / Development & Technical Discussion / Re: Could we have an "send all funds to" option? on: January 21, 2013, 09:48:46 PM
Except that transactions that are smaller than 10 kilobytes do not currently require a fee.  So the user can probably create a transaction that contains nearly 100 inputs each at 0.00005 BTC.  That would be nearly 0.005 BTC worth of 0.00005 BTC inputs that would be spendable in any one transaction.

But a transaction with a 0.005 BTC output triggers this rule:
Code:
// To limit dust spam, require MIN_TX_FEE/MIN_RELAY_TX_FEE if any output is less than 0.01

... so you're back to paying 10kilobytes * 0.0005 BTC / kilobyte == 0.005 BTC to spend those 0.005 BTC.

Yes, if you have a large-value, well-aged input then you can combine it with tiny transactions, have a single output greater than 0.01 BTC, and probably get into a block for free.

If you want to prototype a smarter coin-selection algorithm, you might start with the 'spendfrom.py' code I wrote as an example of using the raw transactions API:
  https://github.com/bitcoin/bitcoin/pull/2162
336  Bitcoin / Development & Technical Discussion / Re: Could we have an "send all funds to" option? on: January 21, 2013, 08:47:43 PM
With the current transaction fee rules, inputs of less than about 0.00005 BTC will cost more to spend than they are worth.

(somebody check my arithmetic, I'm good at dropping digits:  MIN_TX_FEE is 0.0005 BTC per kilobyte, an extra input is a signature+pubkey+a few extra bytes = 100 bytes, so minimum fee per input is about 0.00005 BTC)

Wallet software should probably display micro-inputs as zero to the user (they really are worthless right now, since they cost more to spend than they are worth) and ignore them when computing the wallet balance or getting inputs to spend.
337  Bitcoin / Project Development / Re: [BOUNTY claimed] Help test version 0.8, blockchain upgrade on: January 18, 2013, 01:04:16 AM
Oops, sorry, update the github page, all the bounties are claimed.

Thanks to everybody who tested, you were extremely helpful.

What did you think about the bounty amounts:  too much?  too little?  just right?
338  Bitcoin / Bitcoin Discussion / Re: Shouldn't we start using safer keys from now instead of waiting for problems? on: January 17, 2013, 04:11:17 PM
We can calculate the minimum unit from following algorithm:

Code:
# [Total value] = all Dollars in circulation + Euros in circulation + Yens in circulation + CNY in circulation + all the other currencies
# Convert [Total value] to amount of smallest units/fractions of the earth's cheapest currency (*excluding* internet currencies and currencies of countries with hyperinflation)
# Add one or 2 zeros.
There you have it. The humanity will probably never require more units of Bitcoin than that, even if Bitcoin becomes #1 World currency and everybody on the world starts using Bitcoin instead of other currencies.

Currently, total amount of the smallest units of Bitcoin is 2,100,000,000,000,000 which is just over 2 thousands of trillions (USA scale). Is it enough according to the equation above ? I highly doubt so.

Let me google that for you.... ah, here's a nice chart:
  http://dollardaze.org/blog/?post_id

There is about 5 trillion dollars in currency in the world.

So 2.1 thousand trillion satoshis is PLENTY.

339  Bitcoin / Bitcoin Discussion / Re: Shouldn't we start using safer keys from now instead of waiting for problems? on: January 16, 2013, 04:37:14 PM
Successful technology companies do not waste their time solving problems that they THINK they MIGHT have in 20 years.

They don't even spend much time thinking about problems that they might have in four years.

I don't spend any time worrying about the strength of 256-bit ECDSA or 160-bit RIPEMD, and I spend even less time worrying about the strength of those two combined.
340  Bitcoin / Development & Technical Discussion / Re: How to create a PULL request on: January 12, 2013, 09:39:54 PM
Is it fair to say then, that Bitcoin is not completely decentralized? I am only asking to better my understanding, but it seems there is some amount, even if minor, of centralization.

The only completely and utterly decentralized bitcoin-like system I can think of would have every person using it write and run their own code.

On computers that they built themselves.

Communicating over a wireless mesh network where each node in the mesh was controlled by a single person who wrote all the code and built all the hardware....
Pages: « 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 [17] 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 ... 114 »
Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!