|
surebet posted:Keep calm, transaction malleability is not double spending (self.Bitcoin) so they are totally ignoring how this fucks over any sort of automated systems? lol
|
# ? Feb 10, 2014 15:27 |
|
|
# ? Jun 9, 2024 12:16 |
|
fix it again, tony
|
# ? Feb 10, 2014 15:29 |
|
|
# ? Feb 10, 2014 15:36 |
|
im the less than $180,000 market depth
|
# ? Feb 10, 2014 15:37 |
|
this means there is a lot of people selling and a lot of volume to be sold, right? if not, can someone explain this chart to me?
|
# ? Feb 10, 2014 15:39 |
|
quote:Bitcoin core developer, Greg Maxwell, about this highly technical issue. Greg Maxwell and Peter Wuille are the core developers in consultation with Mt. Gox, as per their press release. lol
|
# ? Feb 10, 2014 15:39 |
|
quote:The flaw isn’t so much in Bitcoin as it is in exchange-systems. Many exchanges use the tx-id to uniquely identify transactions, but as it turns out, an attacker can change the tx-id without changing the actual transaction, rebroadcast the changed transaction (effectively creating a double-spend) and if his altered transaction gets accepted into a block instead of the legit transaction, the attacker receives his coins and can complain with the exchange that he didn’t. The exchange will then check their db, fetch the tx-id from it, look it up in the blockchain and not find it. So they could conclude that the transaction indeed failed and credit the account with the coins. lol 'well theres this thing. and you have to work around it. but it's not a flaw in the protocol because'
|
# ? Feb 10, 2014 15:41 |
|
Meanwhile, mtgox continues discovering wonders of the Bitcoin protocol (youtube.com) submitted 3 hours ago by jrmxrf https://www.youtube.com/watch?v=vh3tuL_DVsE
|
# ? Feb 10, 2014 15:42 |
|
yeah bitcoin is totally scalable also don't panick, mt gox is still up 540% over six months lol
|
# ? Feb 10, 2014 15:42 |
|
Damiya posted:lol lol
|
# ? Feb 10, 2014 15:47 |
|
Transaction identifiers are just for flavour You don't expect them to uniquely identify particular transactions do you?
|
# ? Feb 10, 2014 15:47 |
|
let the free market decide which wallet version to use it worked fine last time
|
# ? Feb 10, 2014 15:47 |
|
https://bitcointalk.org/index.php?topic=8392.0 New Attack Vector May 15, 2011, 05:00:58 PM
|
# ? Feb 10, 2014 15:49 |
|
sorry but transaction ids sound like some kind of government monitoring program and should be eradicated all financial transactions should act like udp, throw it at an address and hope for the best, its the only way to protect consumer interests and freedom from regulation
|
# ? Feb 10, 2014 15:49 |
|
my only question is why dont wizards of the coast step up to their responsibilities here release a balance booster or something
|
# ? Feb 10, 2014 15:53 |
|
gox back at 600, not sure if it's a dead catte bounce but if so expect good laffs soon
|
# ? Feb 10, 2014 15:57 |
|
surebet posted:gox back at 600, not sure if it's a dead catte bounce but if so expect good laffs soon the laffs market is an inverse derivative of the btc market, but with guaranteed capital
|
# ? Feb 10, 2014 15:59 |
|
so reading between the lines someone cleaned out mtgox by spoofing transaction ids?
|
# ? Feb 10, 2014 16:01 |
|
Erenthal posted:my only question is why dont wizards of the coast step up to their responsibilities here i want wotc to step in and bitch slap mtgox down with a c+d for using their trademark "mtg"
|
# ? Feb 10, 2014 16:02 |
|
hobbesmaster posted:so reading between the lines someone cleaned out mtgox by spoofing transaction ids? naaaaaaah mt gox is totally using a known
|
# ? Feb 10, 2014 16:03 |
|
surebet posted:https://bitcointalk.org/index.php?topic=8392.0 if this gets fixed this year it'll still be faster than most of the engineering software i have to use.
|
# ? Feb 10, 2014 16:04 |
|
hobbesmaster posted:so reading between the lines someone cleaned out mtgox by spoofing transaction ids? If it actually happened, and mtgocks managed to replay their transaction log from the beginning and pinpoint the bogus transactions, what kind of entity would they be able to point the finger to ? Like an individual account, a particular pool ? My question is who gets the scammer tag
|
# ? Feb 10, 2014 16:15 |
|
the invisible finger
|
# ? Feb 10, 2014 16:25 |
|
unpacked robinhood posted:If it actually happened, and mtgocks managed to replay their transaction log from the beginning and pinpoint the bogus transactions, what kind of entity would they be able to point the finger to ? Like an individual account, a particular pool ?
|
# ? Feb 10, 2014 16:25 |
|
FrozenVent posted:the laffs market is an inverse derivative of the btc market, but with guaranteed capital
|
# ? Feb 10, 2014 16:29 |
|
kiwid posted:
I am not sure about the bars, but the chart shows the price resistance from all the available put and ask orders. What the volume of buys needed to raise the price to any given level, and what the volume of sells needed to drop the price down to any given point. The steeper the line, the higher the resistance. (I think the bars represent changes in the number of orders)
|
# ? Feb 10, 2014 16:40 |
|
unpacked robinhood posted:If it actually happened, and mtgocks managed to replay their transaction log from the beginning and pinpoint the bogus transactions, what kind of entity would they be able to point the finger to ? Like an individual account, a particular pool ? they'd know the account holder whose transaction was forged, but they could be an "innocent" bystander, they'd also have the address they sent the money to which could be followed i suppose. i dunno how good mtgox is at chasing people across train cars
|
# ? Feb 10, 2014 16:59 |
so the transaction id, which is used to uniquely identify a transaction, cannot be relied upon to identify a transaction?
|
|
# ? Feb 10, 2014 17:02 |
|
hobbesmaster posted:they'd know the account holder whose transaction was forged, but they could be an "innocent" bystander, they'd also have the address they sent the money to which could be followed i suppose. i dunno how good mtgox is at chasing people across train cars Shifty Pony posted:so the transaction id, which is used to uniquely identify a transaction, cannot be relied upon to identify a transaction? this is good for bitcoin, because
|
# ? Feb 10, 2014 17:03 |
|
hold onto your butts, it's laff time http://cryto.net/~joepie91/blog/2014/02/10/why-mtgox-is-full-of-poo poo/ quote:According to Mt. Gox, they discovered a critical flaw in the design of Bitcoin, allowing people to 'steal' Bitcoins by changing the ID of a BTC withdrawal transaction after-the-fact, claiming to customer support that they never received it, and having them resend it. This would be a possibility, because the Bitcoin protocol does not 'sign' the transaction ID, and it could thus be spoofed. They go on playing the 'white knight', strongly implying that they've been the first to find said flaw, and are in talks with developers to get it fixed.
|
# ? Feb 10, 2014 17:08 |
|
anthonypants posted:yeah but it's not changing the destination address, it's changing the transaction's unique id hash math bithc
|
# ? Feb 10, 2014 17:11 |
i would just like to point out that a hypothetical large scale bitcoin payment service would run a non-trival and financially unacceptable chance of having multiple transactions matching the suggested (amount, address, timestamp) "workaround". every single day would be like betting black and red in roulette and praying like hell that green doesn't hit (and it will eventually).
|
|
# ? Feb 10, 2014 17:13 |
|
Dr. Honked posted:hold onto your butts, it's laff time "stop whining you stupid jerks, its only a flaw with the most popular bitcoin exchange except for when i brush off the fact that the protocol supports it as well"
|
# ? Feb 10, 2014 17:16 |
|
how long until the announcement that all of mtgox's bitcoins have been stolen using this vulnerability, but they will generously reimburse 25% of each stolen balance from their own personal wallets mtgox has to end the same way every other bitcoin enterprise has ended
|
# ? Feb 10, 2014 17:30 |
|
Transaction ids aren't an important thing that we should ensure can't be changed, right guys? This is good design. Why would you ever think to use a transaction id to identify transactions anyway?
|
# ? Feb 10, 2014 17:37 |
|
Dr. Honked posted:hold onto your butts, it's laff time algorithms not institutions
|
# ? Feb 10, 2014 17:42 |
|
Chocobo posted:how long until the announcement that all of mtgox's bitcoins have been stolen using this vulnerability, but they will generously reimburse 25% of each stolen balance from their own personal wallets
|
# ? Feb 10, 2014 17:42 |
|
FMguru posted:dont forget the part where mtgox's customers are over-the-moon excited to be getting back 25% of their money and how it shows what TRUE MEN OF HONOR the mtgox guys are for reaching into their own pockets to try and make their customers at least somewhat whole also they start a secondary market to resell mtgox debt oh wait THEY ALREADY DID THAT
|
# ? Feb 10, 2014 17:44 |
|
hobbesmaster posted:so reading between the lines someone cleaned out mtgox by spoofing transaction ids? yeah, this thread is pretty quick to jump to conspiracy theories, but this is sounding extremely likely well, "cleaned out" in the sense that they are insolvent, since as an exchange the value they handle is orders of magnitude greater than the value of the company itself, so even a minor break no doubt quickly screwed them over and now they have no recourse and are in a mostly unregulated market with nothing left to lose, plenty of fun likely to come
|
# ? Feb 10, 2014 17:50 |
|
|
# ? Jun 9, 2024 12:16 |
|
FrozenVent posted:also they start a secondary market to resell mtgox debt bitcoin bitcoin never changes
|
# ? Feb 10, 2014 17:51 |