I got two Questions.
Are my Bitcoins safe and Do I need to change pools?
Topic: [4+ EH] Slush Pool (slushpool.com); Overt AsicBoost; World First Mining Pool - page 822. (Read 4382671 times)
April 23, 2013, 10:39:08 PM
April 23, 2013, 10:17:17 PM
seems v___.bitcoin.cz points to OVH... minning on this adress since the DDoS !
IIRC, you own this work too, so things seems all fine !
The most important point I want to write :
Thank you so much Slush, You're the King of pool operators ! I'll always mine at your pool !
Thank you very much, you rule !
IIRC, you own this work too, so things seems all fine !
The most important point I want to write :
Thank you so much Slush, You're the King of pool operators ! I'll always mine at your pool !
Thank you very much, you rule !
April 23, 2013, 09:34:22 PM
No work is lost, but mining on Amazon is recommended. If you restart the miner using stratum.bitcoin.cz, you'll be switched there.
April 23, 2013, 09:26:53 PM
So is it safe to keep mining on Stratum now? I don't want my mining power working for the profit of some hacker..
I just used netstat and reverse lookup to confirm where the existing stratum connections were going (they were still opened to ovh address 94.23.174.94 in my case).
Restarted workers where it was needed to make sure they connect to EC, 54.214.x.x.
Hope this helps.
T
same here, is work done at ovh address lost?
April 23, 2013, 09:14:01 PM
Yes, stratum.bitcoin.cz, stratum2.bitcoin.cz and stratum3.bitcoin.cz points to safe servers.
April 23, 2013, 09:11:53 PM
So is it safe to keep mining on Stratum now? I don't want my mining power working for the profit of some hacker..
Yes, stratum.bitcoin.cz is now pointed to Amazon EC2 instances, which are safe.
When I couldn't get stratum.bitcoin.cz to connect an hour or so ago I switched to stratum2.bitcoin.cz (remembering your advice from the DDoS attack) and it seems to have been mining normally. Is that OK for you?
April 23, 2013, 09:11:17 PM
So is it safe to keep mining on Stratum now? I don't want my mining power working for the profit of some hacker..
I just used netstat and reverse lookup to confirm where the existing stratum connections were going (they were still opened to ovh address 94.23.174.94 in my case).
Restarted workers where it was needed to make sure they connect to EC, 54.214.x.x.
Hope this helps.
T
April 23, 2013, 08:58:03 PM
So is it safe to keep mining on Stratum now? I don't want my mining power working for the profit of some hacker..
Yes, stratum.bitcoin.cz is now pointed to Amazon EC2 instances, which are safe.
April 23, 2013, 08:46:06 PM
So is it safe to keep mining on Stratum now? I don't want my mining power working for the profit of some hacker..
April 23, 2013, 08:44:18 PM
What about the user database? Was it compromised? I'd hate to see bitcoins sent to the wrong address.
I have a database snapshot taken before bad guys overtook the database. So there's no reason to think payout addresses have been modified. Any change of wallet on pool profile requires email confirmation by account owner so I think we're on safe side here.
Unfortunately the user database can be considered as compromised, so the attacker knows user's emails :-(.
Should we consider our passwords compromised?
April 23, 2013, 08:41:20 PM
I lost some amount of bitcoins, but I'll be able to recover it from my pocket.
I want to say thank you Slush, you really put a lot of effort in to this and we all appreciate it so much. If there is anything we can do please let us know
April 23, 2013, 08:35:29 PM
Stratum servers have been migrated to (not-compromised) EC2 backends, I just see few first connections. So mining continues and no action is required by you.
I'll set up database and website in few hours on trusted machines, so the pool will be in normal operation soon.
I'll set up database and website in few hours on trusted machines, so the pool will be in normal operation soon.
April 23, 2013, 08:33:55 PM
What about the user database? Was it compromised? I'd hate to see bitcoins sent to the wrong address.
I have a database snapshot taken before bad guys overtook the database. So there's no reason to think payout addresses have been modified. Any change of wallet on pool profile requires email confirmation by account owner so I think we're on safe side here.
Unfortunately the user database can be considered as compromised, so the attacker knows user's emails :-(.
April 23, 2013, 08:30:54 PM
so pool got hacked? what was comprimised
April 23, 2013, 08:27:28 PM
What about the user database? Was it compromised? I'd hate to see bitcoins sent to the wrong address.
Good point but I'm afraid about password. But I guess that even if it was stolen it is irreversibly coded right? April 23, 2013, 08:24:28 PM
What about the user database? Was it compromised? I'd hate to see bitcoins sent to the wrong address.
April 23, 2013, 08:21:52 PM
Uhhh..hate to be that tinfoil hat guy..but..Slush..anyway to confirm this is...uh..you? With a hacking involved all sorts of rumors are going to pop up. I would instigate damage control asap.
April 23, 2013, 08:17:02 PM
apparently, if you don't hold it you don't own it is true for servers as well 
That's the point. Next time I'll be the only person who'll have a physical access to the machine. No f***ing web consoles, email recovery features and no 3rd party administrators next time. I'm really tired by these situations and incompetent people who are harming my own reputation.
April 23, 2013, 08:16:21 PM
Its just nice to see the guy in charge actively posting with users. Ive only been mining for a few weeks but other pools don't know what they are missing.
Keep the luck coming. I need to fund a serious BeerBQ at the end of may solely on BTC.
Keep the luck coming. I need to fund a serious BeerBQ at the end of may solely on BTC.
April 23, 2013, 08:11:11 PM
apparently, if you don't hold it you don't own it is true for servers as well
Jump to: