[ANN] Qora | Released 16 May | 100% POS | New Source - page 442.

bano.pait

newbie

Activity: 37

Merit: 0

Quote from: nextgencoin on May 09, 2014, 06:53:35 AM

If i had access to your PM and account generally, which the moderators do here by the way. Then they know everything, including the btc address you sent on and probably the signature you used for your BTC address.

I'm absolutely no expert but surely sending a Qora address to Qora. Then he takes the list and puts it next to the BTC donations. Then give everyone a week to see that list, which gives people a chance to say if someone has sent a false address. Then Qora sends out.

Your idea about the list is not bad... however... the signing a message (Qora address) with the sending BTC address route is very safe and probably the best way to go... review how signing messages with your BTC address works and it will become clear very quick.

or use the password hash like NFD?

nextgencoin

legendary

Activity: 1106

Merit: 1000

BTW when did this thread become a Circus?

nextgencoin

legendary

Activity: 1106

Merit: 1000

Quote from: ?? on ??

Quote from: qora on May 08, 2014, 04:04:57 PM

I think the most secure way is to just use Qora itself as in investors pm me the address they want to receive their share on.

+1

Quote from: dzarmush on May 08, 2014, 11:29:30 PM

As for me I'll just sing a message with my qora address using btc investment address. I think it's the most secure way.

+∞

I guess the safety concern is that out PM address could be compromised. If it was your plan still would not be perfect.

If i had access to your PM and account generally, which the moderators do here by the way. Then they know everything, including the btc address you sent on and probably the signature you used for your BTC address.

I'm absolutely no expert but surely sending a Qora address to Qora. Then he takes the list and puts it next to the BTC donations. Then give everyone a week to see that list, which gives people a chance to say if someone has sent a false address. Then Qora sends out.

Some people could make false claims and say oh that address is not right but they could be worked out by sending a small payment on their BTC address etc.

I think we need a fool proof and easy way, I'm sure we can sort this out. But with the recent holes found in windows and this forum being a harem of hackers we should go the 100% hacker proof way and assume the worst about access to our PM address. I mean someone needs only to hack a moderators address and all PM's are compromised.

cawson

full member

Activity: 196

Merit: 100

Quote from: 2517313245 on May 09, 2014, 05:32:01 AM

ipo prize is very low almost 3 sat

maybe,Are you dreaming?

2517313245

newbie

Activity: 33

Merit: 0

ipo prize is very low almost 3 sat

dzarmush

legendary

Activity: 1806

Merit: 1001

Quote from: KyLins on May 09, 2014, 04:57:25 AM

When a coin launch？

Most likely 16th May

italcoin

newbie

Activity: 42

Merit: 0

What was the ipo price for this coin?

KyLins

sr. member

Activity: 438

Merit: 250

When a coin launch？

gomei

hero member

Activity: 770

Merit: 500

Quote from: dzarmush on May 07, 2014, 04:40:48 PM

Quote from: freigeist on May 07, 2014, 04:33:20 PM

Qora to the moon! Cheesy

Yep!

And I got e-mail: "This is an automatic notification to let you know that your note referred as no reference has been read."

to the moon! Grin

castles

member

Activity: 65

Merit: 10

Quote from: Thekitten on May 09, 2014, 12:54:16 AM

Quote from: WZJ778899 on May 08, 2014, 11:38:05 PM

I like this coin !! Shocked

Wait for, moon

I missed the IPO stage

2517313245

newbie

Activity: 33

Merit: 0

the most secure way is to just use Qora itself as in investors pm me the address they want to receive their share on.
i think it's a good way but i still want to support dev

zXgn

newbie

Activity: 19

Merit: 0

Quote from: qora on May 08, 2014, 04:04:57 PM

Currently I am thinking about launching it at 3pm GMT.
I will release the official date and hour plus the API documentation this weekend.
Also pming around 140 investors with bitcointalk making me wait 30 seconds between a pm is going to take a while.

Quote from: dzarmush on May 07, 2014, 04:27:12 PM

Quote from: qora on May 07, 2014, 03:48:28 PM

Quote from: cawson on May 07, 2014, 05:42:08 AM

I also want to know what will the author issuing for ipo investors

Each bitcoin transaction will represent one address.
On launch I will pm all known investors and ask how they want to receive the seed of that address.
Investors can then import that seed into their wallet and use it.

I'm suggesting to consider this service or similar https://privnote.com/

Someone creates a note, sends a link, you can read it just once. After the first time note was open service deletes it.

For example I created a note https://privnote.com/n/cfgyhsorzlnpkbnm/#zefvqzmkmusapetp after someone reads it, it will be deleted and I'll receive notification on my e-mail that the note has been read.

Everyone can choose their own way of receiving their account seed.
The investor is responsible to make sure that the way they use to receive it is secure.
Personally I do not like to send it over personal messages without knowing if the user is online.
Bitcointalk says that they cannot guarantee private messages are private.
Everyone should move their share to a new address as fast as possible for security.
Account seeds that are imported will also not be recoverable.
Any ideas about making this as safe as possible are welcome.
I think the most secure way is to just use Qora itself as in investors pm me the address they want to receive their share on.

Maybe you should use PGP, i think that is the best way.

Thekitten

member

Activity: 77

Merit: 10

Quote from: WZJ778899 on May 08, 2014, 11:38:05 PM

I like this coin !! Shocked

Wait for, moon

nextgencoin

legendary

Activity: 1106

Merit: 1000

Quote from: dzarmush on May 08, 2014, 11:38:41 PM

Quote from: nextgencoin on May 08, 2014, 11:31:48 PM

Quote from: dzarmush on May 08, 2014, 11:26:53 PM

Quote from: nextgencoin on May 08, 2014, 11:19:07 PM

HOW DOES THE SEED THING WORK?

Pretty much the same as private keys in bitcoin. You got private key - you got a wallet. The same with seed.

so in theory it's no more safer than if you generated your own address?

I guess if you get your seed, you have advantage that there can be a time delay while people who don't receive the seed can say something plus make a password to protect the wallet?

I'd say it is less safer. If someone gets your seed before you get, you're screwed.

I guess Qora (BCNext) wanted to use the same way of distribution he used for Nxt but didn't think this through

In Nxt you send a password hash and dev sends coins to the address he gets from a hash and you're the only person who has a password.

With seed (or privat key) there are at least two people who have an access to your wallet after coins are distributed: you and dev. Plus anybody who has read your PMs and got a seed from it.

Well I think Qora is aware of the PM risks. Won't have a time delay give at least people a chance to find any playing around. I mean if people make their own address, then PM Qora with it. He can make a list of anonymous addresses with the BTC stake amount next to it. Everyone can see if they can find their address and if they can't they can have time to say something?

I mean we already have a google doc of stakes, just need to add the address people send.

I personally have no problem if this lasts for a week or so to clear up any false claim cases.

dzarmush

legendary

Activity: 1806

Merit: 1001

Quote from: nextgencoin on May 08, 2014, 11:31:48 PM

Quote from: dzarmush on May 08, 2014, 11:26:53 PM

Quote from: nextgencoin on May 08, 2014, 11:19:07 PM

HOW DOES THE SEED THING WORK?

Pretty much the same as private keys in bitcoin. You got private key - you got a wallet. The same with seed.

so in theory it's no more safer than if you generated your own address?

I guess if you get your seed, you have advantage that there can be a time delay while people who don't receive the seed can say something plus make a password to protect the wallet?

I'd say it is less safer. If someone gets your seed before you get, you're screwed.

I guess Qora (BCNext) wanted to use the same way of distribution he used for Nxt but didn't think this through

In Nxt you send a password hash and dev sends coins to the address he gets from a hash and you're the only person who has a password.

With seed (or privat key) there are at least two people who have an access to your wallet after coins are distributed: you and dev. Plus anybody who has read your PMs and got a seed from it.

WZJ778899

newbie

Activity: 39

Merit: 0

I like this coin !! Shocked

nextgencoin

legendary

Activity: 1106

Merit: 1000

Quote from: dzarmush on May 08, 2014, 11:26:53 PM

Quote from: nextgencoin on May 08, 2014, 11:19:07 PM

HOW DOES THE SEED THING WORK?

Pretty much the same as private keys in bitcoin. You got private key - you got a wallet. The same with seed.

so in theory it's no more safer than if you generated your own address?

I guess if you get your seed, you have advantage that there can be a time delay while people who don't receive the seed can say something plus make a password to protect the wallet?

dzarmush

legendary

Activity: 1806

Merit: 1001

As for me I'll just sing a message with my qora address using btc investment address. I think it's the most secure way.

1HyvPpAnmLpg5zLnR9k5dUDQfzi8ENWAdi
-
Dear dev, this is my Qora address: Qoratest112233
-
IHTCGxNob8fVyA0ZoCY5wt3Nb0IJCUJhV5dJ5QRU21lzUzjOYwFrps+2YfE+ol5Fk4LdATzEf35HtuXiezBByT0=

dzarmush

legendary

Activity: 1806

Merit: 1001

Quote from: nextgencoin on May 08, 2014, 11:19:07 PM

HOW DOES THE SEED THING WORK?

Pretty much the same as private keys in bitcoin. You got private key - you got a wallet. The same with seed.

nextgencoin

legendary

Activity: 1106

Merit: 1000

I think sending an address to Qora is a pretty simple way to do it. I dont have any more secure way???

BUT it's not fool proof. If someone does have access to your PM they could send an address they make.

CALL ME PARANOID BUT THIS FORUM IS FULL OF HACKER TYPES. WE NEED A SECURE WAY TO DO THIS.

PEOPLE SHOULD CHANGE THEIR ACCOUNT ADDRESS NOW IN CASE THEY ARE HACKED ALREADY.

PEOPLE CALLING TO USE SEEDS WITH SOCK PUPPET ACCOUNTS AND BROKEN ENGLISH WORRIES ME, SORRY IF THAT SOUNDS RACIST.

HOW DOES THE SEED THING WORK?

Topic: [ANN] Qora | Released 16 May | 100% POS | New Source - page 442. (Read 748256 times)