Topic: [ANN] Stag! | Stagflation crypto based on NXT! | OPEN BETA (Down for testing)! - page 9. (Read 49381 times)

Debugging has been MUCH smoother since I got rid of that one bug! I fixed 5 bugs in the forging code just this morning! (I have only been awake for about 2 hours).

Hopefully nothing that tricky comes up again so I can get Stag 0.0.1 out sooner rather than later.

Stag 0.0.1 most likely won't have all the additional security features (such as the pseudowallet file and second public key) enabled but will have some of them fully implemented (such as the enhanced password generator).

In case you don't know, the pseudowallet is like having a second public/private key pair, except, rather then being generated via a password, the private key is generated directly through a random byte array and is capable of providing higher entropy because it is not dependent on a password (providing better security). In addition, the public key is also capable of being much larger, making it more difficult to brute force the private key which corresponds to the public key. The pseudowallet file contains a reference to the transaction that contains its public key so it is quickly found.

To provide extra security, the pseudowallet file is encrypted using the standard Stag password. This forces potential attackers to find the password before they can find the second private key. Because the wallet file in encrypted with a different algorithm than is used to generate the standard private key, the attacker would need the exact password used to create the account rather than just finding the account's private key and using it to unlock both the standard login and the pseudowallet file.

So basically, with the pseudowallet file, an attacker would to do one of the following:

• Brute force both the standard private key (which is already difficult) and larger, more difficult, pseudowallet private key.
• Brute force both the account's password and the pseudowallet private key.
• Brute force the account's password and steal the pseudowallet file.
• Steal the account's password and steal the pseudowallet file.
• Steal the account's password and brute force the the pseudowallet private key.

In other words, it would be quite difficult to hack someone' account if they have a pseudowallet implemented.

The enhanced password generator, which will be implemented in Stag 0.0.1, is also really cool. First of all, it implements a larger array on English words than the NXT password generator, providing better entropy. It optionally, implements the HotBits true random number generator on top of a pseudorandom number generator (the pseudorandom number is meant to provide security in case HotBits becomes insecure for whatever reason e.g. they are hacked, the connection is intercepted, something goes wrong with their generator, etc.) which provides higher password entropy. It will support multiple password sizes (so no one can just find the password and know what it belongs to based on number of words or characters). It will support multiple password languages for easier commitment to memory for speakers of languages other than English, and it will, optionally, allow creation of passwords using random characters rather than words for the extra paranoid who wish to save passwords in something like KeePass.

In other words, it will provide better security than the NXT password generator by adding new features, both for the standard user and the paranoid user, and it will be more user friendly by allowing passwords to be generated in the user's native language.

Like I said, the enhanced password generator will be avalible in Stag 0.0.1.

Expect Stag 0.0.1 to be released sometime around New Years (may be sooner, may be later; I want to make sure it is as secure as possible before it's release; I don't want anyone to lose any money).

And you need 2 activitypoints more to reach a "seniormember".

I think yes but you need to send him a PM.

registration still ongoing?

Good news, good work. 

No response yet. I am going to take it to the other Stag dev to check out sometime this week. In the mean time, I am going to continue developing the RPC interface.

Edit: I found the problem and have been able to progress with debugging! The error was a single extra whitespace in the code. No wonder it took me so long to find it!

Any progress in your project? Did you get response from the NXT community?

It will be until Stag's official release which I can't say when that will be exactly. I have run into a weird bug because I changed the contents of the HTML file so that it says STAG instead of NXT everywhere and now when I try to do a transaction it says: "Fee not specified."

I have asked for help from some of the NXT devs but so far no one has answered. On a related note:

The beta version of stag has been delayed. I still hope to get it out soon but I have run into a bug that is slowing me down.

I have asked the NXT community for help but have not got an answer yet. Rather than be unproductive and simply wait for the NXT community to respond, I have decided to work on an add on for NXT that will also be implemented in Stag.

This add on will open up legacy JSON-RPC commands used in Bitcoind for use by developers. This will make it easy for exchanges and payment processors to accept both NXT and Stag. Rather than having to learn new commands and write new code for NXT and Stag, they will be able to use the Bitcoind commands they are used to and have already written code for.

In addition, full JSON-RPC 2.0 will be supported with named parameters and new, NXT/Stag-specific commands will be added, providing a rich JSON-RPC 2.0 development environment for developers to utilize if they prefer it to the standard NXT and Stag protocols.

Like the standard NXT API server, the RPC server for Stag and NXT will support https connections, and like Bitcoind, it will support RPC username/password protection. The https connections allow for safer transition between the server and the client and the username/password protection protects the server from unwanted access to commands.

The RPC server can be configured for multiple usernames and passwords and assignment of privlege levels to each is supported. Optionally, certain commands can be permitted for use by unauthenticated users on the server. For example, transactions cannot be sent by unauthenticated users, standard users can access information about their accounts and send transactions in their accounts, admins have access to everything.

This user permission level system will be ideal for exchanges who wish to keep each user's balance in user specific accounts rather than a centralized account.

Hopefully I will hear back from the NXT community before this project is finished, otherwise I will have to find the bug the hard way.

How long till the end of first round of distribution so that others then sr. and etc..., can join?

Good luck with Stag.

just sent pm,
hope for big future...

Hope for the better >>>
PM sent ..good luck

Sounds very solid surely will catch eyes of investors.
PM Sent.

just sent pm...

This coin may be worth 5btc, community coin was worth 1-2 btc per person.  

Stag is better than COMM.

gonna look forward for Stag! 
PM sent dev 

plz reserve for me

Soon I will be releasing a password/account/public key/genesis transaction generator for people to use. It will be password protected and I will send out the passwords to individuals who are preregistered. I ask that people who have claimed bounties be patient as I need to do all of you last because you are getting a certain percentage of the total.

I will be using java to sort out members so I don't accidentally get anyone twice.

Once I start recieving the information I will make a list of accounts numbers, transaction signatures, and public keys sorted by account number numerically. This way your Stag account can remain your secret if you wish don't wish it linked to your BTT or NXTForum accounts.

You will be responsible for writing down your information and double checking to make sure I got it. If you lose your password, tell me and we can work something out as long as you can prove that you own the Stag account ID in question.

That just made my morning. "Mood mode modifier" lol!


Then send me a pm. Can't do giveaways on the threads.

interested