Pages:
Author

Topic: BitcoinSpinner - page 9. (Read 55544 times)

Jan
legendary
Activity: 1043
Merit: 1002
July 23, 2013, 02:02:30 AM
your issue is the same with any wallet software of course. bitcoin-qt multibit, bitcoiJ based wallet for android, and even more blockchain.info.

it would make sense to have an independent service out there that downloads the apk from play store and verifies they correnspond to the source. unfortunately i don't know any such service.
...

They are called volunteers  Wink

Seriously, this could be part of the release process. New versions are released to the beta channel, once a trusted third party has downloaded and verified the build it is released to the general public.
hero member
Activity: 668
Merit: 501
July 23, 2013, 01:44:52 AM
your issue is the same with any wallet software of course. bitcoin-qt multibit, bitcoiJ based wallet for android, and even more blockchain.info.

it would make sense to have an independent service out there that downloads the apk from play store and verifies they correnspond to the source. unfortunately i don't know any such service.

what we can look into is signing of apks from multiple people. i will look into how android handles those.
legendary
Activity: 1862
Merit: 1114
WalletScrutiny.com
July 22, 2013, 07:20:23 PM
you can literally check out the source from github (git clone, gradlew build) and build it yourself. or you can download the signed apk from mycelium.com. of course you need to keep up to date when we release new builds. there will be several changes to the server API while we are in beta.

The problem is that yes, I can do that but even though I call myself an Android Developer (see my sig first item and the pull request for Spinner) I run your binary of Mycelium now just because I'm lazy. You could literally go and take the $400 I currently store there. The only precaution I take is that I don't put my apps on auto-update so I update stuff only for a reason but with some time stamp triggered stealer you wold get me, too.
hero member
Activity: 668
Merit: 501
July 22, 2013, 06:29:26 PM
Regarding the """open source""" via google market issue: could you please make sure the app also makes it into https://f-droid.org/ or explain why this would be inherently less safe? I was just told that f-droid promises verifiability of installed apps but through the idea in here without searching this myself but think it is a big trust issue.
the key issue for me is that it needs to be easy to keep up to date with the recent versions. we produce very frequent builds (sometimes several times a week) and i am looking to automate those as much as possible with gradle. right now, having a single place to publish the apk speeds up the whole process a lot. eventually the updates will become less frequent then the distribution issue can be adressed properly.

you can literally check out the source from github (git clone, gradlew build) and build it yourself. or you can download the signed apk from mycelium.com. of course you need to keep up to date when we release new builds. there will be several changes to the server API while we are in beta.

i don't know enough about the process at f-droid how fast they incorporate changes.  i also doubt that we are elegible because of our license. i think f-droid signs the apks themselves. while highly unlikely any maintainer there _could_ inject any code they want. of course similar things can be said about google play, with the recent APK bugs in the wild. i would personally feel more comfortable with a release signed by the original developers.

i think the optimum way to do it would be for us to provide signed released and f-droid verifies that a certain git tag corresponds to this. i briefly scanned their forums and the process seems highly manual so far.
legendary
Activity: 1862
Merit: 1114
WalletScrutiny.com
July 22, 2013, 05:26:05 PM
Regarding the """open source""" via google market issue: could you please make sure the app also makes it into https://f-droid.org/ or explain why this would be inherently less safe? I was just told that f-droid promises verifiability of installed apps but through the idea in here without searching this myself but think it is a big trust issue.
legendary
Activity: 1708
Merit: 1020
July 22, 2013, 04:58:39 PM
Does anyone other than a handfull of geeks use name coin for associating a name with a bitcoin address?  I never heard of it.
But it might become the standard of crypto coin land.
https://bitmessage.org/forum/index.php/topic,2563.msg4855.html#msg4855 Bitmessage Namecoin integration
Hopefully we will soon do something similar for a Bitcoin client (potentially Electrum)

I also doubt the usefulness of NMC for address shortening. Address shortening is all about usability which is not exactly NMCs strong point.
It is getting much better: https://bitcointalksearch.org/topic/annnmc-namecoin-wallet-qt-with-integrated-name-registration-v375-236375 Namecoin-Qt

I wanted to answer but I will stop trolling now.  Tongue

Admittedly it is still early but a man can dream.
donator
Activity: 2772
Merit: 1019
July 22, 2013, 04:49:34 PM
I simply have to share this awesome demonstration of cold storage spending  Grin
http://www.youtube.com/watch?v=1pDSzOiFgIk
not sure wether I asked this or if it was answered: where does the change go when spending from cold storage?
Back to the cold storage!
That'd be desirable.
confirmed ;-)
thanks Wink
Jan
legendary
Activity: 1043
Merit: 1002
July 22, 2013, 04:21:08 PM
I simply have to share this awesome demonstration of cold storage spending  Grin
http://www.youtube.com/watch?v=1pDSzOiFgIk
not sure wether I asked this or if it was answered: where does the change go when spending from cold storage?
Back to the cold storage!
That'd be desirable.
confirmed ;-)
donator
Activity: 2772
Merit: 1019
July 21, 2013, 07:46:36 AM
I simply have to share this awesome demonstration of cold storage spending  Grin
http://www.youtube.com/watch?v=1pDSzOiFgIk

not sure wether I asked this or if it was answered: where does the change go when spending from cold storage?

Back to the cold storage!

That'd be desirable.
sr. member
Activity: 278
Merit: 251
Bitcoin-Note-and-Voucher-Printing-Empowerer
July 21, 2013, 06:22:07 AM
I simply have to share this awesome demonstration of cold storage spending  Grin
http://www.youtube.com/watch?v=1pDSzOiFgIk

not sure wether I asked this or if it was answered: where does the change go when spending from cold storage?

Back to the cold storage!
donator
Activity: 2772
Merit: 1019
July 21, 2013, 04:13:29 AM
I simply have to share this awesome demonstration of cold storage spending  Grin
http://www.youtube.com/watch?v=1pDSzOiFgIk



not sure wether I asked this or if it was answered: where does the change go when spending from cold storage?
hero member
Activity: 668
Merit: 501
July 21, 2013, 01:51:55 AM
I simply have to share this awesome demonstration of cold storage spending  Grin
http://www.youtube.com/watch?v=1pDSzOiFgIk
When do you estimate 0.6.0 will be out?

it is in the beta channel - if you sign up you have it. (or you build from source)

i have discovered a slight issue with change addresses - almost the hard way.
most users would be unaffected but i think we will not release 0.6.0 as it is now. i will modify how change is handled, and send it back to one of the input addresses (for now). the regular release in the play store will be 0.6.1.
once we have HD wallets we will of course generate a new change address for each TX.

full member
Activity: 198
Merit: 100
July 19, 2013, 08:57:13 AM
I simply have to share this awesome demonstration of cold storage spending  Grin
http://www.youtube.com/watch?v=1pDSzOiFgIk
When do you estimate 0.6.0 will be out?
donator
Activity: 2772
Merit: 1019
July 19, 2013, 07:05:49 AM
Cold storage spending and swiping: Basically scan key & spend, your key never hits flash storage

This is quite cool! It would it possible to use paper wallets for spending in practice, and not just use-once.

I would like to reiterate my request for some manual address entry possibility (for use when you absolutely have to and no QR code is available).
Our plan is to allow address entry using shortners like btc.to and firstbits in addition to full length addresses. We are however not ready for this yet. If anyone knows an open-source firstbits implementation I'd be interested in a link. In the meantime, wouldn't the clipboard do the trick for you in those rare cases where you need manual entry?

Dont you already have the means to implement firstbits in your server?

bitcoin-abe has firstbits functionality. however it seems a bit overkill for your case to setup a bitcoin-abe instance just for that.

couldn't you use blockchain.info api or some publicly accessible bitcoin-abe instance for firstbits lookup?
My intention is absolutely to add it to the server. I am looking for a way to save development bandwidth by getting inspiration on how to do this right in the first stab.

Seems that firstbits.com has been discontinued, and firstbits.net is forwarding to blockchain.info. Abe seems not to follow the same rules as blockchain.info. I'll start a discussion with SgtSpike & piuk on exactly which rules to use for firstbits.

John Tobeys implementation is only "resembling Firstbits" (his words), so I guess you're correct in saying it's different. Wouldn't hurt to ask him, though. He's very responsive and helpful and has probably thought about different (implementation) approaches recently.
Jan
legendary
Activity: 1043
Merit: 1002
July 19, 2013, 06:27:30 AM
I simply have to share this awesome demonstration of cold storage spending  Grin
http://www.youtube.com/watch?v=1pDSzOiFgIk

hero member
Activity: 668
Merit: 501
July 19, 2013, 05:09:31 AM
Does anyone other than a handfull of geeks use name coin for associating a name with a bitcoin address?  I never heard of it.

I also doubt the usefulness of NMC for address shortening. Address shortening is all about usability which is not exactly NMCs strong point.
Jan
legendary
Activity: 1043
Merit: 1002
July 19, 2013, 03:15:30 AM
Cold storage spending and swiping: Basically scan key & spend, your key never hits flash storage

This is quite cool! It would it possible to use paper wallets for spending in practice, and not just use-once.

I would like to reiterate my request for some manual address entry possibility (for use when you absolutely have to and no QR code is available).
Our plan is to allow address entry using shortners like btc.to and firstbits in addition to full length addresses. We are however not ready for this yet. If anyone knows an open-source firstbits implementation I'd be interested in a link. In the meantime, wouldn't the clipboard do the trick for you in those rare cases where you need manual entry?
You might want to consider spending to Namecoin IDs (you can save a Bitcoin address in a Namecoin ID).
Setting up a namecoin system for this seems like a lot of work.
Does anyone other than a handfull of geeks use name coin for associating a name with a bitcoin address?  I never heard of it.
Jan
legendary
Activity: 1043
Merit: 1002
July 19, 2013, 03:12:27 AM
Cold storage spending and swiping: Basically scan key & spend, your key never hits flash storage

This is quite cool! It would it possible to use paper wallets for spending in practice, and not just use-once.

I would like to reiterate my request for some manual address entry possibility (for use when you absolutely have to and no QR code is available).
Our plan is to allow address entry using shortners like btc.to and firstbits in addition to full length addresses. We are however not ready for this yet. If anyone knows an open-source firstbits implementation I'd be interested in a link. In the meantime, wouldn't the clipboard do the trick for you in those rare cases where you need manual entry?

Dont you already have the means to implement firstbits in your server?

bitcoin-abe has firstbits functionality. however it seems a bit overkill for your case to setup a bitcoin-abe instance just for that.

couldn't you use blockchain.info api or some publicly accessible bitcoin-abe instance for firstbits lookup?
My intention is absolutely to add it to the server. I am looking for a way to save development bandwidth by getting inspiration on how to do this right in the first stab.

Seems that firstbits.com has been discontinued, and firstbits.net is forwarding to blockchain.info. Abe seems not to follow the same rules as blockchain.info. I'll start a discussion with SgtSpike & piuk on exactly which rules to use for firstbits.
legendary
Activity: 1708
Merit: 1020
July 19, 2013, 01:49:53 AM
Cold storage spending and swiping: Basically scan key & spend, your key never hits flash storage

This is quite cool! It would it possible to use paper wallets for spending in practice, and not just use-once.

I would like to reiterate my request for some manual address entry possibility (for use when you absolutely have to and no QR code is available).
Our plan is to allow address entry using shortners like btc.to and firstbits in addition to full length addresses. We are however not ready for this yet. If anyone knows an open-source firstbits implementation I'd be interested in a link. In the meantime, wouldn't the clipboard do the trick for you in those rare cases where you need manual entry?
You might want to consider spending to Namecoin IDs (you can save a Bitcoin address in a Namecoin ID).
donator
Activity: 2772
Merit: 1019
July 19, 2013, 01:42:36 AM
Cold storage spending and swiping: Basically scan key & spend, your key never hits flash storage

This is quite cool! It would it possible to use paper wallets for spending in practice, and not just use-once.

I would like to reiterate my request for some manual address entry possibility (for use when you absolutely have to and no QR code is available).
Our plan is to allow address entry using shortners like btc.to and firstbits in addition to full length addresses. We are however not ready for this yet. If anyone knows an open-source firstbits implementation I'd be interested in a link. In the meantime, wouldn't the clipboard do the trick for you in those rare cases where you need manual entry?

Dont you already have the means to implement firstbits in your server?

bitcoin-abe has firstbits functionality. however it seems a bit overkill for your case to setup a bitcoin-abe instance just for that.

couldn't you use blockchain.info api or some publicly accessible bitcoin-abe instance for firstbits lookup?
Pages:
Jump to: