Looking at the speed seems like there is at least one server that looking at addresses that have been created using known quotes from literature and another that, and this is quite scary has a lot bigger database, including a simple phrase from Satoshi's whitepaper which is hidden somewhat in the conclusion.
It would have been interesting if he had chosen also two quotes from foreign literature and not translated into English, I somehow doubt they are monitoring really all the possible brain wallets that can be made with all the books in the world. I'm not eager to throw 0.005, especially since I know someone with not so good intention will get that money for that but maybe I'll try with 0.0005 during the weekend.
I would love some feedback on this, in my opinion you still need a pretty decent server to monitor a few tens if not a hundred million addresses.
It would have been interesting if he had chosen also two quotes from foreign literature and not translated into English, I somehow doubt they are monitoring really all the possible brain wallets that can be made with all the books in the world. I'm not eager to throw 0.005, especially since I know someone with not so good intention will get that money for that but maybe I'll try with 0.0005 during the weekend.
The cost of this attack is very-very low, you just generate a list of brainwallets as big as you can handle, and then setup a script that listens to new blocks and very quickly checks if tx have been made to addresses in your list.
I would love some feedback on this, in my opinion you still need a pretty decent server to monitor a few tens if not a hundred million addresses.
I often thought about this too, I speak two languages very well, and about 4 in various degrees, have wondered just how secure it would be if I mixed up some phrases, swapping between English and others. The bonus is that two of those 4 I know don't even have to my knowledge dictionaries so the attacker would have to come from my population of roughly 200,000 people;)
I still do like the brainwallet concept done up like this, but still, I somehow think it's not as secure as my brain believes.
Also agree you would probbaly need SOME kind of cost to run such servers, probably not an individual monitoring what must at least be hundreds of millions of addresses.
