Topic: blindmixer.com - CLOSED (Read 1249 times)

We've sent you a pm.

This is sad. Hopefully you get your Bitcoins back. So OP said that if you have any issues, you shouldn't email them but rather post here. I am guessing they are not even watching the email address.

Maybe you could send him a PM as well regarding the issue. I still don't understand why they refused to take our piece of advice of disabling the service and put it on withdrawal mode only.

I did not know that the service would no longer work because I did not see any warning anywhere. In the last month, I had 5-6 transactions and everything worked properly. Yesterday I sent 0.012 btc to blindmixer and then I saw that something was wrong. The transaction status says: pending conf. An error also appears: "Failed to fetch" and "Custodian is not aware of the hookin!". In the meantime, I sent an email to support as well as a private message to the OP, but no one answers. Is there any possibility for me to save those bitcoins?

I made a similar suggestion last month. Maybe they missed it out, but I think it would be a good idea they implement it. So many people out there only check this threads once they realize their money is stuck, not before using the service.


I am glad they extended the deadline.

I agree with your statement. Blindmixer could also simplify everything by leaving a blank site page with a link to this thread (given that email is not processed anyway).

Btw, your answer gave me a great idea! Considering that we are engaged in a complete redesign of the design, having a thin news flyer at the top of the site would be a great idea (in case an important announcement is needed). But the rest of the time it will be hidden.

It's good to see that it is possible to withdraw funds from your platform even though you stop doing business, but why is there no warning or any information anywhere on the site that the service stops working?
I just registered an account and I didn't come across a single notification why is it even possible to create a new account on a service that stops working?

We've extend the deadline already but there are still some deposits left. Please withdraw ASAP.

My problem got solved, thanks

Hello,

I got stuck because i didn't know service was closed. I have a withdrawal pending. It said 1h to process and i started to worry after a few hours. Then i went here and saw service shut down a few weeks ago.
There's no warning on the website and many internet mixer lists still point to this service.

Can i get help to withdraw my 296758 satoshis ?

Regards

This is unfortunate, but I guess everything has a beginning and an ending. At least you are signing out honorably rather than some service that just decide to exit scam. My three suggestions.

• Disable the creation of new wallets that may lead to some unsuspecting members using your service not knowing that it's shutting down
• Maybe add a warning banner or notification on your home page or user dashboard stating that the service is shutting down
• Extend the deadline for withdrawal of money from the current custodian if need be. 2 weeks seems like a narrow window.

Dear all, the current maintainers of blindmixer have decided to no longer continue.

Please withdraw your money from the current custodian before October 1 2023.

If you have issues, do not email, post them here.

Kind regards,

That's what I would expect. But it doesn't matter if you're not reading your email.

It looks like it. There's also no .onion website, so they're just gone. Makes me wonder if they still hold user funds, they were trying to be custodial.

According to whois look up, the domain expired on the 31/08/2023 which about some 4 days back. I have no experience with running a website, but doesn't the administrator receive some email notification informing him that his domain has expired or is about to expire?

I also looked into their GitHub and there has been no activity there in different repositories for over a year, which makes me wonder if it's going to be one of those abandoned projects.

It can happen to anybody. Google (pun intended): $6,006.13.
Microsoft has been there too with passport.com. It's sloppy.

Would you trust a service provider who can't even handle something as basic as domain renewal?

archived

It raises serious questions about their reliability and I wouldn't recommend blindmixer to anyone either, even if they eventually sort out their domain issues. What are your thoughts on this?

It would probably be good if you get a little more involved here and explained all the doubts about your service. Long breaks in absence here are not something that contributes to gaining trust in you, especially in the mixer industry where the competition is severe.
Everything I read here did not attract me to think of using your service.


Shilling about your service in other mixers' ANN threads is entirely wrong. Imagine that we are discussing the advantages of other mixers here, do you want something like that?

Please check your email, we should have responded now. Apologies.

For those curious, the transaction was never propagated due to a flaw in our fee selection, as it was somehow below the min relay fee. We hope to have fixed issue this now.



Well yes, but not quite: see, apart from browser headers and your ip, there is in theory nothing that connects your deposit to your withdrawals, as we use blind signatures in order to break that connection.
However, if you restore (resync) your wallet you will indeed make it very easy for us to infer what deposits and withdrawals belong to you, as you are querying them in quick succession.

This is a real problem we are not entirely sure how to tackle yet. Perhaps we could only allow you to restore your wallet at a certain time of day, so as to make it impossible for us (and cloudflare) to guess if there is just 1 individual restoring, or multiple.



Indeed, it is quite trivial to guess which input belongs to which output, and really boils down to simple probability, especially with a small set of active coins (unused blind signatures).
We acknowledge this. The only way to really overcome this is by growing our userbase. Yes, we could also impose additional restrictions such as not allowing you to withdraw random amounts, or forcing you to wait some time before withdrawing, but that would probably be detrimental to the UX.


We have thought about encrypting the data before sending it to our server and we might revisit this soon because indeed, there are not really any cons apart from the fact that it does not really improve your privacy, but rather gives you the illusion that it does since we can still see your ip and headers associated with an action and connect the dots.
There is really no way around it, to attain privacy you as the client will need to be proactive as well. Use the tor browser and rotate your IP between deposit and withdrawal. Wait a little bit before withdrawing, and don't withdraw the same, close, or division of the original amount.
 
You still might be misunderstanding what blindmixer offers: we don't know the inputs associated with your unblinded coins (though we can of course infer), not just as a promise, but as a fact.
As a result it can happen that you receive your own inputs back, because we do not associate them with "you"; that is, your original deposit. It would be impossible for us to do so due to our usage of blind signatures.

Everyone should want a mixer where this happens as a result of using blind signatures, because it is a symptom of providing true privacy, and not one that is merely based on promises.

We could indeed push the raw transaction hex to users, but it would not have helped in your case as the transaction was simply invalid.

Apologies again and agreed, there are still a lot of bugs we need to iron out and plenty of ways to improve the current product.

Why don't you answer my E-Mails since weeks?

I am waiting now for weeks for my money. The service said the transaction was sent but in fact it was not and my money just got detucted.

See the screenshot:
https://i.imgur.com/BWE8WDB.png

Now check my transaction:
https://blockstream.info/tx/616ddbbf339f8e3572cb847aa5f124d9f6d93a82b93d675a135efeb27b9487bd

It wasn't ever broadcasted to the network!
Even when i see the api calls in the background I see it is not existing.
https://i.imgur.com/TW822Ty.png


I also reversed other requests in background: All incoming and outgoing transactions are transferred without any extra encryption directly through cloudflare... So if cloudflare would record all the traffic it would be very easy to trace back all transactions.
See how it works on my outgoing, non-existing transaction:
https://i.imgur.com/TVnzvn4.png

Thats the same way how incoming transactions are checked... Just using another subdomain... "very secure"
Maybe when using TOR those two subdomains are connected to using different ips but was far as I have seen for now its not like the service is used by hundreds of people at the same time, so because of this and using other header parameters by the browser i am sure it would be possible for a child to figure out which request and wallet belongs to who. In my opinion this is not acceptable.

Because of it the mixer is not that blind as you describe. You could also easy track it back by headers and time. To make the whole thing make a sense you should encrypt the data in the browser somehow using keys only your server and the client nows.
And the whole "blind" thing can't work ever in my opion. Because your server always will know incoming and outgoing transactions to validate. So why don't focus on better mixing? I see people here and also I experienced receiving my coins back. Who needs a mixer where this happens?

I really like the idea of the service, but for the rest it is not usable for production.
There is a lot work to do in improving privacy and you should make the raw transaction code viewable for the sender, so when your node fails to broadcast they can do it manually.

Dear everyone

We have temporarily increased our deposit fees to 1%. We intend to use 100% of these funds to kickstart a signature campaign. Lightning deposits are still free.

Did you use the batch functionality by any chance?

---

Let us know if you have any questions.

Thank you for your message.

I made a mistake.

I saw a well ranked member @LeGaulois that listed the mixer https://bitcointalksearch.org/topic/2023-list-bitcoin-mixers-bitcoin-tumblers-websites-2827109 in a    
"2023 List Bitcoin Mixers Bitcoin Tumblers Websites" 5th position and the link was not a Tor link, I tried with a not insignificant amount of coins

EDIT : The transaction went through!! The coins are on the receiving address! Wow! Thank you for those running the site!

It's seems it's a service run my moral individuals, nice to see!
Be careful out there guys though, it feels great to get back those coins but it felt horrible to have lost them!

It has taken 3 Days, maybe they don't monitor it much or maybe the system required a time lapse or more coins to be deposited for the mixing to occur. Or maybe it's to get me to post on bitcointalk and contact them by email