Bitcoin Forum>Bitcoin>Project Development
Pages:
Author

Topic: cryptsy (Read 32329 times)

merelcoin
hero member
Activity: 675
Merit: 504
cryptsy
March 24, 2016, 01:31:36 AM
#66
Quote from: SparkedDev on March 18, 2016, 10:01:18 AM
Quote from: Shibashi Dogemoto on March 18, 2016, 09:45:22 AM
Quote from: WORK4U on March 17, 2016, 04:56:59 AM
If you point me to the correct github I probably can compile this

Please read the full thread before you do... The original scripts had multiple SQL injection vulnerability's, and there was even some talk about backdoors and phone-home parts in the script (i never read the code, so i cannot verify this)
sql injection stuff is an easy fix
backdoors depending on how many files they got could be hard to find if you don't know what your looking for.
It's an easy fix, but very time consuming. I guess the best idear would be to rewrite all database calls to prepared statements, but this will take you a couple minutes every time there was a query executed in the script.

To find backdoors, you're right: somebody has to digg deep and really understand the inner workings of the script in order to properly fix everything.

Quote from: noel57 on March 23, 2016, 04:18:25 PM
https://github.com/crypto-maniac/Cryptsy-Clone is no longer available 404 error, is there anybody with this clone?

https://github.com/merelcoin/Cryptsy-Clone
Use it wisely, keep in mind: SQL injection, backdoor, phone-home . I just cloned it, didn't fix a single error!
noel57
sr. member
Activity: 392
Merit: 250
Re: cryptsy
March 23, 2016, 04:18:25 PM
#65
https://github.com/crypto-maniac/Cryptsy-Clone is no longer available 404 error, is there anybody with this clone?
SparkedDev
hero member
Activity: 896
Merit: 1000
Re: cryptsy
March 18, 2016, 10:01:18 AM
#64
Quote from: Shibashi Dogemoto on March 18, 2016, 09:45:22 AM
Quote from: WORK4U on March 17, 2016, 04:56:59 AM
If you point me to the correct github I probably can compile this

Please read the full thread before you do... The original scripts had multiple SQL injection vulnerability's, and there was even some talk about backdoors and phone-home parts in the script (i never read the code, so i cannot verify this)
sql injection stuff is an easy fix
backdoors depending on how many files they got could be hard to find if you don't know what your looking for.
Shibashi Dogemoto
hero member
Activity: 840
Merit: 1000
Re: cryptsy
March 18, 2016, 09:45:22 AM
#63
Quote from: WORK4U on March 17, 2016, 04:56:59 AM
If you point me to the correct github I probably can compile this

Please read the full thread before you do... The original scripts had multiple SQL injection vulnerability's, and there was even some talk about backdoors and phone-home parts in the script (i never read the code, so i cannot verify this)
WORK4U
newbie
Activity: 12
Merit: 0
Re: cryptsy
March 17, 2016, 04:56:59 AM
#62
If you point me to the correct github I probably can compile this
CB_project
member
Activity: 86
Merit: 10
Re: cryptsy
February 17, 2016, 11:38:40 AM
#61
Have some one compile this script? Is this still working?
davien
sr. member
Activity: 462
Merit: 250
Re: cryptsy
January 29, 2016, 11:53:11 AM
#60
Quote from: onlinedragon on January 29, 2016, 08:21:47 AM
I don't think Cryptsy still have an good name. Don't think also a cloned website will be trusted after all the troubles with Cryptsy.
+1 . Better redesign and rename it right now Cheesy
Shibashi Dogemoto
hero member
Activity: 840
Merit: 1000
Re: cryptsy
January 29, 2016, 08:26:26 AM
#59
Is there any other clone alive? I wouldn't want to start an exchange, but i'd be interested in installing a copy on one of my machines at home, just to see if i'd get it running Smiley
onlinedragon
hero member
Activity: 1036
Merit: 501
Re: cryptsy
January 29, 2016, 08:21:47 AM
#58
I don't think Cryptsy still have an good name. Don't think also a cloned website will be trusted after all the troubles with Cryptsy.
Nudies Fluffer
newbie
Activity: 40
Merit: 0
Re: cryptsy
January 29, 2016, 08:12:25 AM
#57
Interesting project you have going on here!

Must be a hell of an undertaking to write something like this script.
Did you just clone the front end and then have your friend do the back-end/engine?

I am going to look deeper into the code but so far doesn't look to terribly bad.
senyorito123
hero member
Activity: 1764
Merit: 505
20BET - Premium Casino & Sportsbook
Re: cryptsy
January 28, 2016, 05:58:34 PM
#56
anybody got the real source code ? please upload it Smiley we will be grateful to download it Smiley
wowyeahthatsit
newbie
Activity: 11
Merit: 0
Re: cryptsy
January 27, 2016, 10:33:05 AM
#55
github link has been removed
any trust member send me via PM clean code without any callback to gov,fbi,log & other bullshits
alwinlinzee
sr. member
Activity: 434
Merit: 250
Re: cryptsy
January 24, 2016, 10:46:28 AM
#54
Quote from: yohanip on January 24, 2016, 10:34:48 AM
Unfortunately the link given by the thread starter is dead, and reading through a couple pages back the code was somehow had a backdoor or something related to it?
I guess as much because that script worth a fortune and for someone to want to give it away for free is suspicious at least he needs to recover his money somehow.
yohanip
member
Activity: 118
Merit: 100
A Programmer
Re: cryptsy
January 24, 2016, 10:34:48 AM
#53
Unfortunately the link given by the thread starter is dead, and reading through a couple pages back the code was somehow had a backdoor or something related to it?
alwinlinzee
sr. member
Activity: 434
Merit: 250
Re: cryptsy
January 24, 2016, 10:27:21 AM
#52
This without doubt is a good step in the right directions but what about the back doors and other hidden things that could make the website to be easy to attack.
tyz
legendary
Activity: 3360
Merit: 1533
Re: cryptsy
January 23, 2016, 06:32:23 AM
#51
Thanks for sharing your opinion. I looked into the source code a while ago, but I have never run a instance of the exchange.
I planned to do but your writing helps me the get an better opinion about it.

Quote from: JustBob on January 23, 2016, 03:53:13 AM
I managed to get an instance running here on my localnet to play with, but it took a bit of butchering to even get it running at all.
I also managed to get at least the trollbox, and probably user voting to run as well.(haven't tried the user voting yet)
Within a couple days I'll begin to go through the scripts and other various files to get rid of the crypto-maniac.com "rewrite" specifics.
Maybe then once I'm certain everything works "ok", I'll setup a repository, and maybe then, "we" can both start working where crypto-maniac left off, and maybe even toss him a bit for his fine efforts, as this exchange is actually pretty cool, and very well featured compared to most of the other "open source" offerings available.

And I don't mean to sound nasty.....but it's almost pathetic that folks chose to lambast his fine efforts here at "hate central" rather than to step in and help.

Anyways to get the chatbox/trollbox running one has to run the chat server is a seperate proccess.

On Ubuntu you call it, using either a terminal on the server version or an xterm on the desktop version using:

Code:
sudo php -q /path/to/chat/server.php

JustBob
member
Activity: 113
Merit: 10
Re: cryptsy
January 23, 2016, 04:04:47 AM
#50
Forgot to mention, once the chat server is running, the chat client just kinda' automagically appears in the lower right hand corner of all user screens.
JustBob
member
Activity: 113
Merit: 10
Re: cryptsy
January 23, 2016, 03:53:13 AM
#49
I managed to get an instance running here on my localnet to play with, but it took a bit of butchering to even get it running at all.
I also managed to get at least the trollbox, and probably user voting to run as well.(haven't tried the user voting yet)
Within a couple days I'll begin to go through the scripts and other various files to get rid of the crypto-maniac.com "rewrite" specifics.
Maybe then once I'm certain everything works "ok", I'll setup a repository, and maybe then, "we" can both start working where crypto-maniac left off, and maybe even toss him a bit for his fine efforts, as this exchange is actually pretty cool, and very well featured compared to most of the other "open source" offerings available.

And I don't mean to sound nasty.....but it's almost pathetic that folks chose to lambast his fine efforts here at "hate central" rather than to step in and help.

Anyways to get the chatbox/trollbox running one has to run the chat server is a seperate proccess.

On Ubuntu you call it, using either a terminal on the server version or an xterm on the desktop version using:

Code:
sudo php -q /path/to/chat/server.php
SparkedDev
hero member
Activity: 896
Merit: 1000
Re: cryptsy
October 04, 2015, 04:58:56 PM
#48
Quote from: Nexious on September 06, 2015, 02:34:06 AM
I would highly advise against using that source code in any production environment, none the less good on the creator for open sourcing it.

Aslong as its fixed and changed up nothing is wrong with using it.
Nothing in this source code can't be fixed im currently updating it to the latest version of php 5.6.14
Nexious
full member
Activity: 140
Merit: 100
Nexious.com Admin
Re: cryptsy
September 06, 2015, 02:34:06 AM
#47
I would highly advise against using that source code in any production environment, none the less good on the creator for open sourcing it.
Pages:
Bitcoin Forum>Bitcoin>Project Development
Jump to: