Pages:
Author

Topic: New 64 Bit Random Search Pool Project (Read 418 times)

legendary
Activity: 2870
Merit: 7490
Crypto Swap Exchange
August 28, 2021, 04:04:07 AM
#27
I do not know about mediafire, can you elaborate on the differences vs github?
Mediafire is an example, sites like that are for sharing any type of files including .exe files such as yours while github is first and foremost a "code" sharing platform even though it has no restrictions on file types being uploaded.

You could just say uploading .exe to GitHub repository (instead of Mediafire or similar website) could give few people false sense of security (since few people treat GitHub as safe place to download software directly from the developer).

Basically, it's in our interest to open-source the 64-bit random pool code so that Linux users can run it (you won't believe how many Linux users got nvidia cards attached despite the poor graphics support). I think the sensitive parts are limited to a few lines of code and variables, I'll see if we can just feed that information through a makefile and #define constants to hide those parts.

Alternatively you could provide AppImage file which should work for most linux distro.

P.S. Nvidia GPU popular among Linux users becuase it offer better price/performance and exclusive feature (such as CUDA which frequently used on heavy computer science software).
legendary
Activity: 1568
Merit: 6660
bitcoincleanup.com / bitmixlist.org
August 28, 2021, 02:06:38 AM
#26
Bottom line is that there was a big elephant in the room that needed to be addressed and I would have probably never said anything if the .exe was uploaded anywhere else like mediafire instead of github.

I actually trust Mediafire and co. less than other platforms because there's an abundance of malware on there as a result of it being used to host piracy warez.

None of the software does an auto pay out. That will all be done manually.

Can confirm.



Basically, it's in our interest to open-source the 64-bit random pool code so that Linux users can run it (you won't believe how many Linux users got nvidia cards attached despite the poor graphics support). I think the sensitive parts are limited to a few lines of code and variables, I'll see if we can just feed that information through a makefile and #define constants to hide those parts.
legendary
Activity: 3472
Merit: 10611
August 28, 2021, 12:22:15 AM
#25
I do not know about mediafire, can you elaborate on the differences vs github?
Mediafire is an example, sites like that are for sharing any type of files including .exe files such as yours while github is first and foremost a "code" sharing platform even though it has no restrictions on file types being uploaded.
full member
Activity: 1232
Merit: 242
Shooters Shoot...
August 27, 2021, 11:29:27 PM
#24
Why would I trust you or NotATether with the source code? Because maybe if you compile it people will be more receptive because you have x number of merit? Nah. Who's to say you wouldn't show it or give it to someone? Or who says you won't take the code and tweak it for your own benefit?
I never said such a thing and that is not what open source means.

Being open source means anyone can see the code and compile it for themselves if they choose to. Otherwise trusting X over Y with an already complied binary is the same problem all over again no matter who X and Y are or how much merit they have!
For example do you think I run Electrum because I trust Thomas. V.? Absolutely not. I use it because I can see every single line of code and can compile it myself for my own use.

Bottom line is that there was a big elephant in the room that needed to be addressed and I would have probably never said anything if the .exe was uploaded anywhere else like mediafire instead of github.
I was addressing you and NF, in the same post; he mentioned "giving more credibility" if x y and z compiled it.

I have no issues hanging it anywhere as there is no malicious code in it. I do not know about mediafire, can you elaborate on the differences vs github?
legendary
Activity: 3472
Merit: 10611
August 27, 2021, 10:50:28 PM
#23
Why would I trust you or NotATether with the source code? Because maybe if you compile it people will be more receptive because you have x number of merit? Nah. Who's to say you wouldn't show it or give it to someone? Or who says you won't take the code and tweak it for your own benefit?
I never said such a thing and that is not what open source means.

Being open source means anyone can see the code and compile it for themselves if they choose to. Otherwise trusting X over Y with an already complied binary is the same problem all over again no matter who X and Y are or how much merit they have!
For example do you think I run Electrum because I trust Thomas. V.? Absolutely not. I use it because I can see every single line of code and can compile it myself for my own use.

Bottom line is that there was a big elephant in the room that needed to be addressed and I would have probably never said anything if the .exe was uploaded anywhere else like mediafire instead of github.
full member
Activity: 1232
Merit: 242
Shooters Shoot...
August 27, 2021, 01:37:23 PM
#22
Just a quick response for now, will discuss more later:
Here is the problem, it has to remain closed source or people running the program could change a few lines of code and steal the bitcoin that everyone in the pool is working hard for. That is the only reason why it is closed source.

Wait, so the client controls the 'payout' or how could one's modification of the client on their side change how other contributors are paid out?  Huh

I think it should be possible to code it in a way that the client, which people run, is open source, so e.g. it can be compiled by users themselves and malware for example can be ruled out etc., but the server side software remains closed (similar to when mining with a pool where the pool software is closed and the client software like cgminer is open).

Or are you worried of someone modifying the client and distributing that version so that benefits go to them?
In that case, it should be the same way as when downloading Bitcoin core: you have a GitHub page where people are always pointed to, always recommended not to get it from anywhere else and on the GitHub they can either read and compile the source themselves or download and verify signed binaries that have been compiled for them by you.
None of the software does an auto pay out. That will all be done manually.

If you know what the pool is about and understand how the client works in its original form and how the actual cracking software works in its original form, you can conclude how easy it would be to manipulate work done, i.e. your percentage of work done to receive more than your fair share or flat out take the private key and claim all the BTC for yourself.

Some people have already tested the programs. I can see how many people use a different cracking software to try and run with the client software. But without the version on github, they can run their program all day but receive zero credit because it is "fake" work/not validated. That is because there are 2 fail safes built into the software that detect bad actors and does not give them credit. One on the client side and one on the cracking side. If either are exposed, then the pool is worthless.

If you have ever ran TDs 64 bit pool and actually watch what is going on when your machine is running the program, which by the way, it is also closed course (hmmmm, I wonder why), you can see the vulnerabilities in it. But you have to pay attention...

I will discuss options with NotATether in private to see if their is a viable solution.
legendary
Activity: 3668
Merit: 6382
Looking for campaign manager? Contact icopress!
August 27, 2021, 01:07:47 PM
#21
And this is your choice, if you do not join because I don't have enough numbers by my merit, that is fine. But I will leave you with this, just because you sit in a garage, doesn't mean you're a car.

Clearly. I hope that I didn't offend you, but I've learned to be very careful with what I install/run.
It's not only about merit, it's also about the fact he's older here, more active, I interacted more with him than you... and higher ranked by the forum.
Usually the lower the rank, the higher the chance it does something fishy. It doesn't mean that you did or you will do that, clearly. It's just chances and numbers.

As I said, a higher rank can give more credibility to everything and attract more people to the project. Whether you do that or not, it's entirely your choice.


In fact I'm the one who modified and compiled the Kangaroo #120 server (more details in the discord server linked in the OP)

That's good to know. I'm still a bit wary about the client though.
full member
Activity: 1232
Merit: 242
Shooters Shoot...
August 27, 2021, 10:29:55 AM
#20
@WanderingPhilospher We should probably keep 2% of the remaining funds after the privkey finder bounty is accounted for so that we have (at least a little) funding for maintaining projects like this.
Well this is a closed source .exe file and the fact that it is uploaded to github doesn't mean it is safe to run. OP might as well be keeping 100% of any puzzle that the users may solve or worse the file could be doing a similar thing to the other puzzle solver (Large Bitcoin Collider) and execute any arbitrary scripts on users computers to do whatever... Wink
Alright, to touch on your comments more. I get what you are saying and it is what it is. But I know you are an intelligent person pooya, and if you would just think about things regarding this thread and the nature of the pool, I would hope you would understand why it has to be closed source. There are details in the first post that elude to the "why" if you read it closely.

Trust is a serious thing. It is earned, I get that. But that works both ways. Why would I trust you or NotATether with the source code? Because maybe if you compile it people will be more receptive because you have x number of merit? Nah. Who's to say you wouldn't show it or give it to someone? Or who says you won't take the code and tweak it for your own benefit?

Trust...maybe I can put my own spin on that. People who do join the pool can trust and know that there is only one person who has the source code and it will not get passed from person to person, and maybe they can rest easier knowing that you or someone else who I could possibly give the code to, didn't pass it on to their friend, and their friends friend, etc. and one of those persons manipulated the code for their own benefit.

The bottom line, I am the only one with the source code. I have tried to think of every angle to keep someone from manipulating the pool and taking away from people who are actually participating in the pool.

Again, it's not about the money for me. It's about the concept. About doing something that mostly everyone says can't be done or will take a long time.

I have people who will vouch for me when it comes to being genuine. I send people eth/BTC just for helping out with things; even though they didn't expect it, because I know time is precious for everybody. Just last night, I tried to send a brilliant programmer some eth just for chatting with me for 30 minutes or so about how their particular program works and why they felt another program tasked the CPU more than this other one...just for sharing their thoughts and listening to mine. So yeah, it's not about the money for me. As Doc Holliday said, "It's about the reckoning." lol

People will make a choice to join the pool and run the program, or they won't.  But I at least hope they understand why it has to be closed source and won't trust me any less just because a few people with a lot of merit say I might as well keep it all, or lump me in with some individual from another project, etc.

full member
Activity: 1232
Merit: 242
Shooters Shoot...
August 27, 2021, 10:07:37 AM
#19
I'm working with the OP and two other people in our group DM on discord - I'll ask the other two if they've seen the source (@yoyodapro is the one compiling so he should at least know about it).

I think that if it would be you at least compiling the source it would give more credibility to the project (then I may even consider joining in when I could, although my NVidia card is on a laptop).
And this is your choice, if you do not join because I don't have enough numbers by my merit, that is fine. But I will leave you with this, just because you sit in a garage, doesn't mean you're a car.
legendary
Activity: 1568
Merit: 6660
bitcoincleanup.com / bitmixlist.org
August 27, 2021, 05:46:39 AM
#18
I'm working with the OP and two other people in our group DM on discord - I'll ask the other two if they've seen the source (@yoyodapro is the one compiling so he should at least know about it).

I think that if it would be you at least compiling the source it would give more credibility to the project (then I may even consider joining in when I could, although my NVidia card is on a laptop).

In fact I'm the one who modified and compiled the Kangaroo #120 server (more details in the discord server linked in the OP)
legendary
Activity: 3668
Merit: 6382
Looking for campaign manager? Contact icopress!
August 27, 2021, 02:42:04 AM
#17
I'm working with the OP and two other people in our group DM on discord - I'll ask the other two if they've seen the source (@yoyodapro is the one compiling so he should at least know about it).

I think that if it would be you at least compiling the source it would give more credibility to the project (then I may even consider joining in when I could, although my NVidia card is on a laptop).
legendary
Activity: 1568
Merit: 6660
bitcoincleanup.com / bitmixlist.org
August 27, 2021, 12:46:51 AM
#16
@WanderingPhilospher We should probably keep 2% of the remaining funds after the privkey finder bounty is accounted for so that we have (at least a little) funding for maintaining projects like this.
Well this is a closed source .exe file and the fact that it is uploaded to github doesn't mean it is safe to run. OP might as well be keeping 100% of any puzzle that the users may solve or worse the file could be doing a similar thing to the other puzzle solver (Large Bitcoin Collider) and execute any arbitrary scripts on users computers to do whatever... Wink

I'm working with the OP and two other people in our group DM on discord - I'll ask the other two if they've seen the source (@yoyodapro is the one compiling so he should at least know about it).
legendary
Activity: 3472
Merit: 10611
August 26, 2021, 11:34:59 PM
#15
@WanderingPhilospher We should probably keep 2% of the remaining funds after the privkey finder bounty is accounted for so that we have (at least a little) funding for maintaining projects like this.
Well this is a closed source .exe file and the fact that it is uploaded to github doesn't mean it is safe to run. OP might as well be keeping 100% of any puzzle that the users may solve or worse the file could be doing a similar thing to the other puzzle solver (Large Bitcoin Collider) and execute any arbitrary scripts on users computers to do whatever... Wink
newbie
Activity: 13
Merit: 0
August 26, 2021, 08:42:57 PM
#14
Yeah, it would be our luck everyone sticks to the C D E F ranges and the key is in the 8 range lol

Highly unlikely it would be in the 8 range. So far with all the found keys there have been no duplicates. Beginning with 137 only 8 and B have been used, therefore if anything it's more than likely in either 9, A, C, D, E, F ranges.

1378
134E
124A
126C
135D
125D
136D
137B
1349
124E
126E
126A
127E
1269
127F
137
full member
Activity: 1232
Merit: 242
Shooters Shoot...
August 24, 2021, 11:25:48 PM
#13
Well I am not sure who would hold the "developer fee". I'm not interested in the money to be honest; for me it's about the challenge, the proof of concept.

I'll make a 2-of-4 multisig wallet and each of you can get a key (the fourth person being dlystyr)

Since this proof of concept project does offer a reward, .04 BTC for the key finder, I've been thinking about opening different ports up for different ranges.

That way people can search in whichever range they feel the key is in.

I'm willing to do 8, one for each top range.

Example:

port 80 = 800...8FF
port 81 = 900...9FF

all the way down to

port 87 = F00...FFF

What say you?

Or at least 2 ports, 1 for 800...BFF and 1 port for C00...FFF, since most people think the key lies in the C to F range.

zahid888 exhausted part of a range IIRC and didn't find anything, I think you'll end up just wasting ports, than when everybody's throwing their hashpower at the full range.
Yeah, it would be our luck everyone sticks to the C D E F ranges and the key is in the 8 range lol
legendary
Activity: 1568
Merit: 6660
bitcoincleanup.com / bitmixlist.org
August 24, 2021, 11:13:19 PM
#12
Well I am not sure who would hold the "developer fee". I'm not interested in the money to be honest; for me it's about the challenge, the proof of concept.

I'll make a 2-of-4 multisig wallet and each of you can get a key (the fourth person being dlystyr)

Since this proof of concept project does offer a reward, .04 BTC for the key finder, I've been thinking about opening different ports up for different ranges.

That way people can search in whichever range they feel the key is in.

I'm willing to do 8, one for each top range.

Example:

port 80 = 800...8FF
port 81 = 900...9FF

all the way down to

port 87 = F00...FFF

What say you?

Or at least 2 ports, 1 for 800...BFF and 1 port for C00...FFF, since most people think the key lies in the C to F range.

zahid888 exhausted part of a range IIRC and didn't find anything, I think you'll end up just wasting ports, than when everybody's throwing their hashpower at the full range.
full member
Activity: 1232
Merit: 242
Shooters Shoot...
August 24, 2021, 11:06:58 PM
#11
Since this proof of concept project does offer a reward, .04 BTC for the key finder, I've been thinking about opening different ports up for different ranges.

That way people can search in whichever range they feel the key is in.

I'm willing to do 8, one for each top range.

Example:

port 80 = 800...8FF
port 81 = 900...9FF

all the way down to

port 87 = F00...FFF

What say you?

Or at least 2 ports, 1 for 800...BFF and 1 port for C00...FFF, since most people think the key lies in the C to F range.

full member
Activity: 1232
Merit: 242
Shooters Shoot...
August 24, 2021, 11:02:34 PM
#10
@WanderingPhilospher We should probably keep 2% of the remaining funds after the privkey finder bounty is accounted for so that we have (at least a little) funding for maintaining projects like this.

I agree, that or 0.5% from all users as a developer fee to contribute towards hosting, development, etc.
Well I am not sure who would hold the "developer fee". I'm not interested in the money to be honest; for me it's about the challenge, the proof of concept.
I don't want to take money out of people's pockets for helping out in the hunt. If there is to be a developer fee, I'll gladly donate 2% of my earnings so all the hunters out there can keep hunting and not worry about fees.

If we ever move forward out of proof of concept, maybe then everyone can discuss what they deem as fair for any maintenance fees such as server costs, domain names, etc.
jr. member
Activity: 50
Merit: 7
August 24, 2021, 12:22:42 PM
#9
@WanderingPhilospher We should probably keep 2% of the remaining funds after the privkey finder bounty is accounted for so that we have (at least a little) funding for maintaining projects like this.

I agree, that or 0.5% from all users as a developer fee to contribute towards hosting, development, etc.
legendary
Activity: 1568
Merit: 6660
bitcoincleanup.com / bitmixlist.org
August 24, 2021, 11:41:18 AM
#8
@WanderingPhilospher We should probably keep 2% of the remaining funds after the privkey finder bounty is accounted for so that we have (at least a little) funding for maintaining projects like this.
Pages:
Jump to: