Topic: | Nxt | Blockchain Platform | Proof of Stake | Official - page 383. (Read 941260 times)

You can resurrect the thread here : https://nxtforum.org/alternate-cryptocurrencies/nxt-clones/

The attack stuff starts on page 2 I think. Two Nxters were trying to prove it was possible but I think they both got busy 

because both jl and CFB said it

Mintpal adding Nxt!

I know I know, not this again   Here is the short history so everyone is up to speed.

A few months ago, Nxt won a vote to get added to Mintpal with some people using donating BTC for votes. Mintpal tried and for whatever reason, couldn't add Nxt so they refunded the money. So nice guys   and that's where it ended.


Something happened today that got their attention (    ) and they tweeted Fatih87SK and Berzerk asking if they wanted Nxt to be listed. But on the condition a 1 BTC payment to cover implementation costs. Naturally, this annoyed some and others didn't mind.

It was too contentious for community funding so the 1 BTC was crowd sourced from the pockets of Nxters who believe it is a good idea. The Nxt is being exchanged as I type and will be sent very soon. I saw in all the discussion they could have Nxt set up in two days so we could have it by Sunday.


Full thread and keep up with the story here >>>> https://nxtforum.org/trading-exchanges/mintpal-and-nxt/100


Two new exchanges in less than a week, not bad going  

The transaction signed by the client includes a timestamp (seconds since genesis block), and as all clones so far have a timestamp more than one day in the future compared to Nxt, why would such a transaction if rebroadcast into the Nxt network be accepted?

Using the same pass phrase is playing with fire. I just don't understand why that attack would work.

Thanks, I'll bookmark that. Added it to my nice big & red ATTENTION post.

Cheers.

Market Cap continues to rise.

100 millions imminent.

Also, you can link the description of the clone attack from the Nxt Glossary >>>> https://wiki.nxtcrypto.org/wiki/Glossary

Based on CfB's posts...

****

Clone Attack

Clone Attack is a scheme for stealing NXTs through the use of a Nxt Clone and can only be successful if you use the same passphrase on Nxt and on a Nxt Clone that uses the same transaction format. Very Important: Do not use your Nxt Account passphrase for anything but your Nxt account. The Clone Attack is a very simple attack so could become common if people are reluctant to generate new Strong Passphrases and reuse their Nxt Passphrase in any Clone. It is described below using a fictitious clone named NEX:

1. You use the same account passphrase in NEX as you have in Nxt.

2. The attacker sends you an amount, say 10000NEX, perhaps at the launch of the Clone, as a giveaway or as part of day to day transactions.

3. Later, the attacker offers to buy 5000NEX from you for 0.01 BTC (this will always be a generous offer for the Clone).

4. The Attacker sends you the Bitcoins in advance and you send him 5000NEX.

5. The attacker then broadcasts the NEX transaction you sent them onto Nxt network, .

Result: 5000NXT is removed from your Nxt account and you only received a small percentage of its value. Again, very important: Do not use your Nxt Account passphrase for anything but your Nxt Account. Anyone can broadcast transactions from a Clone into Nxt and vice versa, if the clone doesn't change the transaction format used in Nxt. So anyone who uses the same Account Passphrase in both can lose NXTs.

****

I yelled 'ATTENTION' in HUGE red letters. Sort of satisfactory.

On a sidenote. I bought some NXT a very long time ago but the wallet back then sucked on so many different levels that I turned to dgex to sell it off at 3k satoshi. Dgex back then sucked at so many levels also that I turned my back to all things related to NXT and vowed to never return. Since I'm in the process of securing my NEM stake through the AE I was more or less forced to take that back today. This Nxtra wallet does in no way resemble what I went through back then. Its all slick as hell and it can be piloted by human beings. Go forth and multiply.

Hugs,

Mrrr

That looks really sick! I love it.

yep thats it thanks

Maybe, he means that:

https://nxtforum.org/nxt-promotion/a-global-corporate-design/msg26136/#msg26136


https://nxtforum.org/general-discussion/help-for-wesley/

What wallet do you mean? http://nxtra.org/nxt-wallet/

Can someone link me the new images of the NXT client wallet.. Saw it a few pages back but lost it.

There are plenty of threads on this board where you can yell scam and be 90% right

Damn. I just, once in my life, wanted to yell SCAM in big red letters. Guess I'll just call them out on the issue instead Thanks.

Maybe he doesn't know anybetter or the prefix really makes broadcasting NTX transactions in NXT impossible.

Just don't risk it and make a new account

Asking you this because NTX:

https://bitcointalksearch.org/topic/annntxfirst-anon-coin-based-nxtbig-bounties-trading-on-bter-now-625668

Is telling people its OK to use their usual NXT account for the fork they planning to launch. Is this a fishing attempt (so to speak?) See the faq at 2/3 of the OP announcement.

Yes! If the fork uses the same address format and protocol (NXTquant and number variables).

Just use different passwords for all forks, then you are good!

I have a quick question. If one were to use the same address/seed on the nxt network and on a fork (some NXT clone) could this in someway be abused? Asking because I recall reading something like this but i can't find it.