NXT :: descendant of Bitcoin - Updated Information - page 500.

robinf

sr. member

Activity: 252

Merit: 250

Quote from: lingdu22 on March 06, 2014, 06:59:05 AM

Quote from: landomata on March 06, 2014, 03:56:18 AM

ANNOUNCEMENT

NMAC PRIVATE SHARE PLACEMENT

FINAL SHARE ALLOCATION LIST

pandaisftw
abctc
I8orre
Jef-Diesel
butterclown
eXtatiC
Shin
swartzfeger
LemonAndFries
Allwelder
Opticarrier
kodtycoon
smaragda
eB101
Damelon
KyLins
rushi
shenjie
voldemort628
redsn0w
stoneone
bezbezbez
xcn
sashsh
Igmaca
Chanc3r
Vega
Rickyjames

NOTE:
1) If you are in the above list please PM me your account number where you want the shares transferred to.

2) When I receive your PM I will reply with your confirmed shares.

3) If I do NOT receive a PM from you before Friday, March 14th, then your share allocation will be forfeited to the next waiting person on the list.

3) PLEASE DO NOT QUOTE THIS POST & MENTION YOUR ACCOUNT NO. IN THIS THREAD AS IT WILL NOT COUNT. IF THIS IS DONE TWICE I WILL REMOVE YOU FROM THE LIST.

SO PLEASE ONLY PM me....thanks.

Best regards,
Landomata
Secretary
Nxt Mobile Applications Company

P.S:
3rd Tier: 25 million shares

This allocation will be totally sold on the Nxt Asset Exchange. The shares will be sold on AE launch day.

Hi! Everyone!
I've compared the shareholder list on Mar 1st and the list above. There's something interesting in the two list.
Here is the final namelist:
pandaisftw
abctc
I8orre
Jef-Diesel
butterclown
eXtatiC
Shin
swartzfeger
LemonAndFries
Allwelder
Opticarrier
kodtycoon
smaragda
eB101
Damelon
KyLins
rushi
shenjie
voldemort628
redsn0w
stoneone
bezbezbez
xcn
sashsh
Igmaca
Chanc3r
Vega
Rickyjames

And the list on Mar 1st below:
pandaisftw
danniego
Kbk00
abctc
cromaclear
neer.g
UtopianFuture
benowl
Hash
butterclown
eXtatiC
Shin
swartzfeger
Ezravdb
okaynow
LemonAndFries
Allwelder
kodtycoon
smaragda
eB101
Damelon
KyLins
rushi
shenjie
voldemort628
redsn0w
pt2002
stoneone
bezbezbez
xcn
sashsh
Igmaca
Chanc3r
Vega
Rickyjames
Arafel71
4iribasik
lingdu22
qbd1313
Leetrump
Kisa
Achim
Crtcl
Yanlap
fgbnbb
Perado
Chinabreak123
xzhybbs
Tercel
Robinf
fnjing21t
Ziggy
Miramare
gmoneycoin
oldnbold
Hala
dimirfu

What is the mode the list of the screening? Why can literally change?

igmaca

full member

Activity: 168

Merit: 100

Quote from: igmaca on March 06, 2014, 06:39:11 AM

Quote from: jl777 on March 06, 2014, 06:14:05 AM

Quote from: mcjavar on March 06, 2014, 06:00:03 AM

Quote from: Jean-Luc on March 06, 2014, 05:56:38 AM

Quote from: mcjavar on March 06, 2014, 05:25:07 AM

If you´ve read my PM, I am trying to help you build a core dev team...

Yes, I need to think about how this should be done. Before the source was public, the problem was how to decide who is trustworthy. Now that it is open, how do we decide who is good enough?

Companies conduct technical interviews. Those will filter out the completely ignorant, but for more experienced people it becomes difficult to judge who is better. I am also not confident in my own skills as an interviewer, and also some good people perform bad at interviews because of the stress and pressure to perform. Especially for an open source project, I don't feel doing interviews is the right approach.

For paid developers, we could consider trial projects, which they would do on their own fork of the repository, and if at the end we like the code and integrate it into the main repository, we accept them as paid developers. This would mean they would have to spend a few weeks without pay at first. Or, we can take the risk and do it as a one month paid contract, with the option of making it permanent. This would be something the NXTtechdevfund committee should discuss.

I would need to research how other open source projects decide who to accept and trust, e.g. how the linux kernel development is organized, and see if we can adopt their project management practices.

In terms of skill set, being a very good Java developer is the only requirement. The code does not depend strongly on any specific tool or library. We use a database, so some familiarity with relational database and SQL is needed, but there are enough areas of the code one can work on without touching the database at first. We also use servlets and Jetty, so again familiarity with servlets and the http protocol would be helpful, but most Java developers already have that.

Good object-oriented design skills are essential. So is writing clean and maintainable code. For developers with main background in languages other than Java, I can tell immediately that Java is not their native language - I have seen lots of Java code that reads like C. The original BCNext code was very foreign too, so I had to rewrite lots of it. So for somebody coming from C/C++ background, if this is going to be their first Java project, they would need to learn a lot, so that the code they add actually reads like Java.

In addition to Java developers, and in fact much more urgently, we need a good cryptographer. This person doesn't even need to be that fluent in Java, the language background wouldn't matter (well, he should at least be able to read and understand the Java code). But I don't have much cryptography background myself, so this is an area where we currently lack skills, especially after the departure of BCNext.

Thank you very much for your detailed answer!

"For paid developers, we could consider trial projects, which they would do on their own fork of the repository, and if at the end we like the code and integrate it into the main repository, we accept them as paid developers. This would mean they would have to spend a few weeks without pay at first. Or, we can take the risk and do it as a one month paid contract, with the option of making it permanent. This would be something the NXTtechdevfund committee should discuss.

I would need to research how other open source projects decide who to accept and trust, e.g. how the linux kernel development is organized, and see if we can adopt their project management practices."

Give the applicant a real life scenario to work on. Something that has to be done for Nxt. A small part of a bigger task. So you can assess if he/she is good enough to be in the core dev team.

"In addition to Java developers, and in fact much more urgently, we need a good cryptographer."

Is that the same msin is working on with the review of the code? Or we need a cryptographer in our core dev team? Do you (or anyone else) have a suggestion whom we should approach?

I think in the forum of keepass you can get to locate a good cryptographer
http://sourceforge.net/p/keepass/discussion/329220/

and perhaps here java developers

Find Your Dream Job Today!

http://sourceforge.net/jobs?source=footer

lingdu22

jr. member

Activity: 59

Merit: 10

Quote from: landomata on March 06, 2014, 03:56:18 AM

ANNOUNCEMENT

NMAC PRIVATE SHARE PLACEMENT

FINAL SHARE ALLOCATION LIST

pandaisftw
abctc
I8orre
Jef-Diesel
butterclown
eXtatiC
Shin
swartzfeger
LemonAndFries
Allwelder
Opticarrier
kodtycoon
smaragda
eB101
Damelon
KyLins
rushi
shenjie
voldemort628
redsn0w
stoneone
bezbezbez
xcn
sashsh
Igmaca
Chanc3r
Vega
Rickyjames

NOTE:
1) If you are in the above list please PM me your account number where you want the shares transferred to.

2) When I receive your PM I will reply with your confirmed shares.

3) If I do NOT receive a PM from you before Friday, March 14th, then your share allocation will be forfeited to the next waiting person on the list.

3) PLEASE DO NOT QUOTE THIS POST & MENTION YOUR ACCOUNT NO. IN THIS THREAD AS IT WILL NOT COUNT. IF THIS IS DONE TWICE I WILL REMOVE YOU FROM THE LIST.

SO PLEASE ONLY PM me....thanks.

Best regards,
Landomata
Secretary
Nxt Mobile Applications Company

P.S:
3rd Tier: 25 million shares

This allocation will be totally sold on the Nxt Asset Exchange. The shares will be sold on AE launch day.

Hi! Everyone!
I've compared the shareholder list on Mar 1st and the list above. There's something interesting in the two list.
Here is the final namelist:
pandaisftw
abctc
I8orre
Jef-Diesel
butterclown
eXtatiC
Shin
swartzfeger
LemonAndFries
Allwelder
Opticarrier
kodtycoon
smaragda
eB101
Damelon
KyLins
rushi
shenjie
voldemort628
redsn0w
stoneone
bezbezbez
xcn
sashsh
Igmaca
Chanc3r
Vega
Rickyjames

And the list on Mar 1st below:
pandaisftw
danniego
Kbk00
abctc
cromaclear
neer.g
UtopianFuture
benowl
Hash
butterclown
eXtatiC
Shin
swartzfeger
Ezravdb
okaynow
LemonAndFries
Allwelder
kodtycoon
smaragda
eB101
Damelon
KyLins
rushi
shenjie
voldemort628
redsn0w
pt2002
stoneone
bezbezbez
xcn
sashsh
Igmaca
Chanc3r
Vega
Rickyjames
Arafel71
4iribasik
lingdu22
qbd1313
Leetrump
Kisa
Achim
Crtcl
Yanlap
fgbnbb
Perado
Chinabreak123
xzhybbs
Tercel
Robinf
fnjing21t
Ziggy
Miramare
gmoneycoin
oldnbold
Hala
dimirfu

Jean-Luc

sr. member

Activity: 392

Merit: 250

Quote from: starik69 on March 05, 2014, 07:21:51 PM

What are all these

Code:

[2014-03-06 02:30:59.520] DEBUG: Blacklisting 162.217.203.172 because of: Signature verification failed
[2014-03-06 02:31:02.545] DEBUG: Blacklisting 162.217.203.150 because of: Signature verification failed
[2014-03-06 02:31:06.698] DEBUG: Blacklisting 162.217.202.154 because of: Signature verification failed
[2014-03-06 02:31:10.839] DEBUG: Blacklisting 162.217.203.28 because of: Signature verification failed
[2014-03-06 02:31:17.579] DEBUG: Blacklisting 162.217.202.172 because of: Signature verification failed
[2014-03-06 02:31:22.727] DEBUG: Blacklisting 162.217.204.40 because of: Signature verification failed

on testnet ? Huh

This is why we had to reset the test blockchain. Because of the bugs in AE balances, a block must have been generated by an account that didn't have enough balance, when calculated correctly, so the 0.8.6 nodes started rejecting this block.

Quote

And very many

Code:

[2014-03-06 02:38:36.204] DEBUG: Dropping invalid transaction
nxt.NxtException$ValidationException: Asset aaab already exists

Why this "aaab" thing is repeating? Shocked

I see "AAAb" asset, is somebody constatnly trying to register "aaab" and fails or is "aaab" somehow stuck in blockchain? Roll Eyes

Those are harmless, the unconfirmed transactions are stuck in the unconfirmed transactions pool of still active 0.8.5 nodes. They will eventually expire. 0.8.6 nodes should drop such transactions from their unconfirmed transactions pools, if this continues to happen even after we have no more 0.8.5 nodes on test net, I will look into it again.

LiQio

legendary

Activity: 1181

Merit: 1002

Quote from: Jean-Luc on March 06, 2014, 06:39:47 AM

... We don't really need a 100% full time cryptographer, but somebody who we can consult with regularly, and who can stay reasonably up to date with the current state of Nxt. Most of the time we don't need to make changes that require consulting a cryptographer, but when we do, we need to have somebody to refer to. Like, when considering changing the TF algorithm, or when deciding if there is any risk in accepting the proposed fix for the signature verification failing.

What about DoctorEvil?

And while asking questions, do we know more about the crypto-review - msin? mcjavar? could lead to a possible candidate, couldn't it?

martismartis

legendary

Activity: 1162

Merit: 1005

Jean-Luc

How to get rid off of unconfirmed transaction, staying here for a long time? http://217.17.88.5:7875/
Did refresh also restarted node, nothing helps. Do I need to reload blockchain from scratch?

farl4web

legendary

Activity: 1205

Merit: 1000

Quote from: pr65536 on March 06, 2014, 06:21:22 AM

My practical proposal: why not to split this thread in different threads? One for the technical/developers, one for the marketing, one for the newbie, etc.?

Or maybe there are already some different channels? (in this case, please point out where)

There are a few other threads, but this is the huge chaotic and popular thread!

You also join: http://www.nxtforum.org.

Jean-Luc

sr. member

Activity: 392

Merit: 250

Quote from: mcjavar on March 06, 2014, 06:00:03 AM

Give the applicant a real life scenario to work on. Something that has to be done for Nxt. A small part of a bigger task. So you can assess if he/she is good enough to be in the core dev team.

Realistically, somebody faced with unfamiliar code cannot just jump in and start adding features. Even if he succeeds in doing it, it will look like a patch, an if/else hack, because he would be missing the big picture at first.

In a real company, a new programmer usually starts by just fixing bugs, for a week or two. Then, maybe start working on a feature that has already been designed and some skeletal work has been done on it. Or is very similar to an existing feature so that he can copy and follow the same design pattern (e.g., add a new transaction type which fits in the existing transaction types framework and doesn't need changing it). One would need at least a month of experience, getting familiar with the code, before being able to design and add a new feature all by himself.

Quote

"In addition to Java developers, and in fact much more urgently, we need a good cryptographer."

Is that the same msin is working on with the review of the code? Or we need a cryptographer in our core dev team? Do you (or anyone else) have a suggestion whom we should approach?

I don't think that guy had time to actively contribute to Nxt all the time. We don't really need a 100% full time cryptographer, but somebody who we can consult with regularly, and who can stay reasonably up to date with the current state of Nxt. Most of the time we don't need to make changes that require consulting a cryptographer, but when we do, we need to have somebody to refer to. Like, when considering changing the TF algorithm, or when deciding if there is any risk in accepting the proposed fix for the signature verification failing.

landomata

legendary

Activity: 2184

Merit: 1000

Quote from: mcjavar on March 06, 2014, 06:00:03 AM

Give the applicant a real life scenario to work on. Something that has to be done for Nxt. A small part of a bigger task. So you can assess if he/she is good enough to be in the core dev team.

"In addition to Java developers, and in fact much more urgently, we need a good cryptographer."

Is that the same msin is working on with the review of the code? Or we need a cryptographer in our core dev team? Do you (or anyone else) have a suggestion whom we should approach?

The Nxt Mobile Applications Company will pay 100,000 Nxt to the Java Dev who successfully implements SERVICE PROVIDER FEATURE into Nxt.

If he is successful then he can become a part of the Dev team.

So to repeat we will pay the bounty for this real life project.

igmaca

full member

Activity: 168

Merit: 100

Quote from: jl777 on March 06, 2014, 06:14:05 AM

Quote from: mcjavar on March 06, 2014, 06:00:03 AM

Quote from: Jean-Luc on March 06, 2014, 05:56:38 AM

Quote from: mcjavar on March 06, 2014, 05:25:07 AM

If you´ve read my PM, I am trying to help you build a core dev team...

Yes, I need to think about how this should be done. Before the source was public, the problem was how to decide who is trustworthy. Now that it is open, how do we decide who is good enough?

Companies conduct technical interviews. Those will filter out the completely ignorant, but for more experienced people it becomes difficult to judge who is better. I am also not confident in my own skills as an interviewer, and also some good people perform bad at interviews because of the stress and pressure to perform. Especially for an open source project, I don't feel doing interviews is the right approach.

For paid developers, we could consider trial projects, which they would do on their own fork of the repository, and if at the end we like the code and integrate it into the main repository, we accept them as paid developers. This would mean they would have to spend a few weeks without pay at first. Or, we can take the risk and do it as a one month paid contract, with the option of making it permanent. This would be something the NXTtechdevfund committee should discuss.

I would need to research how other open source projects decide who to accept and trust, e.g. how the linux kernel development is organized, and see if we can adopt their project management practices.

In terms of skill set, being a very good Java developer is the only requirement. The code does not depend strongly on any specific tool or library. We use a database, so some familiarity with relational database and SQL is needed, but there are enough areas of the code one can work on without touching the database at first. We also use servlets and Jetty, so again familiarity with servlets and the http protocol would be helpful, but most Java developers already have that.

Good object-oriented design skills are essential. So is writing clean and maintainable code. For developers with main background in languages other than Java, I can tell immediately that Java is not their native language - I have seen lots of Java code that reads like C. The original BCNext code was very foreign too, so I had to rewrite lots of it. So for somebody coming from C/C++ background, if this is going to be their first Java project, they would need to learn a lot, so that the code they add actually reads like Java.

In addition to Java developers, and in fact much more urgently, we need a good cryptographer. This person doesn't even need to be that fluent in Java, the language background wouldn't matter (well, he should at least be able to read and understand the Java code). But I don't have much cryptography background myself, so this is an area where we currently lack skills, especially after the departure of BCNext.

Thank you very much for your detailed answer!

"For paid developers, we could consider trial projects, which they would do on their own fork of the repository, and if at the end we like the code and integrate it into the main repository, we accept them as paid developers. This would mean they would have to spend a few weeks without pay at first. Or, we can take the risk and do it as a one month paid contract, with the option of making it permanent. This would be something the NXTtechdevfund committee should discuss.

I would need to research how other open source projects decide who to accept and trust, e.g. how the linux kernel development is organized, and see if we can adopt their project management practices."

Give the applicant a real life scenario to work on. Something that has to be done for Nxt. A small part of a bigger task. So you can assess if he/she is good enough to be in the core dev team.

"In addition to Java developers, and in fact much more urgently, we need a good cryptographer."

Is that the same msin is working on with the review of the code? Or we need a cryptographer in our core dev team? Do you (or anyone else) have a suggestion whom we should approach?

I would be happy to come up with test Java projects for someone else to do

I could pay some amount of NXT upfront to reduce the risk for the new applicant, as long as we have reason to believe that he can do the job. Then I will need the Techcommittee to deal with any permanent arrangements and completion bounties.

Probably a good idea to have a good cryptographer on retainer or at least halftime. If the community can provide adequate testing, then that frees up more funds to pay the cryptographer. I dont think it has to be a big name guy, as long as he can do the crypto math competently, that is the key. Someone who can actually understand stuff like https://bitcointalksearch.org/topic/really-really-ultimate-blockchain-compression-coinwitness-277389

James

I think in the forum of keepass you can get to locate a good cryptographer
http://sourceforge.net/p/keepass/discussion/329220/

martismartis

legendary

Activity: 1162

Merit: 1005

Quote from: abctc on March 06, 2014, 06:21:04 AM

Quote from: martismartis on March 06, 2014, 05:45:12 AM

Could somebody sent TestNxt to the ....

- if someone needs testNXTs - ask them here: https://forums.nxtcrypto.org/viewtopic.php?f=2&t=832&p=4237#p4237

Hi, I'm not registered in forums.nxtcrypto.org , here is my church, where I get all information I need

Still need some test NXT to 13965125640011039998

Jean-Luc

sr. member

Activity: 392

Merit: 250

Quote from: Eadeqa on March 06, 2014, 05:32:19 AM

Quote from: Jean-Luc on March 06, 2014, 04:52:26 AM

Of course I hope the apache RandomStringUtils internally uses SecureRandom, this is where it would matter.

It doesn't

http://www.docjar.com/html/api/org/apache/commons/lang/RandomStringUtils.java.html

You are right. Maybe he should directly call the method that also takes a Random as a parameter, and pass it his own instance of a SecureRandom.

verymuchso

sr. member

Activity: 421

Merit: 250

HEAT Ledger

Quote from: Eadeqa on March 06, 2014, 05:30:15 AM

Quote from: verymuchso on March 06, 2014, 05:21:08 AM

Quote from: Eadeqa on March 06, 2014, 05:07:10 AM

Quote from: verymuchso on March 06, 2014, 04:55:10 AM

I did my research on random string generator libraries, it seems apache RandomStringUtils is not compromised.

Why aren't you using SecureRandom random = new SecureRandom()?

Simpler version from web

char[] allowedCharacters = {'a','b','c','1','2','3','4'};

SecureRandom random = new SecureRandom();
StringBuffer password = new StringBuffer();

for(int i = 0; i < PASSWORD_LENGTH; i++) {
password.append(allowedCharacters[ random.nextInt(allowedCharacters.length) ]);
}

I don't believe I know better than the people from Apache who made that library.
That library is used in 1000s of production systems. You should not reinvent the wheel.

You are right about the difference between SecureRandom and Random, in the code I posted it does however not make sense to use SercureRandom. If you believe it does please explain why it does make sense in the code I posted.

http://www.docjar.com/html/api/org/apache/commons/lang/RandomStringUtils.java.html

They use java.util.Random

Where do you see SercureRandom used by RandomStringUtils?

I did not say they used SecureRandom in RandomStringUtils. What I did was look for ways to generate the safest possible passphrases and RandomStringUtils was mentioned and seemed to be used the most. It comes as a surprise that they do not use SecureRandom, if this in fact is unsecure this would mean that numerous production systems are at risk, which might even be the case who knows.

You started your argument by saying Random should not be used, since Random was used in the piece of code I posted I assumed you were talking about the random number between 70 and 90 for the password length, for which it makes no sense to use SecureRandom.

I do believe Apache should use SecureRandom. Looking at my code I also believe the seed string of characters used should not be a fixed string, it should be random as should your 'allowedCharacters' variable in the sample you posted.

The site where you can generate a passphrase with your mouse is really cool, it does however not work for people without a mouse.

wesleyh

sr. member

Activity: 308

Merit: 250

Gotta go, be back in 8 hours or tomorrow. Keep feedback, bug reports, etc coming. You can also PM me.

jl777

legendary

Activity: 1176

Merit: 1134

Quote from: instacalm on March 06, 2014, 06:22:22 AM

Quote from: pr65536 on March 06, 2014, 06:21:22 AM

My practical proposal: why not to split this thread in different threads? One for the technical/developers, one for the marketing, one for the newbie, etc.?

Hi pr65536,

https://forums.nxtcrypto.org

also http://www.nxtcoins.nl/bitcointalk-threads/ is quite useful

wesleyh

sr. member

Activity: 308

Merit: 250

Quote from: Eadeqa on March 06, 2014, 06:22:07 AM

You can use random mouse movement to create pretty secure password.

Copy their code https://www.bitaddress.org

thanks, will check it out.

instacalm

hero member

Activity: 798

Merit: 500

Quote from: pr65536 on March 06, 2014, 06:21:22 AM

My practical proposal: why not to split this thread in different threads? One for the technical/developers, one for the marketing, one for the newbie, etc.?

Hi pr65536,

https://forums.nxtcrypto.org

wesleyh

sr. member

Activity: 308

Merit: 250

Quote from: Fatih87SK on March 06, 2014, 05:58:03 AM

Or like Bitcoin wallets with a green bar that shows the progress of downloading the blockchain.

Thanks!

Don't get offended or something. I'm just being a critical end user. Great work!

Not offended at all, I need and appreciate the feedback

Eadeqa

hero member

Activity: 644

Merit: 500

Quote from: wesleyh on March 06, 2014, 06:17:17 AM

Quote from: Eadeqa on March 06, 2014, 06:16:13 AM

Quote from: wesleyh on March 06, 2014, 06:10:25 AM

Quote from: Eadeqa on March 06, 2014, 06:03:13 AM

Quote from: wesleyh on March 06, 2014, 05:40:27 AM

Well, you can do everything whilst it's downloading the blockchain, of course you'll only get your balance once it reaches the correct block.
It opens NRS in the background, yes, locally.

Does it shut down NRS when you close it?

Yes.

Cool. You should add some kind of random password generator for creating new accounts, and then it should be distributed with all new NRS releases as a default client

Not sure if there is a good and secure javascript.random available - However if you open the app and choose register new account, (new users will probably do this although they could just login), then it requires special characters, minimum length, etc.

You can use random mouse movement to create pretty secure password.

Copy their code https://www.bitaddress.org

pr65536

newbie

Activity: 4

Merit: 0

First of all, Keep up with the great work!

I'm a newbie here but I would like to give you my two cents...
I believe that NXT has all the potential to become the next big thing. I see a great idea and I see great people working on it. I see also a great community that is forming around it.
The only problem is that for new people like me is very difficult to follow and join. There is this huge megathread that is growing faster than my reading capabilites. In this thread there is everything: from technical development discussions, to new software announcements, newbie opinions, complaints, philosophical discussions and everything else...
This is great, but frankly speaking, is not optimal. It end up that people just trow in it their opinion but without listening really at what other are saying.

My practical proposal: why not to split this thread in different threads? One for the technical/developers, one for the marketing, one for the newbie, etc.?

Or maybe there are already some different channels? (in this case, please point out where)
Cheers

Topic: NXT :: descendant of Bitcoin - Updated Information - page 500. (Read 2761624 times)