Pages:
Author

Topic: Nxt source code flaw reports - page 4. (Read 113377 times)

legendary
Activity: 952
Merit: 1000
Yeah! I hate ShroomsKit!
March 22, 2014, 12:30:44 PM
I know this question may sound illiterate but, what does this means?:

Each flaw has a small description. Here r SHA256 hashes of these descriptions:

bd34c891e9e3df9ea8b8eafc4dc3edc129f81365d42bf204ea58271e320f3ce5 - 1K reward
888f278c773d39b8334a651d84ee78871bd0e5d45e09be8fdb190ba1b2969530 - 10K reward
f5236644f4306699bb0fa90a905afe2454683c0aad6995e4433d712e2fdb257c - 100K reward


Thanks!
legendary
Activity: 1260
Merit: 1168
March 22, 2014, 12:30:33 PM
This message was too old and has been purged
hero member
Activity: 687
Merit: 500
March 22, 2014, 12:28:54 PM
I didn't take a look at the current version, so let's say we take some version before JL removed "some code". Could you bring it down in a day?
legendary
Activity: 2142
Merit: 1010
Newbie
March 22, 2014, 12:18:00 PM
So if the copycat uses the current source code (0.8.12) to start a clone coin, could you bring it down within a day?

No, coz the copycat won't forge even 1000 blocks. Jean-Luc removed some code.
hero member
Activity: 687
Merit: 500
March 22, 2014, 12:16:05 PM
So if the copycat uses the current source code (0.8.12) to start a clone coin, could you bring it down within a day?
legendary
Activity: 2142
Merit: 1010
Newbie
March 22, 2014, 12:06:48 PM
I have the feeling we might be disappointed when the "flaw" is revealed. Something like "the flaw can only be exploited when the chain is short enough" or maybe some strange assumptions have to be made.

I think that the fatal flaw won't disappoint u. It's so fatal that I can't imagine anything more fatal (or my imagination is very limited).
hero member
Activity: 687
Merit: 500
March 22, 2014, 12:03:44 PM
I have the feeling we might be disappointed when the "flaw" is revealed. Something like "the flaw can only be exploited when the chain is short enough" or maybe some strange assumptions have to be made.
legendary
Activity: 1890
Merit: 1086
Ian Knowles - CIYAM Lead Developer
March 22, 2014, 11:29:07 AM
The fatal flaw is not as complicated an attack (as CfB has hinted at) and Nxt itself is *safe from that* (so think - why would it be safe from that?).
legendary
Activity: 1260
Merit: 1168
March 22, 2014, 11:20:58 AM
This message was too old and has been purged
legendary
Activity: 1890
Merit: 1086
Ian Knowles - CIYAM Lead Developer
March 22, 2014, 11:16:23 AM
Well, I am pretty sure the fatal flaw is the following one:

Not the fatal flaw although yes "mining of account ids" that are "not protected by public keys" currently would be possible (still no easy thing to do as no-one has demonstrated having done so yet).
legendary
Activity: 1260
Merit: 1168
March 22, 2014, 11:14:29 AM
This message was too old and has been purged
sr. member
Activity: 476
Merit: 500
March 21, 2014, 10:40:09 PM
If this is a fatal flaw, will it kill NXT?

Can it be fixed? I hope so..

It would kill anybody trying to just copy-paste NXT into a clone. Not NXT itself.
newbie
Activity: 27
Merit: 0
March 21, 2014, 10:38:39 PM
If this is a fatal flaw, will it kill NXT?

Can it be fixed? I hope so..
legendary
Activity: 2142
Merit: 1010
Newbie
March 21, 2014, 03:47:25 PM
So we cannot see the wood for the trees?

Seems so
newbie
Activity: 29
Merit: 0
March 21, 2014, 03:38:59 PM
@cfb

COZ i am not very good at java,but the project is full open source now,why not any people find the flaw.Is there something wrong with it? It does really make me confused. Huh

The fatal flaw is too obvious to be found easily.

So we cannot see the wood for the trees?
legendary
Activity: 2142
Merit: 1010
Newbie
March 21, 2014, 03:32:34 PM
obvious for crypto currency developers or any dev?  Smiley

I'm afraid for crypto devs.
hero member
Activity: 834
Merit: 524
Nxt NEM
March 21, 2014, 03:27:58 PM
@cfb

COZ i am not very good at java,but the project is full open source now,why not any people find the flaw.Is there something wrong with it? It does really make me confused. Huh

The fatal flaw is too obvious to be found easily.

obvious for crypto currency developers or any dev?  Smiley
legendary
Activity: 2142
Merit: 1010
Newbie
March 20, 2014, 02:48:59 AM
@cfb

COZ i am not very good at java,but the project is full open source now,why not any people find the flaw.Is there something wrong with it? It does really make me confused. Huh

The fatal flaw is too obvious to be found easily.
sr. member
Activity: 243
Merit: 250
March 20, 2014, 02:44:41 AM
@cfb

COZ i am not very good at java,but the project is full open source now,why not any people find the flaw.Is there something wrong with it? It does really make me confused. Huh
legendary
Activity: 866
Merit: 1002
March 20, 2014, 02:00:27 AM
Like releasing the full source on Jan 3rd?

It was never promised to release full source on Jan 3rd. Why r u still there, all ur posts r troll posts.

+1, there was never such promise.

actually I thought source code will be published in April, so it's way ahead of that
Pages:
Jump to: