Pages:
Author

Topic: NXT stolen (Read 1551 times)

QNX
newbie
Activity: 58
Merit: 0
January 26, 2014, 09:12:40 AM
#24
Bastard 10411181763421717624 also stoled my 54 nxt, password was long ыbought, but only from digits 16 chars Sad


Where and when did you download the last update of the client?
from here https://nextcoin.org/index.php/topic,2041.0.html
legendary
Activity: 868
Merit: 1000
Cryptotalk.org - Get paid for every post!
January 26, 2014, 06:17:00 AM
#23
Why should security be the sole responsibility of the account holder? If my house got broken into I wouldn't expect people to blame me for not storing my wallet in a safe.

Nor would I expect my bank to let someone crack my credit card pin and not alert me something was up.

Madness.

So, if your house will be broken, you will blame doors manufacturers, because the cheapest doors are not secure enough? I feel sorry for people who had their NXTs stolen, but I don't think that it's developers fault.

I think in this case,  the developer is partly to blame.

Bitcoin public / private keys have been quite secure for 5 years now.

But the developer of Nxt decides to come up with his own novel strategy that encourages accounts from being hacked.  Nxt is likely the only crypto currency where you routinely hear people complain about their individual wallet being hacked.   The inside joke is that you can mine Nxt wallets using GPU farms.

Anyway,  NEX already has made the necessary code changes to use bitcoin technology rather than the flimsy one used by Nxt.  Consider NEX like 'industrial strength Nxt'.
hero member
Activity: 870
Merit: 500
Trading will make me rich)
January 25, 2014, 10:50:12 PM
#22
Why should security be the sole responsibility of the account holder? If my house got broken into I wouldn't expect people to blame me for not storing my wallet in a safe.

Nor would I expect my bank to let someone crack my credit card pin and not alert me something was up.

Madness.

So, if your house will be broken, you will blame doors manufacturers, because the cheapest doors are not secure enough? I feel sorry for people who had their NXTs stolen, but I don't think that it's developers fault.
hero member
Activity: 532
Merit: 500
January 25, 2014, 10:37:01 PM
#21
Why should security be the sole responsibility of the account holder? If my house got broken into I wouldn't expect people to blame me for not storing my wallet in a safe.

Nor would I expect my bank to let someone crack my credit card pin and not alert me something was up.

Madness.
sr. member
Activity: 490
Merit: 252
January 25, 2014, 10:35:03 PM
#20
Bastard 10411181763421717624 also stoled my 54 nxt, password was long ыbought, but only from digits 16 chars Sad


Where and when did you download the last update of the client?
legendary
Activity: 2100
Merit: 1167
MY RED TRUST LEFT BY SCUMBAGS - READ MY SIG
January 25, 2014, 10:27:42 PM
#19
yeah nxt is like someone already having your wallet infront of them with unlimited time and chances to crack your account.... sadly a good gpu farm will rape most passwords in a matter of days unless it is way longer than 10 digits. I bet on the way to your account he cracked a few others too.
hero member
Activity: 714
Merit: 500
January 25, 2014, 10:14:22 PM
#18
Avoid NXT.
QNX
newbie
Activity: 58
Merit: 0
January 25, 2014, 10:13:01 PM
#17
Bastard 10411181763421717624 also stoled my 54 nxt, password was long ыbought, but only from digits 16 chars Sad
legendary
Activity: 868
Merit: 1000
Cryptotalk.org - Get paid for every post!
January 24, 2014, 06:42:42 AM
#16
I'd guess brute force attack.. sorry about that sucks.

Make a new account and I'll send you 3 NXT

BTW i think the nxt client recommends super long passwords.

That is very nice of you. Thanks but I am not here to ask for NXTs. Smiley

I am more concern of the security and the future of NXT. If stealing NXT is just the matter of guessing one's password, then its security is nothing compared
to the good ol' Bitcoin.

10 characters is too short, you need to use at least 50 characters for NXT.  use a random password generator to make it.


I don't think the average Joe would go through that kind of trouble to do that, it is a good thing to have a 50 char password but it is just not practical.
I suppose more than 15 char is recommended.

My thoughts on the security aspects. If the wallet provides you with the option of having a password, shouldn't it be the second line of defense instead of being the only one ?

NXT requires a complete change in thinking.  There is no wallet.dat to protect. The passphrase/password is the same as the privatekey in bitcoin type cryptos!  Entering that passphrase in NXT wallet is like importing a privatekey into a bitcoin wallet.  
The more complicated your passphrase the more secure your NXT will be, and like privatekeys in bitcoin each passphrase equals one unique NXT address.  

More information on security for NXT can be found here http://wiki.nxtcrypto.org/wiki/Account_Security

Exactly.  Been screaming about this.  It is just insane.   You can collect all the addresses by reading the chain,  then you run a brute force to see if any matches the chain.

It is crazy!!
legendary
Activity: 868
Merit: 1000
Cryptotalk.org - Get paid for every post!
January 24, 2014, 06:41:13 AM
#15
10 characters is too short, you need to use at least 50 characters for NXT.  use a random password generator to make it.


Likely brute forced if 10 characters.
newbie
Activity: 40
Merit: 0
January 24, 2014, 06:38:56 AM
#14
the same to me
i have 2NXT got from the beginning i open an occunt
but one week later,it disappeared
legendary
Activity: 1512
Merit: 1000
January 24, 2014, 05:02:20 AM
#13
A 10 char alphanumeric password is clearly too short. However OP has a good point about Average Joe who used to choose quite simple passwords.
legendary
Activity: 1672
Merit: 1014
January 24, 2014, 03:27:12 AM
#12
I'd guess brute force attack.. sorry about that sucks.

Make a new account and I'll send you 3 NXT

BTW i think the nxt client recommends super long passwords.

That is very nice of you. Thanks but I am not here to ask for NXTs. Smiley

I am more concern of the security and the future of NXT. If stealing NXT is just the matter of guessing one's password, then its security is nothing compared
to the good ol' Bitcoin.

10 characters is too short, you need to use at least 50 characters for NXT.  use a random password generator to make it.


I don't think the average Joe would go through that kind of trouble to do that, it is a good thing to have a 50 char password but it is just not practical.
I suppose more than 15 char is recommended.

My thoughts on the security aspects. If the wallet provides you with the option of having a password, shouldn't it be the second line of defense instead of being the only one ?

NXT requires a complete change in thinking.  There is no wallet.dat to protect. The passphrase/password is the same as the privatekey in bitcoin type cryptos!  Entering that passphrase in NXT wallet is like importing a privatekey into a bitcoin wallet.  
The more complicated your passphrase the more secure your NXT will be, and like privatekeys in bitcoin each passphrase equals one unique NXT address.  

More information on security for NXT can be found here http://wiki.nxtcrypto.org/wiki/Account_Security
hero member
Activity: 798
Merit: 500
January 24, 2014, 03:24:38 AM
#11
I have an extreme password. I received 3 nxt from a faucet and the transaction appeared in the unconfirmed transactions part of my wallet.
But the 3 nxt never made to my transactions.  Why is that?

This wallet doesn't seem to work. Needless to say my address is the same and I haven't changed the password.

Check your balance: http://87.230.14.1/nxt/nxt.cgi?action=100 / http://www.mynxt.info/blockexplorer/

Perhaps your client's blocks are/were not synced with the network.
newbie
Activity: 27
Merit: 0
January 24, 2014, 03:22:22 AM
#10
I have an extreme password. I received 3 nxt from a faucet and the transaction appeared in the unconfirmed transactions part of my wallet.
But the 3 nxt never made to my transactions.  Why is that?

This wallet doesn't seem to work. Needless to say my address is the same and I haven't changed the password.
newbie
Activity: 26
Merit: 0
January 24, 2014, 03:19:27 AM
#9
I am more concern of the security and the future of NXT. If stealing NXT is just the matter of guessing one's password, then its security is nothing compared
to the good ol' Bitcoin.

Seems like trolling. A password for NXT should look like this

yx^Ffk]?Hn:dBDqNb/MuMV66sKR%C;dRxZ}WFu,gQrR,64XmuneYt>sj;ba#e{Kz*7XFN38@MHbX^NRgFt$kz)NZ&RRd4pNLXHHV

THE PASSWORD IS YOUR ACCOUNT/ WHO WOULD BE SO STUPID TO CHOOSE 10 CHARS?



However/why not check out 3RD GENERATION Frictionlesscoin https://bitcointalksearch.org/topic/ann-frictionlesscoin-descendant-of-nxt-3rd-gen-crypto-fair-429478

I am not trolling, but you sir are trolling.

it says clearly that the passpharse should be at least 30.
if you made a passphrase of only 10 charchters long it's your own fault . nothing to do with NXT.


Yes it is my fault for setting an insecure password. But I do not see what you said about passphrase length in the client.
member
Activity: 87
Merit: 10
January 24, 2014, 03:12:10 AM
#8
I am more concern of the security and the future of NXT. If stealing NXT is just the matter of guessing one's password, then its security is nothing compared
to the good ol' Bitcoin.

why not check out 3RD GENERATION Frictionlesscoin https://bitcointalksearch.org/topic/ann-frictionlesscoin-descendant-of-nxt-3rd-gen-crypto-fair-429478
NXT IS JUST A STEPPING STONE TO FLC
full member
Activity: 171
Merit: 100
January 24, 2014, 03:08:25 AM
#7
it says clearly that the passpharse should be at least 30.
if you made a passphrase of only 10 charchters long it's your own fault . nothing to do with NXT.
newbie
Activity: 26
Merit: 0
January 24, 2014, 02:52:04 AM
#6
I'd guess brute force attack.. sorry about that sucks.

Make a new account and I'll send you 3 NXT

BTW i think the nxt client recommends super long passwords.

That is very nice of you. Thanks but I am not here to ask for NXTs. Smiley

I am more concern of the security and the future of NXT. If stealing NXT is just the matter of guessing one's password, then its security is nothing compared
to the good ol' Bitcoin.

10 characters is too short, you need to use at least 50 characters for NXT.  use a random password generator to make it.


I don't think the average Joe would go through that kind of trouble to do that, it is a good thing to have a 50 char password but it is just not practical.
I suppose more than 15 char is recommended.

My thoughts on the security aspects. If the wallet provides you with the option of having a password, shouldn't it be the second line of defense instead of being the only one ?
legendary
Activity: 1672
Merit: 1014
January 24, 2014, 02:38:55 AM
#5
10 characters is too short, you need to use at least 50 characters for NXT.  use a random password generator to make it.
Pages:
Jump to: