Pages:
Author

Topic: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT - page 2. (Read 5526 times)

legendary
Activity: 2940
Merit: 1333
Here is the diff for the malicious code commit, for what it's worth http://pastebin.com/anXZmNM6

Thanks. I'm surprised how small it is. All it does it changes a couple of tags and adds the cheat code. I was thinking the cheat code would be buried deep among a bunch of complex unrelated changes but apparently not. </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/joecker-157589" title="Profile of Joecker">Joecker</a> </div> <div class="position">newbie</div> <div class="position-coins"> <img src="/images/user_position/star.gif" alt=""> </div> <div class="activity">Activity: 48</div> <div class="merit">Merit: 0</div> <div class="avatar"> </div> <div class="description"></div> <div class="view-profile"> <a href="/user/joecker-157589" title="Profile of Joecker"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8926984"></a> <a href="/topic/m.8926984">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 22, 2014, 10:36:17 AM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8926984">#63</a> </div> </div> <div class="content"> <div class="quote-header"><a href="/topic/m.8895325">Quote from: DiceBitcoin on September 19, 2014, 06:41:52 PM</a></div><div class="quote">(...) his previous lucky run (...) <br /></div>Epic<br /><br /><br />edit: ManLoL, you'll get my FULL trust when 1000btc land <a class="ul" href="https://blockchain.info/address/1BQE9mfiMwok7hXuemiueRoyurMuuzfb6T" rel="nofollow" target="_blank">here</a>. You've set a new standard for assuming how people can be stupid. So I'm not ashamed at all to beg ;P </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/joecker-157589" title="Profile of Joecker">Joecker</a> </div> <div class="position">newbie</div> <div class="position-coins"> <img src="/images/user_position/star.gif" alt=""> </div> <div class="activity">Activity: 48</div> <div class="merit">Merit: 0</div> <div class="avatar"> </div> <div class="description"></div> <div class="view-profile"> <a href="/user/joecker-157589" title="Profile of Joecker"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8926940"></a> <a href="/topic/m.8926940">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 22, 2014, 10:32:08 AM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8926940">#62</a> </div> </div> <div class="content"> AHAHAHAHHA MaNteoL was LEGIT !!!<br /><br />Can't wait to see BR go <i>poof</i> tomorrow! Only this time someone will finally have the guts of tracking your sorry ass down in a shithole, say like Israel, Ukraine or Russia. (no offense to the nice people of these countries).<br /><br />MantL I am just begging to be bashed by you, nothing would please me more than you wasting time for me =) </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/dicebitcoin-355700" title="Profile of DiceBitcoin">DiceBitcoin</a> </div> <div class="position">member</div> <div class="position-coins"> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> </div> <div class="activity">Activity: 84</div> <div class="merit">Merit: 10</div> <div class="avatar"> </div> <div class="description"></div> <div class="view-profile"> <a href="/user/dicebitcoin-355700" title="Profile of DiceBitcoin"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8925692"></a> <a href="/topic/m.8925692">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 22, 2014, 08:42:46 AM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8925692">#61</a> </div> </div> <div class="content"> <div class="quote-header"><a href="/topic/m.8906752">Quote from: DiceBitcoin on September 20, 2014, 06:15:40 PM</a></div><div class="quote"><div class="quote-header"><a href="/topic/m.8905596">Quote from: dooglus on September 20, 2014, 04:21:32 PM</a></div><div class="quote"><div class="quote-header"><a href="/topic/m.8905302">Quote from: suchmoon on September 20, 2014, 03:52:39 PM</a></div><div class="quote">There is one aspect of that story that's still bothering me (well there is more than one TBH, but I'm trying to pretend now that it's true). They said the the rogue employee "had to chose manually which player to ‘cheat’". How did he do that if he didn't have access to the production database? Some kind of a backdoor in the UI? All we've seen was two or three lines of code that don't really explain much. I think at the very least DB should have published the whole commit. This is one of those things that would have gone a long way towards credibility.<br /></div><br />Good point.<br /><br />The three line screenshot didn't really show anything. Could we see the whole diff he submitted? The condition for when to apply the nonce-skip would be interesting. I too wonder how the rogue employee was able to chose manually which players to cheat when he didn't have access to the db.<br /></div><br />To answer your question there was no backdoor on the UI. Besides the "main" website we also have an application in place that we use to do simple day-to-day operations (such as reseting users password, process manual withdraws etc), an 'admin' application if you like. <br /><br />In this application the are only stuff that anyone can view (no secret stuff lying around) and do. One of those is that one could view / edit a JSON field on the user that we use primarily for storing meta information (for you techies take a look here: <a class="ul" href="http://www.postgresql.org/docs/9.4/static/datatype-json.html" rel="nofollow" target="_blank">http://www.postgresql.org/docs/9.4/static/datatype-json.html</a>) such as last-login, how much time he is active etc, nothing important. He used this schemaless column to store the data he wanted in order to persist the conditions that when met the skipping happened. <br /><br />Doog, as for the diff I will post it later <img src="https://bitcointalk.org/Smileys/default/smiley.gif" alt="Smiley" border="0" /><br /><br /></div><br />Here is the diff for the malicious code commit, for what it's worth <a class="ul" href="http://pastebin.com/anXZmNM6" rel="nofollow" target="_blank">http://pastebin.com/anXZmNM6</a><br /> </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/jaysabi-187673" title="Profile of jaysabi">jaysabi</a> </div> <div class="position">legendary</div> <div class="position-coins"> <img src="/images/user_position/legendary.gif" alt="" title="Legendary level"> </div> <div class="activity">Activity: 2044</div> <div class="merit">Merit: 1115</div> <div class="avatar"> <img src="https://bitcointalk.org/useravatars/avatar_187673.png" alt="" title="Profile photo of jaysabi"> </div> <div class="description">★777Coin.com★ Fun BTC Casino!</div> <div class="view-profile"> <a href="/user/jaysabi-187673" title="Profile of jaysabi"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8924658"></a> <a href="/topic/m.8924658">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 22, 2014, 07:08:16 AM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8924658">#60</a> </div> </div> <div class="content"> <div class="quote-header"><a href="/topic/m.8911041">Quote from: Stunna on September 21, 2014, 05:36:23 AM</a></div><div class="quote">I wasn't implying that was the case with JD, obviously there is a chance of that being the case although I personally lean against that belief. That's how ridiculous these types of investments are, you're a trustworthy person but we ultimately have to take you at your word for 10k-20k coins. Even you'd agree that level of trust is ridiculous, now imagine doing the same with someone completely brand new in the community who has a proven scam record. <br /></div><br />lol, 'I wasn't implying that with JD, but I'm still totally implying that with JD.'<br /><br />You don't even realize what you're saying.<br /><br />Also, I agree with the post directly above this. You're abusing the trust system by leaving negative trust based on your suspicion on an issue that doesn't even concern you. Your motivations have been made clear here, and everywhere else you post. You continue to bash JD in a passive-aggressive manner, even though you say you're not implying certain things while continuing to imply them in the same sentence. You bash ever other site or site owner that is competition, and even if every single one of them is a legit point, your paranoia has led you to abuse the trust system to preemptively trash people who you think might start a competing site in the future.<br /><br />Dude, get a hold of yourself. You're not being an asset to the community when you act this way. </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/coinnewbit-89583" title="Profile of coinnewbit">coinnewbit</a> </div> <div class="position">sr. member</div> <div class="position-coins"> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> </div> <div class="activity">Activity: 266</div> <div class="merit">Merit: 250</div> <div class="avatar"> <img src="https://bitcointalk.org/useravatars/avatar_89583.png" alt="" title="Profile photo of coinnewbit"> </div> <div class="description"></div> <div class="view-profile"> <a href="/user/coinnewbit-89583" title="Profile of coinnewbit"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8916698"></a> <a href="/topic/m.8916698">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 21, 2014, 02:52:50 PM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8916698">#59</a> </div> </div> <div class="content"> </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/micro-224248" title="Profile of MICRO">MICRO</a> </div> <div class="position">legendary</div> <div class="position-coins"> <img src="/images/user_position/legendary.gif" alt="" title="Legendary level"> </div> <div class="activity">Activity: 2464</div> <div class="merit">Merit: 1037</div> <div class="avatar"> <img src="https://bitcointalk.org/useravatars/avatar_224248.png" alt="" title="Profile photo of MICRO"> </div> <div class="description">CEO @ Stake.com and Primedice.com</div> <div class="view-profile"> <a href="/user/micro-224248" title="Profile of MICRO"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8911724"></a> <a href="/topic/m.8911724">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 21, 2014, 07:02:24 AM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8911724">#58</a> </div> </div> <div class="content"> <div class="quote-header"><a href="/topic/m.8904063">Quote from: dooglus on September 20, 2014, 01:41:50 PM</a></div><div class="quote"><div class="quote-header"><a href="/topic/m.8903941">Quote from: grux on September 20, 2014, 01:27:05 PM</a></div><div class="quote">If he didn't have access to production/database servers, but could upload code himself unchecked, what makes you guys think he wouldn't add any query or even a URL that reveals the auth details or seeds for himself?<br /></div><br />They've addressed this before.<br /><br />He couldn't upload code himself. They uploaded his code for him without properly testing it. When they found out that his code was malicious they backed out his change.<br /><br />While the code was in place he could potentially have grabbed a server seed, but apparently he randomized after his change was backed out, meaning he no longer had a way of reading his seeds.<br /><br />I think that's how it goes, anyway.<br /></div><br />That's what they say it goes, but did we see any proof that is actually how it played out ? </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/zeeshanblc-67194" title="Profile of zeeshanblc">zeeshanblc</a> </div> <div class="position">sr. member</div> <div class="position-coins"> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> </div> <div class="activity">Activity: 390</div> <div class="merit">Merit: 250</div> <div class="avatar"> <img src="https://bitcointalk.org/useravatars/avatar_67194.png" alt="" title="Profile photo of zeeshanblc"> </div> <div class="description"></div> <div class="view-profile"> <a href="/user/zeeshanblc-67194" title="Profile of zeeshanblc"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8911672"></a> <a href="/topic/m.8911672">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 21, 2014, 06:56:32 AM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8911672">#57</a> </div> </div> <div class="content"> <div class="quote-header"><a href="/topic/m.8911396">Quote from: Stunna on September 21, 2014, 06:25:27 AM</a></div><div class="quote"><div class="quote-header"><a href="/topic/m.8911289">Quote from: zeeshanblc on September 21, 2014, 06:14:09 AM</a></div><div class="quote"><br />Stunna, again you are showing what kind of person you are lol<br /><br />You should get banned for abusing trust system so often, someone writes something you don't like and BAM you are giving them negative trust...this shows a nice picture about it...And I did expect this form you to be honest.<br /><br />I'm no alt of giftcoins, you are so wrong about it, I had money there but not any more, seems you missed my empty signature space. I'm not planing to launch any dice site so you are again wrong. <br /><br />If I ever launch any site related to gambling feel free to give me negative trust as much as you want, let it all be red but until then you should remove it from my account as this is pure abuse.  You don't give someone negative trust based on your assumptions.<br /><br /></div><br />I'm not the only one that feels this way, I was actually just invited to an ongoing PM thread moments ago where people you had done deals with were suspicious that you were farming trust.<br /><br />First message is from Sept 1:<br /><img class="userimg" src="https://ip.bitcointalk.org/?u=http%3A%2F%2Fpuu.sh%2FbHQgm%2F16bbedd5a7.png&t=591&c=djfgCSY9hqsaBw" alt="" border="0" /> <br /><br />Also this isn't exactly gut instinct or abuse, if you review the reference there is actual proof. I hope you get solid use out of all the giftcards you bought. <br /><br /><br /><br />Also this was just sent via that PM thread, I've withheld names but they are free to chime in themselves:<br /><br /><img class="userimg" src="https://ip.bitcointalk.org/?u=http%3A%2F%2Fpuu.sh%2FbHQFa%2F527cc12321.png&t=591&c=c9Zexw2ZXo7NgA" alt="" border="0" /><br /><br />^ That's a pretty solid point right there. <br /><br /><br />Anyways this isn't a thread about you and your fraud aspirations, let's try and stay on topic. <br /><br /></div><br />that user that gave you this info above is "goose20", no need for him to hide...he already removed his positive trust and this is fine, others can do the same if they wish<br /><br />Sorry for highjacking this post....dicebitcoin you can delete our rubbish talk now <img src="https://bitcointalk.org/Smileys/default/smiley.gif" alt="Smiley" border="0" /> </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/stunna-81292" title="Profile of Stunna">Stunna</a> </div> <div class="position">legendary</div> <div class="position-coins"> <img src="/images/user_position/legendary.gif" alt="" title="Legendary level"> </div> <div class="activity">Activity: 3192</div> <div class="merit">Merit: 1279</div> <div class="avatar"> <img src="https://bitcointalk.org/useravatars/avatar_81292.png" alt="" title="Profile photo of Stunna"> </div> <div class="description">Primedice.com, Stake.com</div> <div class="view-profile"> <a href="/user/stunna-81292" title="Profile of Stunna"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8911396"></a> <a href="/topic/m.8911396">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 21, 2014, 06:25:27 AM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8911396">#56</a> </div> </div> <div class="content"> <div class="quote-header"><a href="/topic/m.8911289">Quote from: zeeshanblc on September 21, 2014, 06:14:09 AM</a></div><div class="quote"><br />Stunna, again you are showing what kind of person you are lol<br /><br />You should get banned for abusing trust system so often, someone writes something you don't like and BAM you are giving them negative trust...this shows a nice picture about it...And I did expect this form you to be honest.<br /><br />I'm no alt of giftcoins, you are so wrong about it, I had money there but not any more, seems you missed my empty signature space. I'm not planing to launch any dice site so you are again wrong. <br /><br />If I ever launch any site related to gambling feel free to give me negative trust as much as you want, let it all be red but until then you should remove it from my account as this is pure abuse.  You don't give someone negative trust based on your assumptions.<br /><br /></div><br />I'm not the only one that feels this way, I was actually just invited to an ongoing PM thread moments ago where people you had done deals with were suspicious that you were farming trust.<br /><br />First message is from Sept 1:<br /><img class="userimg" src="https://ip.bitcointalk.org/?u=http%3A%2F%2Fpuu.sh%2FbHQgm%2F16bbedd5a7.png&t=591&c=djfgCSY9hqsaBw" alt="" border="0" /> <br /><br />Also this isn't exactly gut instinct or abuse, if you review the reference there is actual proof. I hope you get solid use out of all the giftcards you bought. <br /><br /><br /><br />Also this was just sent via that PM thread, I've withheld names but they are free to chime in themselves:<br /><br /><img class="userimg" src="https://ip.bitcointalk.org/?u=http%3A%2F%2Fpuu.sh%2FbHQFa%2F527cc12321.png&t=591&c=c9Zexw2ZXo7NgA" alt="" border="0" /><br /><br />^ That's a pretty solid point right there. <br /><br /><br />Anyways this isn't a thread about you and your fraud aspirations, let's try and stay on topic. <br /> </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/zeeshanblc-67194" title="Profile of zeeshanblc">zeeshanblc</a> </div> <div class="position">sr. member</div> <div class="position-coins"> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> </div> <div class="activity">Activity: 390</div> <div class="merit">Merit: 250</div> <div class="avatar"> <img src="https://bitcointalk.org/useravatars/avatar_67194.png" alt="" title="Profile photo of zeeshanblc"> </div> <div class="description"></div> <div class="view-profile"> <a href="/user/zeeshanblc-67194" title="Profile of zeeshanblc"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8911289"></a> <a href="/topic/m.8911289">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 21, 2014, 06:14:09 AM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8911289">#55</a> </div> </div> <div class="content"> </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/stunna-81292" title="Profile of Stunna">Stunna</a> </div> <div class="position">legendary</div> <div class="position-coins"> <img src="/images/user_position/legendary.gif" alt="" title="Legendary level"> </div> <div class="activity">Activity: 3192</div> <div class="merit">Merit: 1279</div> <div class="avatar"> <img src="https://bitcointalk.org/useravatars/avatar_81292.png" alt="" title="Profile photo of Stunna"> </div> <div class="description">Primedice.com, Stake.com</div> <div class="view-profile"> <a href="/user/stunna-81292" title="Profile of Stunna"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8911041"></a> <a href="/topic/m.8911041">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 21, 2014, 05:36:23 AM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8911041">#54</a> </div> </div> <div class="content"> <div class="quote-header"><a href="/topic/m.8910857">Quote from: zeeshanblc on September 21, 2014, 05:14:57 AM</a></div><div class="quote"><div class="quoteheader">Quote</div><div class="quote">Draw your own conclusions, I have mine. You probably think I'm biased as they were competition, but I have friends that were personally scammed by dicebitco.in to the rigging and I will never trust them again nor should anyone else. I'd be willing to help Dooglus relaunch his website if we can think up a more provably fair investment scheme just so people have a safe place to invest. </div><br />This is what I think Stunna wanted to say but it was not clear enough.<br /><br />You should not trust anyone except him and Primedice. <br /><br />Dice sites with invest option are dangerous because max profit easily can go above 20BTC and that's the max on primedice. This makes them more interesting then PD and they attract more whales while PD is left with faucet players.<br /><br />All Stunna cares and wants is Primedice to be largest dice site and he will do everything he can to trash his competition.<br /><br />One thing I don't understand, why there is a such need to come to competitors site and write anything in their thread? Especially trash talk and your own negative opinion and theories.<br /><br />I'm not defending DB, I personably think they F*****UP and I would never invest or play there.<br /><br />As for Primedice and Stunna honesty, here are some facts I did notice, you make your own decisions.<br /><br />1. Primedice 2<br /> - highest paid signature campaign<br /> - ton of money thrown away on signatures, faucet etc.<br /> - A few if any users with positive account<br /> - People complaining of PD being rigged because server hash was changing all the time, overall shady provably fair where you had to wait 24h for secret seed.<br /><br />2. Primedice 3 released<br /> - new provably fair introduced (proper one)<br /> - faucet reduced<br /> - signature campaign reduced totally, members dropped...suddenly there is no extra money for this<br /> - a LOT more people start to win, more people with positive accounts<br /> - overall cutting costs wherever they can<br /><br />To me this means that they stole shit load of BTC on PD2 and now playing to be honest people helping others not to get scammed.<br /><br /><br /></div><br />This is the most illogical string of thoughts I've seen on this thread. I think it's safe to say that primedice is the biggest bitcoin gambling site at the moment and isn't struggling financially. <br />1. Faucet was reduced as our userbase has increased by 5x which has attracted the attention of more people looking to exploit it. Faucet is still higher than PD2 faucet on average (our PD2 faucet was 250 for non-whitelisted users, now anyone can get to a 10,000+sat faucet by wagering).<br />2. Signature campaign was supposed to close several months ago, it hasn't been very effective in many months and has contributed to forum spam while being a major hassle to run.<br />3. There are more winners and more losers given that the our userbase has increased significantly<br />4. If I had bad intentions couldn't I just launch an investment site myself and undetectably scam millions? <br /><br />If you want to debate me do it from your main account, I'm well aware that you are either the founder of luckynumber or an admin and have used that account for ill actions: <a class="ul" href="/topic/luckynumberme-faking-bet-volume-using-fake-accounts-to-advertise-621659" title="Luckynumber.me faking bet volume, using fake accounts to advertise topic">https://bitcointalksearch.org/topic/luckynumberme-faking-bet-volume-using-fake-accounts-to-advertise-621659</a> . I know that you are just trying to dodge negative trust on your other account and are farming trusts right now to launch your new scammy investment site. I felt extremely deceived when I talked to you via PM and gave you my reasons for why I felt the way I did about LN and it turned out that you were proven to be giftcoins/luckynumber. I'm not surprised that you choose to blast me at any possible opportunity granted that I did the same with your website, but please grow a pair of balls and do it properly. <br /><br /><img class="userimg" src="https://ip.bitcointalk.org/?u=http%3A%2F%2Fpuu.sh%2FbHO4w%2F0b2d2147c1.png&t=591&c=RJLFkB2yL0xBVw" alt="" border="0" /><br /><br /><br /><br /><div class="quote-header"><a href="/topic/m.8908368">Quote from: dooglus on September 20, 2014, 10:16:52 PM</a></div><div class="quote"><div class="quote-header"><a href="/topic/m.8907217">Quote from: Stunna on September 20, 2014, 07:14:53 PM</a></div><div class="quote"><div class="quote-header"><a href="/topic/m.8902782">Quote from: dooglus on September 20, 2014, 11:38:31 AM</a></div><div class="quote"><div class="quote-header"><a href="/topic/m.8896275">Quote from: Stunna on September 19, 2014, 08:53:57 PM</a></div><div class="quote">Good luck trying to regain people's trust after potentially scamming over a thousand coins.<br /></div><br /><div class="quote-header"><a href="/topic/m.8897967">Quote from: Stunna on September 20, 2014, 01:48:40 AM</a></div><div class="quote">I stand by everything I said including the part about the 1000 coins. <br /></div><br />I don't think I understand. What 1000 coins are you talking about here?<br /></div><br />The site claims 122,000 coins have been wagered, 300 coins have been delivered to investors and I'd imagine that half of the invested funds if not the majority during the mateo incident were the site's own money.<br /></div><br />It took me a while to understand the relevance of those numbers. I now think you mean the following:<br /><br />Since 122k coins were wagered, the expected profit is 1220 BTC. The actual profit is just 300 BTC of which half were earned by the site itself. So the profit is 820 short because the site stole it, and they also earned 150 from Mateo's loss, so that's a total of 970 BTC they've taken.<br /><br />Is that it?<br /><br />Just-Dice only earned 0.35% of turnover even though the house edge was 1%. The shortfall was something like 34k BTC. I hope you don't think we stole that too. As you've no doubt noticed on PrimeDice the variance is huge when the house edge is just 1%.<br /></div><br />I wasn't implying that was the case with JD, obviously there is a chance of that being the case although I personally lean against that belief. That's how ridiculous these types of investments are, you're a trustworthy person but we ultimately have to take you at your word for 10k-20k coins. Even you'd agree that level of trust is ridiculous, now imagine doing the same with someone completely brand new in the community who has a proven scam record. <br /><br />I think the possibility is rather high of this being the case on DB given their track record. Basically what I alleged is Dicebitco.in is a proven scam and had the opportunity to discretely steal ~1000 coins and given the fact that they are indeed proven scammers that possibility seems rather likely. If you had nonce-skipped on JD I probably would have accused you of the same thing. After all if someone is going to detectably scam wouldn't you think they would also undetectably do so? The point I'm trying to make it someone who has committed a proven scam should not be given benefit of the doubt, if you think they still deserve that then I think you're naive. <br /><br />My opinions with regards to investments aren't very popular and I stand in an extremely biased position, but ultimately so many people in this community lack common sense and I'm just trying to provide some balanced argument. The idea that I'm trashing investment sites because I'm greedy or can't stand competition is a recurring argument. I'm pretty sure I'd stand to make much more if I allowed investment on primedice, the risk to investors is too high though and I don't think I'm worthy of that level of trust & responsibility nor can I figure out a way to make it provably fair. </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/zeeshanblc-67194" title="Profile of zeeshanblc">zeeshanblc</a> </div> <div class="position">sr. member</div> <div class="position-coins"> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> </div> <div class="activity">Activity: 390</div> <div class="merit">Merit: 250</div> <div class="avatar"> <img src="https://bitcointalk.org/useravatars/avatar_67194.png" alt="" title="Profile photo of zeeshanblc"> </div> <div class="description"></div> <div class="view-profile"> <a href="/user/zeeshanblc-67194" title="Profile of zeeshanblc"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8910857"></a> <a href="/topic/m.8910857">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 21, 2014, 05:14:57 AM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8910857">#53</a> </div> </div> <div class="content"> <div class="quoteheader">Quote</div><div class="quote">Draw your own conclusions, I have mine. You probably think I'm biased as they were competition, but I have friends that were personally scammed by dicebitco.in to the rigging and I will never trust them again nor should anyone else. I'd be willing to help Dooglus relaunch his website if we can think up a more provably fair investment scheme just so people have a safe place to invest. </div><br />This is what I think Stunna wanted to say but it was not clear enough.<br /><br />You should not trust anyone except him and Primedice. <br /><br />Dice sites with invest option are dangerous because max profit easily can go above 20BTC and that's the max on primedice. This makes them more interesting then PD and they attract more whales while PD is left with faucet players.<br /><br />All Stunna cares and wants is Primedice to be largest dice site and he will do everything he can to trash his competition.<br /><br />One thing I don't understand, why there is a such need to come to competitors site and write anything in their thread? Especially trash talk and your own negative opinion and theories.<br /><br />I'm not defending DB, I personably think they F*****UP and I would never invest or play there.<br /><br />As for Primedice and Stunna honesty, here are some facts I did notice, you make your own decisions.<br /><br />1. Primedice 2<br /> - highest paid signature campaign<br /> - ton of money thrown away on signatures, faucet etc.<br /> - A few if any users with positive account<br /> - People complaining of PD being rigged because server hash was changing all the time, overall shady provably fair where you had to wait 24h for secret seed.<br /><br />2. Primedice 3 released<br /> - new provably fair introduced (proper one)<br /> - faucet reduced<br /> - signature campaign reduced totally, members dropped...suddenly there is no extra money for this<br /> - a LOT more people start to win, more people with positive accounts<br /> - overall cutting costs wherever they can<br /><br />To me this means that they stole shit load of BTC on PD2 and now playing to be honest people helping others not to get scammed.<br /><br /> </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/cddc-379403" title="Profile of cddc">cddc</a> </div> <div class="position">newbie</div> <div class="position-coins"> <img src="/images/user_position/star.gif" alt=""> </div> <div class="activity">Activity: 3</div> <div class="merit">Merit: 0</div> <div class="avatar"> </div> <div class="description"></div> <div class="view-profile"> <a href="/user/cddc-379403" title="Profile of cddc"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8910121"></a> <a href="/topic/m.8910121">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 21, 2014, 03:34:17 AM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8910121">#52</a> </div> </div> <div class="content"> How DB allowed withdrawals for big ammounts from COLD STORAGE without verify??? </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/valzador-346373" title="Profile of Valzador">Valzador</a> </div> <div class="position">hero member</div> <div class="position-coins"> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> </div> <div class="activity">Activity: 1316</div> <div class="merit">Merit: 503</div> <div class="avatar"> </div> <div class="description"></div> <div class="view-profile"> <a href="/user/valzador-346373" title="Profile of Valzador"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8908665"></a> <a href="/topic/m.8908665">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 20, 2014, 11:03:12 PM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8908665">#51</a> </div> </div> <div class="content"> <div class="quote-header"><a href="/topic/m.8906837">Quote from: BusyBeaverHP on September 20, 2014, 06:26:31 PM</a></div><div class="quote">I have no idea why people are even speculating on how the rogue employee could have sabotaged high rollers when we should be speculating on the plausibility of the rogue employee's existence in the first place.<br /><br />Note that this was on the night of September 6th, 2014. This was the night before the scandal broke loose. <br /><img class="userimg" src="https://ip.bitcointalk.org/?u=http%3A%2F%2Fi.imgur.com%2FSJvuc1Q.png&t=591&c=twdhNGxq4elaQQ" alt="" border="0" /><br />manl stated that there were no other person working on the site than him and Gerry.<br /><br />Remember that skipped nonces were found all the way back to August 28th, 2014. So why are some of you debating what the rogue employee could have done rather than the existence of such a rogue employee?<br /></div><br />Do you think that they would tell us that they didn't make the site themselves and instead hired another coder? I run an altcoin creation service and none of my customers prefer their communities to know that I created their coin for them. </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/valzador-346373" title="Profile of Valzador">Valzador</a> </div> <div class="position">hero member</div> <div class="position-coins"> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> </div> <div class="activity">Activity: 1316</div> <div class="merit">Merit: 503</div> <div class="avatar"> </div> <div class="description"></div> <div class="view-profile"> <a href="/user/valzador-346373" title="Profile of Valzador"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8908647"></a> <a href="/topic/m.8908647">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 20, 2014, 11:00:56 PM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8908647">#50</a> </div> </div> <div class="content"> Everyone knows gambling is rigged, just stop. </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/dooglus-3420" title="Profile of dooglus">dooglus</a> </div> <div class="position">legendary</div> <div class="position-coins"> <img src="/images/user_position/legendary.gif" alt="" title="Legendary level"> </div> <div class="activity">Activity: 2940</div> <div class="merit">Merit: 1333</div> <div class="avatar"> <img src="https://bitcointalk.org/useravatars/avatar_3420.png" alt="" title="Profile photo of dooglus"> </div> <div class="description"></div> <div class="view-profile"> <a href="/user/dooglus-3420" title="Profile of dooglus"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8908368"></a> <a href="/topic/m.8908368">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 20, 2014, 10:16:52 PM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8908368">#49</a> </div> </div> <div class="content"> <div class="quote-header"><a href="/topic/m.8907217">Quote from: Stunna on September 20, 2014, 07:14:53 PM</a></div><div class="quote"><div class="quote-header"><a href="/topic/m.8902782">Quote from: dooglus on September 20, 2014, 11:38:31 AM</a></div><div class="quote"><div class="quote-header"><a href="/topic/m.8896275">Quote from: Stunna on September 19, 2014, 08:53:57 PM</a></div><div class="quote">Good luck trying to regain people's trust after potentially scamming over a thousand coins.<br /></div><br /><div class="quote-header"><a href="/topic/m.8897967">Quote from: Stunna on September 20, 2014, 01:48:40 AM</a></div><div class="quote">I stand by everything I said including the part about the 1000 coins. <br /></div><br />I don't think I understand. What 1000 coins are you talking about here?<br /></div><br />The site claims 122,000 coins have been wagered, 300 coins have been delivered to investors and I'd imagine that half of the invested funds if not the majority during the mateo incident were the site's own money.<br /></div><br />It took me a while to understand the relevance of those numbers. I now think you mean the following:<br /><br />Since 122k coins were wagered, the expected profit is 1220 BTC. The actual profit is just 300 BTC of which half were earned by the site itself. So the profit is 820 short because the site stole it, and they also earned 150 from Mateo's loss, so that's a total of 970 BTC they've taken.<br /><br />Is that it?<br /><br />Just-Dice only earned 0.35% of turnover even though the house edge was 1%. The shortfall was something like 34k BTC. I hope you don't think we stole that too. As you've no doubt noticed on PrimeDice the variance is huge when the house edge is just 1%. </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/stunna-81292" title="Profile of Stunna">Stunna</a> </div> <div class="position">legendary</div> <div class="position-coins"> <img src="/images/user_position/legendary.gif" alt="" title="Legendary level"> </div> <div class="activity">Activity: 3192</div> <div class="merit">Merit: 1279</div> <div class="avatar"> <img src="https://bitcointalk.org/useravatars/avatar_81292.png" alt="" title="Profile photo of Stunna"> </div> <div class="description">Primedice.com, Stake.com</div> <div class="view-profile"> <a href="/user/stunna-81292" title="Profile of Stunna"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8907217"></a> <a href="/topic/m.8907217">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 20, 2014, 07:14:53 PM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8907217">#48</a> </div> </div> <div class="content"> <div class="quote-header"><a href="/topic/m.8902782">Quote from: dooglus on September 20, 2014, 11:38:31 AM</a></div><div class="quote"><div class="quote-header"><a href="/topic/m.8896275">Quote from: Stunna on September 19, 2014, 08:53:57 PM</a></div><div class="quote">Good luck trying to regain people's trust after potentially scamming over a thousand coins.<br /></div><br /><div class="quote-header"><a href="/topic/m.8897967">Quote from: Stunna on September 20, 2014, 01:48:40 AM</a></div><div class="quote">I stand by everything I said including the part about the 1000 coins. <br /></div><br />I don't think I understand. What 1000 coins are you talking about here?<br /><br />I see two ways to interpret your "potentially" here:<br /><br />1) Are you saying they had the potential to steal 1000 BTC? If so, the number is more like 7000, since that's what was in the bankroll that they could have stolen (but instead they allowed investors to withdraw almost all of it).<br /><br />2) Or are you saying that you think they actually stole 1000 BTC? If so, how? Even if "Mateo" was a site player, he lost more than he won, and it was less than 1000 BTC.<br /><br />Neither way makes much sense to me. Could you be clearer about what you're actually accusing them of?<br /></div><br />The site claims 122,000 coins have been wagered, 300 coins have been delivered to investors and I'd imagine that half of the invested funds if not the majority during the mateo incident were the site's own money.<br /><br />What likely happened:<br />1. Mateo appears and chews up a massive chunk of investors funds so dicebitco.in can repay those that were scammed (Think about all the people who divested after finding out the news and already taking substantial losses)<br />2. Dicebitco.in invests their own funds or has mateo lose to the website after they have a strong % of bankroll. <br />3. Appear more legitimate/turn a profit<br /><br /> Obviously variance can occur but given their track record my theory is that they were trying to steal from investors with fake whales and then rig rolls to make up the difference and keep the edge around 1%. It's really a classic scam, they use fraud to keep their profit up which in effect attracts investments which they can scam. <br /><br />I'm sure they were doing this, what I'm curious is to what extent this was occurring. Is there proof going further back that rolls were being rigged or did dicebitco.in disable their verification so they could tidy up their DB?<br /><br />There's no way to 100% prove any of this which is exactly why investments is a joke, but I still firmly think there is a significant chance this occurred given that they were 100% found to be intentionally rigging rolls. This could have been a massive and long term undetected scam if nobody detected it and it was only used on large whales.<br /><br />Draw your own conclusions, I have mine. You probably think I'm biased as they were competition, but I have friends that were personally scammed by dicebitco.in to the rigging and I will never trust them again nor should anyone else. I'd be willing to help Dooglus relaunch his website if we can think up a more provably fair investment scheme just so people have a safe place to invest. </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/busybeaverhp-306604" title="Profile of BusyBeaverHP">BusyBeaverHP</a> </div> <div class="position">full member</div> <div class="position-coins"> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> </div> <div class="activity">Activity: 209</div> <div class="merit">Merit: 100</div> <div class="avatar"> </div> <div class="description"></div> <div class="view-profile"> <a href="/user/busybeaverhp-306604" title="Profile of BusyBeaverHP"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8906837"></a> <a href="/topic/m.8906837">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 20, 2014, 06:26:31 PM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8906837">#47</a> </div> </div> <div class="content"> I have no idea why people are even speculating on how the rogue employee could have sabotaged high rollers when we should be speculating on the plausibility of the rogue employee's existence in the first place.<br /><br />Note that this was on the night of September 6th, 2014. This was the night before the scandal broke loose. <br /><img class="userimg" src="https://ip.bitcointalk.org/?u=http%3A%2F%2Fi.imgur.com%2FSJvuc1Q.png&t=591&c=twdhNGxq4elaQQ" alt="" border="0" /><br />manl stated that there were no other person working on the site than him and Gerry.<br /><br />Remember that skipped nonces were found all the way back to August 28th, 2014. So why are some of you debating what the rogue employee could have done rather than the existence of such a rogue employee? </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/itod-113838" title="Profile of itod">itod</a> </div> <div class="position">legendary</div> <div class="position-coins"> <img src="/images/user_position/legendary.gif" alt="" title="Legendary level"> </div> <div class="activity">Activity: 1974</div> <div class="merit">Merit: 1077</div> <div class="avatar"> <img src="https://bitcointalk.org/useravatars/avatar_113838.jpg" alt="" title="Profile photo of itod"> </div> <div class="description">Honey badger just does not care</div> <div class="view-profile"> <a href="/user/itod-113838" title="Profile of itod"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8906777"></a> <a href="/topic/m.8906777">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 20, 2014, 06:18:59 PM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8906777">#46</a> </div> </div> <div class="content"> There's a crucial problem with this explanation, even if one swallows the low odds of Mateo winning the way he did it (was it something around 1:500?). If the developer had access to the seeds of the players at one point, he could potentially contact some players privately and organize to serve them with their individual seeds for the part of the profit. Investors money would not ever be safe this way, a group can drain profits slowly from the site continuously. </div> </div> </div> </div> <div class="item clearfix"> <div class="item-content"> <div class="user-data"> <div class="username"> <a href="/user/leannemckim46-140733" title="Profile of leannemckim46">leannemckim46</a> </div> <div class="position">sr. member</div> <div class="position-coins"> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> <img src="/images/user_position/star.gif" alt=""> </div> <div class="activity">Activity: 420</div> <div class="merit">Merit: 250</div> <div class="avatar"> </div> <div class="description"></div> <div class="view-profile"> <a href="/user/leannemckim46-140733" title="Profile of leannemckim46"><img src="/images/profile_sm.gif" alt=""></a> </div> </div> <div class="message-data"> <div class="header clearfix"> <div class="icon"> <img src="/images/xx.gif" alt=""> </div> <div class="title-wrapper"> <div class="title"> <a name="msg8906775"></a> <a href="/topic/m.8906775">Re: OFFICIAL DICEBITCO.IN ANNOUNCEMENT ABOUT THE SKIPPED NONCES INCIDENT</a> </div> <div class="date">September 20, 2014, 06:18:39 PM</div> </div> <div class="item-number text-right"> <a href="/topic/m.8906775">#45</a> </div> </div> <div class="content"> <div class="quote-header"><a href="/topic/m.8906441">Quote from: dooglus on September 20, 2014, 05:40:31 PM</a></div><div class="quote"><div class="quote-header"><a href="/topic/m.8906055">Quote from: leannemckim46 on September 20, 2014, 05:03:23 PM</a></div><div class="quote">He could have just picked "x" number of random users to have nonces skipped for, and it just so happened that the first one to notice was a whale and the rest didn't actually bet until it was discovered and simply never bet anything while the code was in effect. <br /><br />By "not having DB access" they could mean that the employee did not have the ability to write/make changes to the DB but could "read" the DB. If this was the case he could simply pick "x" number of users who would bet large amounts. <br /><br />He could have used the bet verifier to check how much was wagered on random bets by each user and picked users who had made large bets. (I have not actually used the bet verifier prior to when they disabled it so I don't know if this would actually make sense)<br /></div><br />All this could explain how he decided which users were best to target.<br /><br />None of this explains how he then *manually* targeted those users.<br /></div>It could be something along the lines of "this code only applies to users "X" "Y" and "Z" (I am not very familiar with the specific code used so I don't know the exactly language). </div> </div> </div> </div> </div> <div class="pagination-wrapper"> <span class="pages-text ">Pages:</span> <ul class="pagination"><li class="prev"><a href="/topic/official-dicebitcoin-announcement-about-the-skipped-nonces-incident-789339" data-page="0">«</a></li> <li><a href="/topic/official-dicebitcoin-announcement-about-the-skipped-nonces-incident-789339" data-page="0">1</a></li> <li class="active"><a href="/topic/official-dicebitcoin-announcement-about-the-skipped-nonces-incident-789339/2-page.html" data-page="1">2</a></li> <li><a href="/topic/official-dicebitcoin-announcement-about-the-skipped-nonces-incident-789339/3-page.html" data-page="2">3</a></li> <li><a href="/topic/official-dicebitcoin-announcement-about-the-skipped-nonces-incident-789339/4-page.html" data-page="3">4</a></li> <li><a href="/topic/official-dicebitcoin-announcement-about-the-skipped-nonces-incident-789339/5-page.html" data-page="4">5</a></li> <li class="next"><a href="/topic/official-dicebitcoin-announcement-about-the-skipped-nonces-incident-789339/3-page.html" data-page="2">»</a></li></ul> </div></div> </div> <div class="breadcrumbs"><a href="/" title="Home">Bitcoin Forum</a><span>></span><a href="/economy-1000000003" title="Economy category">Economy</a><span>></span><a href="/marketplace-5" title="Marketplace category">Marketplace</a><span>></span><a href="/gambling-56" title="Gambling category">Gambling</a></div> <div class="jump-to pull-right"> <div class="inner"> <div class="content text-right"> <div class="text">Jump to: </div> <form id="jump-to-form" class="jump-to-form-class" action="/forum/default/jump-to-category" method="post"> <input type="hidden" name="_csrf-frontend" value="kVUO9TO5ugXDGdxz-zmDxEBHhZWqIIxKQOMpFEbKjxP3L0aUf_2XbPBp6hy_UfuGNzXfzZxjtQAssUV8PqvrQw=="> <select id="jumptoform-category_id" class="" name="JumpToForm[category_id]" aria-required="true"> <option value="">Please select a destination:</option> <option value="1000000001">Bitcoin</option> <option value="1">=> Bitcoin Discussion</option> <option value="74">===> Legal</option> <option value="77">===> Press</option> <option value="86">===> Meetups</option> <option value="87">===> Important Announcements</option> <option value="6">=> Development & Technical Discussion</option> <option value="37">===> Wallet software</option> <option value="98">=====> Electrum</option> <option value="100">=====> Bitcoin Wallet for Android</option> <option value="138">=====> BitcoinJ</option> <option value="97">=====> Armory</option> <option value="231">=====> Mycelium</option> <option value="261">=====> Hardware wallets</option> <option value="4">=> Bitcoin Technical Support</option> <option value="12">=> Project Development</option> <option value="14">=> Mining</option> <option value="40">===> Mining support</option> <option value="41">===> Pools</option> <option value="42">===> Mining software (miners)</option> <option value="76">===> Hardware</option> <option value="137">=====> Group buys</option> <option value="81">===> Mining speculation</option> <option value="1000000003">Economy</option> <option value="7">=> Economics</option> <option value="57">===> Speculation</option> <option value="5">=> Marketplace</option> <option value="53">===> Currency exchange</option> <option value="56">===> Gambling</option> <option value="71">=====> Games and rounds</option> <option value="207">=====> Investor-based games</option> <option value="228">=====> Gambling discussion</option> <option value="65">===> Lending</option> <option value="88">=====> Long-term offers</option> <option value="78">===> Securities</option> <option value="73">===> Auctions</option> <option value="84">===> Service Announcements</option> <option value="212">=====> Micro Earnings</option> <option value="85">===> Service Discussion</option> <option value="222">=====> Web Wallets</option> <option value="223">=====> Exchanges</option> <option value="51">===> Goods</option> <option value="75">=====> Computer hardware</option> <option value="93">=====> Digital goods</option> <option value="234">=======> Invites & Accounts</option> <option value="217">=====> Collectibles</option> <option value="52">===> Services</option> <option value="8">=> Trading Discussion</option> <option value="83">===> Scam Accusations</option> <option value="129">===> Reputation</option> <option value="1000000004">Other</option> <option value="24">=> Meta</option> <option value="167">===> New forum software</option> <option value="168">===> Bitcoin Wiki</option> <option value="39">=> Beginners & Help</option> <option value="9">=> Off-topic</option> <option value="250">=> Serious discussion</option> <option value="251">===> Ivory Tower</option> <option value="59">=> Archival</option> <option value="17">===> Chinese students</option> <option value="25">===> Obsolete (buying)</option> <option value="26">===> Obsolete (selling)</option> <option value="99">===> MultiBit</option> <option value="44">===> CPU/GPU Bitcoin mining hardware</option> <option value="92">===> Корзина</option> <option value="34">=> Politics & Society</option> <option value="1000000006">Alternate cryptocurrencies</option> <option value="67">=> Altcoin Discussion</option> <option value="159">=> Announcements (Altcoins)</option> <option value="240">===> Tokens (Altcoins)</option> <option value="160">=> Mining (Altcoins)</option> <option value="199">===> Pools (Altcoins)</option> <option value="161">=> Marketplace (Altcoins)</option> <option value="197">===> Service Announcements (Altcoins)</option> <option value="198">===> Service Discussion (Altcoins)</option> <option value="238">===> Bounties (Altcoins)</option> <option value="224">=> Speculation (Altcoins)</option> <option value="1000000005">Local</option> <option value="241">=> العربية (Arabic)</option> <option value="242">===> العملات البديلة (Altcoins)</option> <option value="265">=====> النقاشات</option> <option value="253">===> إستفسارات و أسئلة المبتدئين</option> <option value="266">===> التعدين</option> <option value="267">===> النقاشات الأخرى</option> <option value="271">===> منصات التبادل</option> <option value="191">=> Bahasa Indonesia (Indonesian)</option> <option value="194">===> Mining (Bahasa Indonesia)</option> <option value="192">===> Altcoins (Bahasa Indonesia)</option> <option value="276">===> Trading dan Spekulasi</option> <option value="277">===> Ekonomi, Politik, dan Budaya</option> <option value="278">===> Topik Lainnya</option> <option value="193">===> Marketplace (Bahasa Indonesia)</option> <option value="30">=> 中文 (Chinese)</option> <option value="117">===> 跳蚤市场</option> <option value="118">===> 山寨币</option> <option value="119">===> 媒体</option> <option value="146">===> 挖矿</option> <option value="196">===> 离题万里</option> <option value="201">=> Hrvatski (Croatian)</option> <option value="220">===> Trgovina</option> <option value="221">===> Altcoins (Hrvatski)</option> <option value="273">=====> Announcements (Hrvatski)</option> <option value="272">===> Off-topic (Hrvatski)</option> <option value="13">=> Français</option> <option value="184">===> Vos sites et projets</option> <option value="50">===> Hors-sujet</option> <option value="183">===> Actualité et News</option> <option value="208">===> Débutants</option> <option value="47">===> Discussions générales et utilisation du Bitcoin</option> <option value="48">===> Mining et Hardware</option> <option value="187">===> Économie et spéculation</option> <option value="49">===> Place de marché</option> <option value="210">=====> Produits et services</option> <option value="211">=====> Petites annonces</option> <option value="209">=====> Échanges</option> <option value="188">===> Le Bitcoin et la loi</option> <option value="54">===> Wiki, documentation et traduction</option> <option value="186">===> Développement et technique</option> <option value="149">===> Altcoins (Français)</option> <option value="258">=====> Annonces</option> <option value="89">=> India</option> <option value="121">===> Mining (India)</option> <option value="122">===> Marketplace (India)</option> <option value="123">===> Regional Languages (India)</option> <option value="124">===> Press & News from India</option> <option value="125">===> Alt Coins (India)</option> <option value="126">===> Buyer/ Seller Reputations (India)</option> <option value="127">===> Off-Topic (India)</option> <option value="28">=> Italiano (Italian)</option> <option value="153">===> Guide (Italiano)</option> <option value="169">===> Progetti</option> <option value="205">===> Discussioni avanzate e sviluppo</option> <option value="175">===> Trading, analisi e speculazione</option> <option value="170">===> Mercato</option> <option value="46">=====> Mercato valute</option> <option value="107">=====> Beni</option> <option value="171">=====> Servizi</option> <option value="172">=====> Esercizi commerciali</option> <option value="173">=====> Hardware/Mining (Italiano)</option> <option value="200">=====> Gambling (Italiano)</option> <option value="162">===> Accuse scam/truffe</option> <option value="115">===> Mining (Italiano)</option> <option value="132">===> Alt-Currencies (Italiano)</option> <option value="176">=====> Annunci</option> <option value="144">===> Raduni/Meeting (Italiano)</option> <option value="165">===> Crittografia e decentralizzazione</option> <option value="145">===> Off-Topic (Italiano)</option> <option value="79">=> Nederlands (Dutch)</option> <option value="80">===> Markt</option> <option value="94">===> Gokken/lotterijen</option> <option value="116">===> Mining (Nederlands)</option> <option value="143">===> Beurzen</option> <option value="147">===> Alt Coins (Nederlands)</option> <option value="148">===> Off-topic (Nederlands)</option> <option value="150">===> Meetings (Nederlands)</option> <option value="82">=> 한국어 (Korean)</option> <option value="182">===> 대체코인 Alt Coins (한국어)</option> <option value="10">=> Русский (Russian)</option> <option value="22">===> Новички</option> <option value="23">===> Бизнес</option> <option value="236">=====> Барахолка</option> <option value="237">=====> Обменники</option> <option value="90">===> Идеи</option> <option value="66">===> Кодеры</option> <option value="21">===> Майнеры</option> <option value="91">===> Политика</option> <option value="20">===> Трейдеры</option> <option value="72">===> Альтернативные криптовалюты</option> <option value="248">=====> Токены</option> <option value="256">=====> Бayнти и aиpдpoпы</option> <option value="55">===> Хайпы</option> <option value="185">===> Работа</option> <option value="18">===> Разное</option> <option value="262">===> Oбcyждeниe Bitcoin</option> <option value="128">=====> Новости</option> <option value="19">=====> Юристы</option> <option value="108">=> Română (Romanian)</option> <option value="109">===> Anunturi importante</option> <option value="114">===> Presa</option> <option value="110">===> Offtopic</option> <option value="111">===> Market</option> <option value="257">=====> Discutii Servicii</option> <option value="166">===> Minerit</option> <option value="112">===> Tutoriale</option> <option value="113">===> Bine ai venit!</option> <option value="259">===> Altcoins (Monede Alternative)</option> <option value="178">=====> Anunturi Monede Alternative</option> <option value="45">=> Skandinavisk</option> <option value="133">=> Türkçe (Turkish)</option> <option value="180">===> Bitcoin Haberleri</option> <option value="189">===> Ekonomi</option> <option value="190">===> Servisler</option> <option value="232">=====> Fonlar</option> <option value="157">===> Alternatif Kripto-Paralar</option> <option value="235">=====> Madencilik (Alternatif Kripto-Paralar)</option> <option value="239">=====> Duyurular (Alternatif Kripto-Paralar)</option> <option value="155">===> Pazar Alanı</option> <option value="156">===> Madencilik</option> <option value="229">===> Proje Geliştirme</option> <option value="158">===> Konu Dışı</option> <option value="174">===> Yeni Başlayanlar & Yardım</option> <option value="230">===> Buluşmalar</option> <option value="29">=> Português (Portuguese)</option> <option value="131">===> Primeiros Passos (Iniciantes)</option> <option value="69">===> Economia & Mercado</option> <option value="181">===> Criptomoedas Alternativas</option> <option value="134">===> Brasil</option> <option value="135">===> Portugal</option> <option value="70">===> Mineração em Geral</option> <option value="206">===> Desenvolvimento & Discussões Técnicas</option> <option value="95">=> עברית (Hebrew)</option> <option value="219">=> Pilipinas</option> <option value="243">===> Altcoins (Pilipinas)</option> <option value="260">=====> Altcoin Announcements (Pilipinas)</option> <option value="268">===> Pamilihan</option> <option value="274">===> Others (Pilipinas)</option> <option value="252">=> 日本語 (Japanese)</option> <option value="255">===> アルトコイン</option> <option value="27">=> Español (Spanish)</option> <option value="31">===> Mercado y Economía</option> <option value="202">=====> Servicios</option> <option value="203">=====> Trading y especulación</option> <option value="32">===> Hardware y Minería</option> <option value="33">===> Esquina Libre</option> <option value="101">===> Mercadillo</option> <option value="102">=====> Mexico</option> <option value="103">=====> Argentina</option> <option value="105">=====> Centroamerica y Caribe</option> <option value="104">=====> España</option> <option value="130">===> Primeros pasos y ayuda</option> <option value="151">===> Altcoins (criptomonedas alternativas)</option> <option value="204">=====> Servicios</option> <option value="177">=====> Minería de altcoins</option> <option value="254">=====> Tokens (Español)</option> <option value="16">=> Deutsch (German)</option> <option value="60">===> Mining (Deutsch)</option> <option value="61">===> Trading und Spekulation</option> <option value="63">===> Projektentwicklung</option> <option value="64">===> Off-Topic (Deutsch)</option> <option value="139">===> Treffen</option> <option value="140">===> Presse </option> <option value="152">===> Altcoins (Deutsch)</option> <option value="270">=====> Announcements (Deutsch)</option> <option value="269">===> Marktplatz</option> <option value="141">=====> Auktionen</option> <option value="36">=====> Suche</option> <option value="35">=====> Biete</option> <option value="62">===> Anfänger und Hilfe</option> <option value="120">=> Ελληνικά (Greek)</option> <option value="136">===> Αγορά</option> <option value="195">===> Mining Discussion (Ελληνικά)</option> <option value="179">===> Altcoins (Ελληνικά)</option> <option value="246">=====> Altcoin Announcements (Ελληνικά)</option> <option value="247">=====> Altcoin Mining (Ελληνικά)</option> <option value="11">=> Other languages/locations</option> <option value="142">=> Polski</option> <option value="163">===> Tablica ogłoszeń</option> <option value="164">===> Alternatywne kryptowaluty</option> <option value="263">=====> Nowe kryptowaluty i tokeny</option> <option value="264">=====> Tablica ogłoszeń (altcoiny)</option> <option value="275">=> Nigeria (Naija)</option> <option value="279">===> Politics and society (Naija)</option> <option value="280">===> Off-topic (Naija)</option> </select> <button type="submit">go</button> </form> </div> </div> </div> </div> </div> </div> <footer class="footer"> <div class="left"> <a class="powered-icon mysql" href="http://www.mysql.com/" target="blank"></a> <a class="powered-icon php" href="http://www.php.net/" target="blank"></a> </div> <div class="center"> © 2020, Bitcointalksearch.org </div> <div class="right"> <a class="valid-icon xhtml" href="http://validator.w3.org/check/referer" target="blank"></a> <a class="valid-icon css" href="http://jigsaw.w3.org/css-validator/check/referer" target="blank"></a> </div> </footer> <script src="/assets/427491ca/f7fa18c7/jquery.js"></script> <script src="/assets/427491ca/0f7cd776/yii.js"></script> <script src="/assets/427491ca/0f7cd776/yii.activeForm.js"></script> <script src="/assets/427491ca/3f84b6fd/jquery-ui.js"></script> <script src="/assets/427491ca/0ec48276/js/akeyboard.min.js"></script> <script src="/assets/427491ca/f1f14823/js/bootstrap.js"></script> <script src="/assets/427491ca/8d094ee3/js/activeform.min.js"></script> <script src="/assets/427491ca/ab575839/js/select2.full.min.js"></script> <script src="/assets/427491ca/7ca46779/js/select2-krajee.min.js"></script> <script src="/assets/427491ca/286d0aed/js/kv-widgets.min.js"></script> <script>jQuery(function ($) { jQuery('#jump-to-form').yiiActiveForm([{"id":"jumptoform-category_id","name":"category_id","container":".field-jumptoform-category_id","input":"#jumptoform-category_id","enableAjaxValidation":true}], {"validationUrl":"\/forum\/default\/jump-to-category"}); $(document).on('change', '#jumptoform-category_id', function() { $('#jump-to-form').submit(); }); $('.messages .items .item').each(function() { var user_data_height = $(this).find('.user-data').outerHeight(); var message_data_height = $(this).find('.message-data').outerHeight(); var header_height = $(this).find('.message-data .header').outerHeight(); var signature_height = $(this).find('.message-data .signature').outerHeight(); var content_padding = parseInt($(this).find('.message-data .content').css('padding-bottom')); if(user_data_height > message_data_height) { $(this).find('.message-data .content').css('height', (user_data_height - (header_height + signature_height)) - content_padding); } }); var $el=jQuery("#w3 .kv-hint-special");if($el.length){$el.each(function(){$(this).activeFieldHint()});} jQuery&&jQuery.pjax&&(jQuery.pjax.defaults.maxCacheLength=0); if (jQuery('#timezoneselectform-timezone').data('select2')) { jQuery('#timezoneselectform-timezone').select2('destroy'); } jQuery.when(jQuery('#timezoneselectform-timezone').select2(select2_7cea2cc0)).done(initS2Loading('timezoneselectform-timezone','s2options_3267a624')); jQuery('#w3').yiiActiveForm([], []); $(document).on('click', '.hider', function () { if ($(this).hasClass('hide-header')) { $('#header .auth-info').addClass('hidden'); $('#header .bottom').addClass('hidden'); $(this).removeClass('hide-header'); $(this).addClass('show-header'); } else { $('#header .auth-info').removeClass('hidden'); $('#header .bottom').removeClass('hidden'); $(this).removeClass('show-header'); $(this).addClass('hide-header'); } }); $('.timezone-dropdown').on('change', function() { var id = $(this).find('select').select2('data')[0].id; $.ajax({ url: '/site/save-timezone', type: 'get', dataType: 'json', data: { timeZoneId: id, }, success: function(response) { location.reload(); }, error: function () { } }); }); function submitBigsearch() { location.href = '/forum/default/search?q=QUERY'.replace('QUERY', encodeURIComponent($('#bigsearch textarea').val())); } $('#bigsearch textarea').on('keydown', function(e) { if (e.key == 'Enter') { event.preventDefault(); submitBigsearch(); } }); var keyboard = new aKeyboard.keyboard({ el: '#akeyboard-container' }); keyboard.inputOn('#bigsearch textarea', 'value'); keyboard.onclick('Enter', function() { $('#akeyboard-container').hide(); submitBigsearch(); }); $('#akeyboard-container').draggable(); $('.bigsearch-function-tia').on('click', function() { $('#akeyboard-container').toggle(); }); });</script></body> </html>