https://blockchain.info/address/1Ha7DNXbiUi5DozhZjtDDveciamb6uQZbR
wha's wrong with my wallet? how to find back my coin?
Topic: Reused R values again - page 20. (Read 121336 times)
Perhaps blockchain.info (if people still trusts them) can create new addresses for the affected users, post the old-new map, and the "good samaritan" can then transfer the amounts there.
The non-random rng would have also resulted in giving unrelated users the same keys. It didn't just effect signing.
I'm pretty sure blockchain will reimburse users, since blockchain is clearly at fault and have admitted to it. Returning the funds won't change whether these people get paid back, although it would help blockchain if you actually care about that fact.
Perhaps blockchain.info (if people still trusts them) can create new addresses for the affected users, post the old-new map, and the "good samaritan" can then transfer the amounts there.
Bottom line, if this guy didn't do it, then someone else would have. So the fact he revealed it was him is a good samaritan without quotes in my book. Your idea has merit, blockchain should contact this person and figure out a way.
Perhaps blockchain.info (if people still trusts them) can create new addresses for the affected users, post the old-new map, and the "good samaritan" can then transfer the amounts there.
Hello,
there were a large bunch of new broken addresses today (several 100s in one day). I took the liberty of saving some funds before they got swiped by others. If you can convince me that they belong to you (signing a message with the address is obviously not enough; the private key is already known), I will send the funds back.
Look into the file http://johoe.mooo.com/bitcoin/broken.txt, to see whether your address was broken.
there were a large bunch of new broken addresses today (several 100s in one day). I took the liberty of saving some funds before they got swiped by others. If you can convince me that they belong to you (signing a message with the address is obviously not enough; the private key is already known), I will send the funds back.
Look into the file http://johoe.mooo.com/bitcoin/broken.txt, to see whether your address was broken.
Hey johoe,
I'm sure you are aware this was a blockchain.info screwup. See here http://www.reddit.com/r/Bitcoin/comments/2onm5r/blockchaininfo_security_disclosure/
If you are willing, as you have stated, please contact blockchain and work with them as they have the info to prove ownership. I'm certain you would be rewarded.
...
Look into the file http://johoe.mooo.com/bitcoin/broken.txt, to see whether your address was broken.
I created a little procedure to check if your address is at risk just in case you are using bitcoin-qt.Look into the file http://johoe.mooo.com/bitcoin/broken.txt, to see whether your address was broken.
1. activate "enable coin control features" in options, wallet
2. go to the send tab and click inputs. A list of addresses is shown, sort it by clicking on the heading(the word Addresses)
3. copy/paste each address in this tab to a text file(right click on an address and select copy to put it in the clipboard)
4. save this text file and call it myadrs.txt
5. save the file linked above in the file adr1.txt
6. compare the two files by using the *ux command
sdiff myadrs.txt adr1.txt | grep -v "|"|grep -v "<"|grep -v ">"
7. if an address is shown(twice), that address of yours is on the list
You can repeat the procedure above for the two files mentioned in https://bitcointalksearch.org/topic/m.9711303
If you are running Windows, you can install cygwin to get *ix like commands.
There might be faster procedures to check your addresses, this one worked for me.
Hello,
there were a large bunch of new broken addresses today (several 100s in one day). I took the liberty of saving some funds before they got swiped by others. If you can convince me that they belong to you (signing a message with the address is obviously not enough; the private key is already known), I will send the funds back.
Look into the file http://johoe.mooo.com/bitcoin/broken.txt, to see whether your address was broken.
there were a large bunch of new broken addresses today (several 100s in one day). I took the liberty of saving some funds before they got swiped by others. If you can convince me that they belong to you (signing a message with the address is obviously not enough; the private key is already known), I will send the funds back.
Look into the file http://johoe.mooo.com/bitcoin/broken.txt, to see whether your address was broken.
One of these address' is mine, can you place contact me, I can provide proof with screen shots or teamview.
Dude you took from my address, I was saving up for my family for christmas and you went and stolen it this morning..
Please have the heart to give it back, PMing you now
Please have the heart to give it back, PMing you now
Thanks, for the link. Although, if they already fixed this problem this morning, why are there still repeated R values generated?
I still find reused R values in new transactions. Is this just a browser cache issue or is the problem still not solved completely?
E.g.:
https://blockchain.info/tx/f10d5c469c634de25276aae9c4e14add80ad9c66000182fac1b30e72a99298fb
uses the same R values as:
https://blockchain.info/tx/cf0b65ec6a2f9b5e003358d7b9bb6e04b30138c4dba30724f600bf753bfc3f4a
Quote
no. Just plain old bitcoind using rawtransaction interface
I mean that this service belongs to bc.iAnd you are also from bc.i (may be I am wrong of course)
Quote
I think this is not related to the other bug that started in September.
Man-in-the-middle on tor exit node?
or may be http://www.reddit.com/r/Bitcoin/comments/2oltp9/warning_blockchaininfos_javascript_verifier_is/
No, this: http://www.reddit.com/r/Bitcoin/comments/2onm5r/blockchaininfo_security_disclosure/
Quote
no. Just plain old bitcoind using rawtransaction interface
I mean that this service belongs to bc.iAnd you are also from bc.i (may be I am wrong of course)
Quote
I think this is not related to the other bug that started in September.
Man-in-the-middle on tor exit node?
or may be http://www.reddit.com/r/Bitcoin/comments/2oltp9/warning_blockchaininfos_javascript_verifier_is/
Quote
I took the liberty of saving some funds before they got swiped by others.
Is it your address 1HuqM18GMVaLxTRGdmSgytzVYnhRzu7U68 ?
Quote
no. Just plain old bitcoind using rawtransaction interfaceI think this is not related to the other bug that started in September. There are a lot of reused R-values sometimes not even in the same transaction. The scale is also much bigger (500 addresses in one day, >200 BTC). I still count almost 300 unspent outputs (but I'm too lazy to swipe them all).
Quote
I took the liberty of saving some funds before they got swiped by others.
Is it your address 1HuqM18GMVaLxTRGdmSgytzVYnhRzu7U68 ?
And is it your service: http://sharedcoin.com/ ?
Hello,
there were a large bunch of new broken addresses today (several 100s in one day). I took the liberty of saving some funds before they got swiped by others. If you can convince me that they belong to you (signing a message with the address is obviously not enough; the private key is already known), I will send the funds back.
Look into the file http://johoe.mooo.com/bitcoin/broken.txt, to see whether your address was broken.
there were a large bunch of new broken addresses today (several 100s in one day). I took the liberty of saving some funds before they got swiped by others. If you can convince me that they belong to you (signing a message with the address is obviously not enough; the private key is already known), I will send the funds back.
Look into the file http://johoe.mooo.com/bitcoin/broken.txt, to see whether your address was broken.
These are only words. This is not a proof.
Let me say here that I am a president of United States.
Do you trust me and my words now?
Let me say here that I am a president of United States.
Do you trust me and my words now?
Quote
you have informed the developers of the buggy program that they have to fix it
I haven't said that I have developers contacts. How can I inform them?Quote
He sweeps those addresses for the coins.
Are you ready to prove it?I was just reporting what you said here:
Quote
What wallet? It is old given the bug you encountered.
Fix the issue and amaclin may return it. He is usually helpful - many people will just sweep it and do not help people who have an issue.
Fix the issue and amaclin may return it. He is usually helpful - many people will just sweep it and do not help people who have an issue.
Do not import compromised private keys to your wallet
Do not give your private keys to anybody
Do not use untrusted services
How else can I help you?
I think this advises cost more than 0.02
PS. No. I do not return btc. I can give you knowledge and experience - they cost more.
See:
https://bitcointalk.org/index.php?topic=879419.20
And other threads where you say you scan for the addresses (like many other people do).
Quote
you have informed the developers of the buggy program that they have to fix it
I haven't said that I have developers contacts. How can I inform them?Quote
He sweeps those addresses for the coins.
Are you ready to prove it? Quote
Would you mind charing it?
Do you mean "share info"? I do now want to do it right now.Everything is visible enough in the blockchain. Just open your eyes and use your brain.
Well, either you keep that information because you have informed the developers of the buggy program that they have to fix it (which would be laudable) or you have other, possible sinister reasons to keep the program's name for yourself.
Which one is it?
He sweeps those addresses for the coins.
Quote
Would you mind charing it?
Do you mean "share info"? I do now want to do it right now.Everything is visible enough in the blockchain. Just open your eyes and use your brain.
Well, either you keep that information because you have informed the developers of the buggy program that they have to fix it (which would be laudable) or you have other, possible sinister reasons to keep the program's name for yourself.
Which one is it?
Jump to: