Bitcoin Forum>Bitcoin>Development & Technical Discussion>Wallet software>Electrum
Author

Topic: Update your Electrum to the latest 3.3.5 version (Read 301 times)

Baofeng
legendary
Activity: 2576
Merit: 1655
Update your Electrum to the latest 3.3.5 version
May 12, 2019, 12:07:20 AM
#12
Quote from: TryNinja on May 10, 2019, 09:42:37 PM
Quote from: Velkro on May 10, 2019, 09:39:34 PM
Did they fix vulnerabilities that allowed DDoS attack?  I was reading this release notes you mentioned but didnt find answer for my question.
This was huge thing to fix and a lot people had problems because of that.
AFAIK the vulnerability was fixed post 3.3 and that's why they used it to disconnect users on versions < 3.3; the DDoS attack that was happening was made to the servers. Totally different.

Correct, if you read those releases in the link:

Quote
# Release 3.3.3 - (January 25, 2019)

 * Do not expose users to server error messages (#4968)
 * Notify users of new releases. Release announcements must be signed,
   and they are verified byElectrum using a hardcoded Bitcoin address.
 * Hardware wallet fixes (#4991, #4993, #5006)
 * Display only QR code in QRcode Window
 * Fixed code signing on MacOS
 * Randomise locktime of transactions
Artemis3
legendary
Activity: 1988
Merit: 1561
CLEAN non GPL infringing code made in Rust lang
Re: Update your Electrum to the latest 3.3.5 version
May 11, 2019, 10:29:49 PM
#11
Quote from: LTU_btc on May 11, 2019, 06:53:31 PM
When it comes to crypto, I'm trying not to rush with software updates. I think it would be better to wait few days after release of update to be sure that there are no vulnerabilities and big bugs in newest version. Until then it's nothing wrong to use old version of software.

I see no reason to rush for this version, unlike the previous ones where you would be left unable to connect to public Electrum servers. I also do not immediately jump when a new version comes out, for various reasons. Your thinking is the same i apply to all software (not just crypto related).

When enough people upgrade and report things are working ok, usually my parent distro (Arch) would have packaged a new version for me to update into. At this very moment its still on 3.3.4, but there is no need to rush things, I'll wait for the package maintainer AND forum user reports.
LTU_btc
legendary
Activity: 3038
Merit: 1330
Slava Ukraini!
Re: Update your Electrum to the latest 3.3.5 version
May 11, 2019, 06:53:31 PM
#10
When it comes to crypto, I'm trying not to rush with software updates. I think it would be better to wait few days after release of update to be sure that there are no vulnerabilities and big bugs in newest version. Until then it's nothing wrong to use old version of software.
Kakmakr
legendary
Activity: 3430
Merit: 1957
Leading Crypto Sports Betting & Casino Platform
Re: Update your Electrum to the latest 3.3.5 version
May 11, 2019, 12:36:00 PM
#9
Also make sure you only download the update from the original site or the original GitHub repository, because hackers make use of similar looking domains to launch Phishing attacks and people download software that are exploited.

The last update also made sure that "public" servers with exploited code could not be used by default. So you will not be able to connect your client if you still used a outdated version of the client software.  Wink
pooya87
legendary
Activity: 3444
Merit: 10558
Re: Update your Electrum to the latest 3.3.5 version
May 10, 2019, 10:59:35 PM
#8
Quote from: Velkro on May 10, 2019, 09:39:34 PM
Quote from: Baofeng on May 10, 2019, 12:59:29 AM
Hello everyone,
Just a gently reminder to update your Electrum wallet to the latest release.

Did they fix vulnerabilities that allowed DDoS attack?  I was reading this release notes you mentioned but didnt find answer for my question.
This was huge thing to fix and a lot people had problems because of that.

that is a DDoS attack on Electrum nodes/servers not on Electrum clients. this change-long you are seeing is for Electrum client so obviously there is and never will be any mention of it there.
i think this is part of the fix: https://github.com/kyuupichan/electrumx/pull/785


p.s. don't forget checking the PGP signatures of what you download and don't just rush upgrading to newest version.
TryNinja
legendary
Activity: 2758
Merit: 6830
Re: Update your Electrum to the latest 3.3.5 version
May 10, 2019, 09:42:37 PM
#7
Quote from: Velkro on May 10, 2019, 09:39:34 PM
Did they fix vulnerabilities that allowed DDoS attack?  I was reading this release notes you mentioned but didnt find answer for my question.
This was huge thing to fix and a lot people had problems because of that.
AFAIK the vulnerability was fixed post 3.3 and that's why they used it to disconnect users on versions < 3.3; the DDoS attack that was happening was made to the servers. Totally different.
Velkro
legendary
Activity: 2296
Merit: 1014
Re: Update your Electrum to the latest 3.3.5 version
May 10, 2019, 09:39:34 PM
#6
Quote from: Baofeng on May 10, 2019, 12:59:29 AM
Hello everyone,
Just a gently reminder to update your Electrum wallet to the latest release.

Did they fix vulnerabilities that allowed DDoS attack?  I was reading this release notes you mentioned but didnt find answer for my question.
This was huge thing to fix and a lot people had problems because of that.
hugeblack
legendary
Activity: 2506
Merit: 3645
Buy/Sell crypto at BestChange
Re: Update your Electrum to the latest 3.3.5 version
May 10, 2019, 09:39:22 PM
#5
This is my feeling when I watch a new update to that wallet.  Cheesy
Quote from: https://i.kym-cdn.com/entries/icons/original/000/008/402/Screen_shot_2012-01-18_at_5.28.23_PM.png

Perhaps what caught my attention in the update is these two things: "CoinGecko.com" & "Testnet warning"

I expected there to be more update regarding sync and not just.

Quote from: https://github.com/spesmilo/electrum/blob/master/RELEASE-NOTES
Fix a bug in synchronizer (#5122) where client could get stuck.
   Also, show the progress of history sync in the GUI. (#5319)
IeSua
hero member
Activity: 1330
Merit: 869
Re: Update your Electrum to the latest 3.3.5 version
May 10, 2019, 04:24:31 PM
#4
Quote from: OmegaStarScream on May 10, 2019, 11:55:17 AM
Could someone explain the meaning of this "seedless mode" for Trezor in the changelog and how does it work exactly?

https://wiki.trezor.io/Enterprise#Seedless_setup
TryNinja
legendary
Activity: 2758
Merit: 6830
Re: Update your Electrum to the latest 3.3.5 version
May 10, 2019, 01:08:04 PM
#3
Quote from: OmegaStarScream on May 10, 2019, 11:55:17 AM
Could someone explain the meaning of this "seedless mode" for Trezor in the changelog and how does it work exactly?
See this: https://btcbrainpro.wordpress.com/2019/02/14/electrum-adding-initialization-of-trezor-in-seedless-mode/

And this:
Quote
This is an option during device initialisation. When enabled, the user will never be shown the seed words, and the device even stores this fact; i.e. the user will have "proof" the mnemonic was never shown. Apparently the main use case in mind is redundant multisig setups.

There are now multiple "advanced" options when initialising a Trezor, so I hid some of them behind an "expert" button.
https://github.com/spesmilo/electrum/pull/5118
OmegaStarScream
staff
Activity: 3500
Merit: 6152
Re: Update your Electrum to the latest 3.3.5 version
May 10, 2019, 11:55:17 AM
#2
Could someone explain the meaning of this "seedless mode" for Trezor in the changelog and how does it work exactly?

Baofeng
legendary
Activity: 2576
Merit: 1655
Re: Update your Electrum to the latest 3.3.5 version
May 10, 2019, 12:59:29 AM
#1
Hello everyone,

Just a gently reminder to update your Electrum wallet to the latest release.

https://twitter.com/ElectrumWallet/status/1126543774790893572



All the changes can be found here.

https://github.com/spesmilo/electrum/blob/master/RELEASE-NOTES
Bitcoin Forum>Bitcoin>Development & Technical Discussion>Wallet software>Electrum
Jump to: