📅 Original date posted:2013-05-15
📝 Original message:On 15 May 2013 13:38, Peter Todd <pete at petertodd.org> wrote:
> Now that I have the replace-by-fee reward, I might as well spread the
> wealth a bit.
>
>
> So for all this discussion about replace-by-fee and the supposed
> security of zero-conf transactions, no-one seems to think much about how
> in practice very few vendors have a setup to detect if conflicting
> transactions were broadcast on the network simultaneously - after all if
> that is the case which transaction gets mined is up to chance, so much
> of the time you'll get away with a double spend. We don't yet have a
> mechanism to propagate double-spend warnings, and funny enough, in the
> case of a single txin transaction the double-spend warning is also
> enough information to allow miners to implement replace-by-fee.
>
>
> So I'm offering 2BTC for anyone who comes up with a nice and easy to use
> command line tool that lets you automagically create one version of the
> transaction sending the coins to the desired recipient, and another
> version sending all the coins back to you, both with the same
> transaction inputs. In addition to creating the two versions, you need
> to find a way to broadcast them both simultaneously to different nodes
> on the network. One clever approach might be to use blockchain.info's
> raw transaction POST API, and your local Bitcoin node.
>
> If you happen to be at the conference, a cool demo would be to
> demonstrate the attack against my Android wallet. I'll buy Bitcoins off
> of you at Mt. Gox rates + %10, and you can see if you can rip me off.
> Yes, you can keep the loot. :) This should be videotaped so we can put
> an educational video on youtube after.
>
Isnt it potentially inviting trouble by encouraging people to insert double
spends into the block chain?
Sure, zero conf isnt 100% safe, we all know that.
But neither is the postal service. Doesnt mean we should be going around
promoting the creation of tools to go into people's maiilboxes and open
their letters!
>
> --
> 'peter'[:-1]@petertodd.org
> 00000000000000bafd0a55f013e058cc2a672ee0c66b9265a02390d80e4748f5
>
>
> ------------------------------------------------------------------------------
> AlienVault Unified Security Management (USM) platform delivers complete
> security visibility with the essential security capabilities. Easily and
> efficiently configure, manage, and operate all of your security controls
> from a single console and one unified framework. Download a free trial.
> http://p.sf.net/sfu/alienvault_d2d
> _______________________________________________
> Bitcoin-development mailing list
> Bitcoin-development at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/bitcoin-development
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20130515/c2398578/attachment.html>;
Melvin Carvalho [ARCHIVE] /
npub1uv…saxrt
2023-06-07 15:02:01
in reply to nevent1q…6r64
Author Public Key
npub1uvtfvcegcn9kds68r8he57emc480vqtx8t22kpsctxgjxae44gvsksaxrtSeen on
wss://relay.nostr.bandPublished at
2023-06-07 15:02:01Event JSON
{
"id": "d499fdf1c2d9dd7b58b989885dbb379908adbe84b0c1e180675e94040c4516e5",
"pubkey": "e316966328c4cb66c34719ef9a7b3bc54ef601663ad4ab06185991237735aa19",
"created_at": 1686150121,
"kind": 1,
"tags": [
[
"e",
"00c890275f8d4137fac209cf841828c0917e35ed719b27a621f145f14e5ad4bd",
"",
"root"
],
[
"e",
"8327f0e75e60112ef941d369da041e629fe1c9d2ad49969d96b4e5a23b9ba379",
"",
"reply"
],
[
"p",
"86f42bcb76a431c128b596c36714ae73a42cae48706a9e5513d716043447f5ec"
]
],
"content": "📅 Original date posted:2013-05-15\n📝 Original message:On 15 May 2013 13:38, Peter Todd \u003cpete at petertodd.org\u003e wrote:\n\n\u003e Now that I have the replace-by-fee reward, I might as well spread the\n\u003e wealth a bit.\n\u003e\n\u003e\n\u003e So for all this discussion about replace-by-fee and the supposed\n\u003e security of zero-conf transactions, no-one seems to think much about how\n\u003e in practice very few vendors have a setup to detect if conflicting\n\u003e transactions were broadcast on the network simultaneously - after all if\n\u003e that is the case which transaction gets mined is up to chance, so much\n\u003e of the time you'll get away with a double spend. We don't yet have a\n\u003e mechanism to propagate double-spend warnings, and funny enough, in the\n\u003e case of a single txin transaction the double-spend warning is also\n\u003e enough information to allow miners to implement replace-by-fee.\n\u003e\n\u003e\n\u003e So I'm offering 2BTC for anyone who comes up with a nice and easy to use\n\u003e command line tool that lets you automagically create one version of the\n\u003e transaction sending the coins to the desired recipient, and another\n\u003e version sending all the coins back to you, both with the same\n\u003e transaction inputs. In addition to creating the two versions, you need\n\u003e to find a way to broadcast them both simultaneously to different nodes\n\u003e on the network. One clever approach might be to use blockchain.info's\n\u003e raw transaction POST API, and your local Bitcoin node.\n\u003e\n\u003e If you happen to be at the conference, a cool demo would be to\n\u003e demonstrate the attack against my Android wallet. I'll buy Bitcoins off\n\u003e of you at Mt. Gox rates + %10, and you can see if you can rip me off.\n\u003e Yes, you can keep the loot. :) This should be videotaped so we can put\n\u003e an educational video on youtube after.\n\u003e\n\nIsnt it potentially inviting trouble by encouraging people to insert double\nspends into the block chain?\n\nSure, zero conf isnt 100% safe, we all know that.\n\nBut neither is the postal service. Doesnt mean we should be going around\npromoting the creation of tools to go into people's maiilboxes and open\ntheir letters!\n\n\n\u003e\n\u003e --\n\u003e 'peter'[:-1]@petertodd.org\n\u003e 00000000000000bafd0a55f013e058cc2a672ee0c66b9265a02390d80e4748f5\n\u003e\n\u003e\n\u003e ------------------------------------------------------------------------------\n\u003e AlienVault Unified Security Management (USM) platform delivers complete\n\u003e security visibility with the essential security capabilities. Easily and\n\u003e efficiently configure, manage, and operate all of your security controls\n\u003e from a single console and one unified framework. Download a free trial.\n\u003e http://p.sf.net/sfu/alienvault_d2d\n\u003e _______________________________________________\n\u003e Bitcoin-development mailing list\n\u003e Bitcoin-development at lists.sourceforge.net\n\u003e https://lists.sourceforge.net/lists/listinfo/bitcoin-development\n\u003e\n\u003e\n-------------- next part --------------\nAn HTML attachment was scrubbed...\nURL: \u003chttp://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20130515/c2398578/attachment.html\u003e",
"sig": "d3675b0df623c8894ffe0c96c4dfa80ebbb1444e8545de3cbb448666b5547839cac5491915be60aa09ca3ce0b387e0c57c2509e4e7bc374ea4f781de3609d26c"
}