• Breaking News

    Tuesday, February 19, 2019

    Home Unlabelled Ethereum Anonymous User Pays $308,000 as Transaction Fees Sending $14.71 Worth Of ETH

    Ethereum Anonymous User Pays $308,000 as Transaction Fees Sending $14.71 Worth Of ETH

    February 19, 2019

    Ethereum Anonymous User Pays $308,000 as Transaction Fees Sending $14.71 Worth Of ETH

    Anonymous User Pays $308,000 as Transaction Fees Sending $14.71 Worth Of ETH

    Posted: 19 Feb 2019 02:42 PM PST

    Leverj has just released the first Plasma based Crypto Exchange onto mainnet!

    Posted: 19 Feb 2019 12:59 PM PST

    Statement from Afri: "I did not quit social media, I quit Ethereum. I did not go dark, I just left the community. I am no longer coordinating hard-forks, building testnets, or contributing otherwise. I did not work on Polkadot, I never did, I worked on Ethereum. I did not hate Ethereum, I loved it."

    Posted: 19 Feb 2019 02:23 AM PST

    Phase 2 pre-spec: cross-shard mechanics - Sharding

    Posted: 19 Feb 2019 03:22 PM PST

    Biggest mid-year Ethereum conference incoming and no one's talking about it ?

    Posted: 19 Feb 2019 03:31 AM PST

    Title.

     

    Probably the biggest mid-year conference (over 250 speakers ? 1500 attendees ? wtf?) is coming up in literally two weeks in Paris, and I don't see anyone talking about it (again?).

     

    It's free for students (apply here), free for volunteers (apply here).
    Tickets are 240euros, sold at cost (they even published last years' budget).
    Pretty low fare compared to other events...

     

    Right before the conference there's the Ethereum Magician Council (it was actually founded during last EthCC if I recall correctly). Right after EthCC there's the first ETHParis hackathon.

     

    Venue is CNAM (historical place in Paris), and food was delicious last year (hope it will be this year too).

     

    Am I the only one getting HYPED ? This feels like Devcon 4.5 !!

    submitted by /u/Biliklok
    [link] [comments]

    Our very first "class struggle"? A veritable "devs versus plebs" scenario? Please discuss

    Posted: 19 Feb 2019 06:14 PM PST

    There appears to be a leaked document in the works (signed by 97 devs) which could ignite our very first class struggle: a veritable "devs versus plebs" scenario, as /u/DCinvestor phrased it.

    Basically, the enlightened hardworking devs are pulling together in defense of Afri against the big bad social media troll army with their crazy false narratives. Let me give you a flavor of the language in this document. "[They], the contributors and workers behind the projects" intend "to grow awareness by educating the community" and cleanse us of "the kind of toxicity that [they] as a community should avoid". Apparently, a trifling number of complaints were valid and respectful, while the vast majority of plebs have been "asserting [Afri's] involvement in wild conspiracies, issuing personal threats", and have gone "far beyond acceptable standards of debate". Apparently, a nebulous sense of "humanity and better systems" takes precedence over free speech. Apparently, the plebs are so crazy and destructive that it's the devs "responsibility to protect each other". They ask how they can "move past this [incident], as humans"; and whether or not we "realize how much this intimidates" them. Apparently... we're just a cruel mob who "mass downvote them on Reddit". Apparently... they "reject this mob mentality". Apparently, poor old Afri was "just speaking his mind". He didn't deserve to be drowned "under a sea of hatred", they say. Because, of course, our meaningless "internet trolling" is "rooted in frustration or a sense of powerlessness".

    Well then, the "voices behind Ethereum" have spoken. Our "campaign of hate" must not prevail. They "will not accept, nor look away", but "will stand up against it". Because at the end of the day it's all about preserving "the mental and emotional health" of fragile humans, isn't it?

    I don't know if I'm being polemical or if I'm just rephrasing things into more objective language, but this seems to be quite literally what this document is saying. I doubt it's fake because it really does sound like the kind of response we've been hearing back from Hudson, Maria, and their friends on Twitter.

    I don't speak for anyone but myself when I say this, but I'm very disappointed that these individuals are here to "manifest the mission and vision of Ethereum". Their general grasp of the events over the past few days is comically disconnected from the actual facts and concerns raised by many thoughtful voices in this vast and largely non-dev-oriented community. They're trivializing the discussion. I'm pained to say it but these devs look tone deaf and cowardly. Even worse, they look like a sectarian mob in their own right; one with a dangerous superiority complex.

    To re-iterate a comment I made earlier: There are insidious in-group/out-group biases forming in Ethereum. The "Ethereum community" isn't just about the devs and their everyday relationships. It dwarfs that; and extends far and wide into a complex social movement encompassing an extremely diverse crowd of people. It's quite disrespectful and irresponsible to reduce "us" to a mere mob or whatever on the internet. You can't just pretend that everyone outside your filter bubble is somehow hostile or irrelevant. At the end of the day we're all here to support Ethereum in one way or another. It would be wise not to draw too many sharp lines between us.

    I'd like to open this up to discussion and hear everyone's thoughts, thank you.

    submitted by /u/lntrospectre
    [link] [comments]

    A More Human Web3 Activity Feed – 3Box – Medium

    Posted: 19 Feb 2019 02:11 PM PST

    Justin Drake on NEAR's Whiteboard Series

    Posted: 19 Feb 2019 09:54 AM PST

    New Ethereum Attack Vector

    Posted: 19 Feb 2019 10:50 AM PST

    All the discussions around Afri leaving the Ethereum community got me thinking - there were 3 main responses to the situation:

    1. People who saw no problem with Afri's tweets / COIs and came to his defense, many of whom know him on a personal level and could vouch for his character
    2. People who had concerns with Afri's COIs (or generally how we handle COIs) and expressed them fairly and reasonably to see how we could improve as a community
    3. (Mostly Anonymous) People who had spammed reddit/twitter with bullying, personal attacks, unfounded assumptions, and hostility towards Afri, and then claimed "CENSORSHIP" when their comments were removed

    Note: I sympathize with both 1 and 2 - not taking a side here in this post!

    I was personally shocked by the magnitude of comments that I would classify in bucket 3 above. Is this a potential attack vector for Ethereum?

    Many leaders in our community are contributing in volunteer roles (e.g. Afri was release manager, launched Goerli, etc), and for these people to see the community turn on them with personal attacks can be disheartening and cause them to leave Ethereum altogether. In particular, I believe we are significantly more vulnerable to this attack than centralized teams with smaller communities.

    One example of this is an anonymous user named "Andrew Quentson" who began spamming every public Ethereum chatroom over the past few days. It's a very cheap attack to perform, but seems to be very effective at sowing discord and is contributing to a hostile "them vs. us" feeling here. Who knows who could be the next dev to be targeted..

    Thoughts? Is this something we should be concerned about and, if so, what should we do about it?

    submitted by /u/AZA214
    [link] [comments]

    Reminder: Be Careful While Developing - Someone just spent 3,150 ETH in Transaction Fees

    Posted: 18 Feb 2019 10:33 PM PST

    A good reminder to be careful when developing and to perform proper testing before releasing anything interacting with the mainnet.

    The owner of 0x587ecf600d304f831201c30ea0845118dd57516e spent 3,150 ETH in transaction fees:

    https://etherscan.io/tx/0x5691ddae752652bd579da5b45e84d5b90ae35acce5cbd308a1574c31f722608f - 210 ETH

    https://etherscan.io/tx/0xcb59748b9b7b9732f04b66dde0009a1e4856a50ed8ff68a0dedbaa5e57807d31 - 420 ETH

    https://etherscan.io/tx/0x1f73b43dc9c48cc131a931fac7095de9e5eba0c5184ec0c5c5f1f32efa2a6bab - 2,100 ETH

    https://etherscan.io/tx/0x464e50e8ade15ad883f80fd173f6afd85efdf15413892625fe0146fbe5fecd92 - 420 ETH

    From the activity, seems to be an Exchange. I am curious to know which one...

    submitted by /u/milkywayzz
    [link] [comments]

    The new DutchX 2.0 smart contracts are now live on Mainnet!

    Posted: 19 Feb 2019 05:10 AM PST

    The DutchX 2.0 smart contracts have been deployed in preparation for dxDAO governance. Once the dxDAO launches, it will control the DutchX trading protocol's 'auctioneer' powers—the ability to alter the contracts' parameters or logic.

    In this context, we believe upgradeability is necessary, as it allows for bug fixes in contract logic, adjustments to changing regulatory frameworks, or general improvements to the protocol.

    You can read more on this blog post.

    submitted by /u/GnosisPM
    [link] [comments]

    ETHGlobal 2019 Updates — ETHNewYork, ETHIndia, ETHBoston, and ETHWaterloo!

    Posted: 19 Feb 2019 08:42 AM PST

    Ethereum Report: Consensys guide to Ethereum tools, Monoplasma by Streamr, Shasper Testnet Plans…

    Posted: 19 Feb 2019 04:25 AM PST

    Here’s All the Cool Blockchain Stuff that Happened at ETHDenver

    Posted: 19 Feb 2019 04:15 AM PST

    My thoughts on the past few days, and what we can learn from it

    Posted: 19 Feb 2019 07:37 AM PST

    Staking for Loom PlasmaChain (Ethereum DPoS Sidechain) is Officially Live — 6 Validators Onboarded and Counting

    Posted: 18 Feb 2019 11:23 PM PST

    EDCON HACK-Cryptoeconomics for Plasma-Karl Floersch

    Posted: 19 Feb 2019 06:43 AM PST

    I'm building a library DApp

    Posted: 19 Feb 2019 06:34 AM PST

    Hello All,

    I've been building an online library DApp. You can checkout the website I've thrown together for it over at http://www.booksonablockchain.com/.

    The idea is to make a product to access books and textbooks hosted on Blockchain.

    When I was a second year physics major, short on money, I challenged myself to spend as little as possible to buy the textbooks for my classes. I found e-book copies of them, and while it was cheaper, it wasn't always convenient. I couldn't always pull it up when I needed to reference it in the middle of class, it was difficult to take notes on particular sections without copying down a lot of information from the book, for one particular lecture-lab I had, I wasn't able to find the lab manual, so I had to borrow one from a friend, and the e-book sometimes proved hard to navigate through and flip quickly between sections.

    From other physics majors I learned that people like to cross-reference materials across multiple textbooks to better understand a concept, - the case that stands out is Taylor and Maclaurin series in calculus. One textbook might provide a better conceptual understanding (how Taylor and Maclaurin series are built from power series, and how they can be used to approximate any function), while another might offer a better practical walk through (how to just get the right answer), and together they give a more complete understanding to the reader. The DApp I'm working on would be capable of providing this capability by providing access to multiple textbooks on the same subject, allowing users to pick and choose between several different textbooks based on what they're looking for.

    I've built a minimum viable interactive website to gauge the interest of my idea of providing an online library of general books, comics and textbooks that users could borrow, either to reference while they study or just as a blockchain library/bookstore.. So far, it only offers books available on the public domain, for copyright reasons. It's also currently using the Rinkeby testnet, so you don't need to spend any real money to test it out. I'm planning on expanding the selection in the future.

    Technology-wise, there is still a lot that needs to be improved, but during this stage, I would appreciate feedback and constructive criticism you guy have.

    submitted by /u/JarethRRader
    [link] [comments]

    How many fully decentralized apps are out there?

    Posted: 19 Feb 2019 06:01 PM PST

    Please post any fully decentralized projects you know of in the comments below. Ignoring obvious projects like go-ethereum, parity, Mist browser, are there any fully decentralized apps that don't rely on a hosted/closed source UIs?

    Augur i'm pretty sure can run fully decentralized.

    MyCrypto desktop wallet is another example.

    submitted by /u/ReinoutWolter
    [link] [comments]

    Securing your hardware, Try.

    Posted: 19 Feb 2019 05:56 PM PST

    So we all know security is so difficult with all the zero day exploits and skids out there.

    Recently the Parity attack vector was exposed as leaving not just rpc users vulnerable but anyone with a poorly configured router.

    It occurred to me how the emphasis on making people responsible to harden their own network was glazed over in favor of coding something less susceptible to what is commonly found in the field as the network security equivalent of what we use to strain boiled pasta.

    I've outlined some simple steps one can take below to seem a less inviting target.

    1) If you must use your ISP provided kit as a wireless gateway and modem, at least minimize the scope of your WiFi range. There is no reason to project a 2.4GHz signal in a 3 block radius when a 5GHz signal at half strength will reach every corner of your home and slightly beyond.

    2) The more common the hardware the most likely it's been disseminated for exploits that are readily available to apply. It's best to have a router that routes, a WAP that handles wifi and switches that will expand your network. Small office commercial grade stuff is what you want.. and even then ensure you change the default login credentials. You would be surprised how many don't heed this advice. Change your IP (i.e. if you normally access 192.168.1.1 over http try to enable https connections to 192.168.2.42 over port 88 instead. Also don't just change the password but the login name as well, every little bit helps.

    3) Ensure remote logins are disabled, disable uPnP if at all possible, and forwarding, and set your DNS away from what your ISP uses to the more secure OpenDNS (208.67.220.220, 208.67.222.222) Google (8.8.8.8, 8.8.4.4) or Cloudflare (1.1.1.1, 1.0.0.1) servers which will help mitigate mitm attempts.

    4) Keep your firmware up to date, enable your router firewall.. also ensure your PC has a firewall installed. Instructions for debian or ubuntu users below.

    Adding a very basic iptables firewall as root:

    #apt install -y iptables-persistent #invoke-rc.d netfilter-persistent save #service netfilter-persistent stop

    now edit rules.v4 at /etc/iptables/rules.v4 to read:

    *filter # Allow all outgoing, but drop incoming and forwarding packets by default :INPUT DROP [0:0] :FORWARD DROP [0:0] :OUTPUT ACCEPT [0:0] # Custom per-protocol chains :UDP - [0:0] :TCP - [0:0] :ICMP - [0:0] # Acceptable UDP traffic # Acceptable TCP traffic -A TCP -p tcp --dport 22 -j ACCEPT # Acceptable ICMP traffic # Boilerplate acceptance policy -A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT -A INPUT -i lo -j ACCEPT # Drop invalid packets -A INPUT -m conntrack --ctstate INVALID -j DROP # Pass traffic to protocol-specific chains ## Only allow new connections (established and related should already be handled) ## For TCP, additionally only allow new SYN packets since that is the only valid ## method for establishing a new TCP connection -A INPUT -p udp -m conntrack --ctstate NEW -j UDP -A INPUT -p tcp --syn -m conntrack --ctstate NEW -j TCP -A INPUT -p icmp -m conntrack --ctstate NEW -j ICMP # Reject anything that's fallen through to this point ## Try to be protocol-specific w/ rejection message -A INPUT -p udp -j REJECT --reject-with icmp-port-unreachable -A INPUT -p tcp -j REJECT --reject-with tcp-reset -A INPUT -j REJECT --reject-with icmp-proto-unreachable # Commit the changes COMMIT *raw :PREROUTING ACCEPT [0:0] :OUTPUT ACCEPT [0:0] COMMIT *nat :PREROUTING ACCEPT [0:0] :INPUT ACCEPT [0:0]:OUTPUT ACCEPT [0:0] :POSTROUTING ACCEPT [0:0] COMMIT *security :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] COMMIT *mangle :PREROUTING ACCEPT [0:0] :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] :POSTROUTING ACCEPT [0:0] COMMIT

    and edit /etc/iptables/rules.v6 to read:

    *filter :INPUT DROP [0:0] :FORWARD DROP [0:0] :OUTPUT DROP [0:0] COMMIT *raw :PREROUTING DROP [0:0] :OUTPUT DROP [0:0] COMMIT *nat :PREROUTING DROP [0:0] :INPUT DROP [0:0] :OUTPUT DROP [0:0] :POSTROUTING DROP [0:0] COMMIT *security :INPUT DROP [0:0] :FORWARD DROP [0:0] :OUTPUT DROP [0:0] COMMIT *mangle :PREROUTING DROP [0:0] :INPUT DROP [0:0] :FORWARD DROP [0:0] :OUTPUT DROP [0:0] :POSTROUTING DROP [0:0] COMMIT

    Then you will want to go ahead and restart and initialize the settings you laid out

    #service netfilter-persistent start

    5) Linux users can also take advantage of some options available by adding the following code to /etc/sysctl.conf

    # Reboot machine in the event of a kernel panic. kernel.panic=10 # Ignore erroneous broadcasts, packets and redirects net.ipv4.icmp_echo_ignore_broadcasts=1 net.ipv4.conf.all.accept_source_route=0 net.ipv4.conf.default.accept_source_route=0 net.ipv4.conf.all.accept_redirects=0 net.ipv4.conf.default.accept_redirects=0 net.ipv4.conf.all.secure_redirects=1 net.ipv4.conf.default.secure_redirects=1 # Avoid traffic intended for routing net.ipv4.ip_forward=0 net.ipv4.conf.all.send_redirects=0 net.ipv4.conf.default.send_redirects=0 # Harden against spoofing, log attempts net.ipv4.conf.all.rp_filter=1 net.ipv4.conf.default.rp_filter=1 net.ipv4.conf.all.log_martians=1 net.ipv4.conf.default.log_martians=1 # Fix against RFC 1337 TIME-WAIT vector net.ipv4.tcp_rfc1337=1

    Then have these changes immediately take effect with the following as root:

    #sysctl -p

    This is all pretty basic stuff but I hope these tips come in handy for some here.. Keep using secure code but ultimately maintain responsibility for at least trying to secure your own network as well.

    submitted by /u/1electron
    [link] [comments]

    5 Ethereum Transactions Totaling 0.17 ETH Rack Up $575k in Fees - Developer Error or Something Else?

    Posted: 19 Feb 2019 05:04 PM PST

    Etherwatch - Simple app to monitor or watch ethereum wallets

    Posted: 19 Feb 2019 03:55 PM PST

    Asking for feedback for my project. (Aging Research)

    Posted: 19 Feb 2019 06:54 AM PST

    Hi everyone,

    I have been working for some months during my spare time on a project that aims to grow funds for anti-aging research institutions. I am building a trustless platform where contributions get rewarded with ethereum tokens that in the event of a patent or treatment being discovered could be used as currency for production rights over patents or to pay for treatments.

    I am still tweaking the decentralised platform that manages the funds and based on feedback I might add or remove features.

    This is the link where a 1 minute long explainer video can be found as well as extended documentation at the whitepapper tab.

    https://metha.life/

    Cheers and thank you !

    submitted by /u/metha_biofund
    [link] [comments]
    Read more
    at

    No comments:

    Post a Comment