Silk Road forums
Support => Technical support => Topic started by: woolywinkle on April 13, 2012, 01:39 pm
-
Hi, I'm new here but I've read a lot of threads regarding the effects of being locked out of an account, for various reasons.
My own first account failed at log-in the second time I tried to use it.
So, I made a new account which worked a couple of times, enabling me to bookmark several items for purchasing, before it also suffered log-in failure. Then, what do you know? My first account started working again. Lost my bookmarks is all.
At this stage I just feel a little uneasy about funding my currently functioning account with Bitcoins in case this same account becomes inaccessible.
If I were to fund my currently accessible account and it stopped letting me in, would I be able to retrieve the Bitcoins from it by making a note of the Bitcoin address of this account and using my home based wallet to relocate the bitcoins?
Would it be necessary (or possible) to also use the PIN number of the account to do this?
I have made a not of the PIN number but have also read of PIN number glitches here too. ???
-
Dude I dunno, best advice is just be careful and back up your bitcoins, if look through the forums you can find threads about how to do this using the .dat file. Im the guy who posted about being unable to access 1/2 of my accounts, and the shitty thing is I had just transferred 3X.XX bitcoins into to it so that i could use it as a vendors account. SR support seems to b tied up atm. Over 24hrs and no word back yet. You dont want to end up in my boat but at the same time if you DO want use the site, I think its fine if you back up your coin and copy your wallet address(es). Make your pin complicated too. Thats the best I got for a fellow newb. ,
-
Thanks for the advice TreyWingo104. I'm reading and learning all the time here and it's definitely the best way to avoid some of the pitfalls. Last week I spent a lot of time learning how to back-up the wallet.dat file and encrypt it with TrueCrypt.
What's still puzzling me is that if I put 20 bitcoins into my SR account here and transfer the associated address to my home bitcoin wallet, if the account then becomes inaccessible for any reason, can I move the bitcoins elsewhere using my home bitcoin wallet?
-
Thanks for the advice TreyWingo104. I'm reading and learning all the time here and it's definitely the best way to avoid some of the pitfalls. Last week I spent a lot of time learning how to back-up the wallet.dat file and encrypt it with TrueCrypt.
What's still puzzling me is that if I put 20 bitcoins into my SR account here and transfer the associated address to my home bitcoin wallet, if the account then becomes inaccessible for any reason, can I move the bitcoins elsewhere using my home bitcoin wallet?
Great news for ya woolywinkle. first-off, SR support sent me msg with pw reset. I login and everything was there, just like I left it, they even apologized...thought that was very cool of them, wasnt expecting any apology whatsoever. just glad it worked out man and figured you would feel better knowing it did as well.
As for the bitcoins and backing them up using the wallet.dat file and truecrypt....I have no experience, just wanna say that outright, however, like you, have been reading a bunch on the forums about related topics, and have come accross wallet info...
My understanding, which I hope is not a misunderstanding....is that yes, you could definitely extract the BTC from your SR account provided you have the address....but please, don't take my word on it. Also consider that if your account was compromised by a phisher or hacker, the first thing they would do would be to change both your send and receive (deposit and withdraw) addresses (in the SR account). Then attempt to jack the coins to their own wallet. I think you run an inherent risk no matter what, but if you select a strong pin it makes it that much more difficult. There is an option in SR to put in the backup wallet address, so I think as long as that's encrypted on your end, you're fine, unless they key-logged you and got the pin, which I think is EXTREMELY unlikely.
Sorry, I'm kind of thinking this through while writing it, but overall I think you should have 90 to 99 percent confidence adding the 20BTC and making your purchases. no sweat man, and please any more Sr./more knowledgeable users (pretty much 99 percent of SR), please correct anything here that is wrong so that wooly and I can understand this better! good luck man!
-
ok guys here my ten bob
firstly i had new account put in 25 bitcoins for first purchase.
forgot pin
locked out for seven days.
then just waiting for reset pin
now gets good..while waiting i couldnt get back onto account ?tried with same details then after 6 days for some unknown reason back in..
oh and yeah you guessed it .bitcoins were withdrawn by who ever yesterday after they requested new pin also?
so as far as making and serious difficult pin? dont see how thats to secure.some one gets into account .gets blocked .requests new pin.
presto has your funds cleared out.
beginning to think SR just scamming
-
ok guys here my ten bob
firstly i had new account put in 25 bitcoins for first purchase.
forgot pin
locked out for seven days.
then just waiting for reset pin
now gets good..while waiting i couldnt get back onto account ?tried with same details then after 6 days for some unknown reason back in..
oh and yeah you guessed it .bitcoins were withdrawn by who ever yesterday after they requested new pin also?
so as far as making and serious difficult pin? dont see how thats to secure.some one gets into account .gets blocked .requests new pin.
presto has your funds cleared out.
beginning to think SR just scamming
Hate to say it, but that'd be a security problem on your end. You likely entered your details onto a phisher site, or your computer could be infected with something. Or just a weak password perhaps. That sucks, good luck
-
Great news for ya woolywinkle...
So true TreyWingo104. :)
For a newbie here you're one helpful and informative guy!
Yes, your story does make me feel more confident and I'm looking forward to making a couple of purchases in the near future.
From past experience in other areas of activity, I've learned that it's best practice to cover as many of the bases as possible before making a leap, even though I've sometimes fallen through the odd gap despite this.
So, I'm currently familiarizing myself with GPG4Win, setting up multiple Bitcoin wallets to spread the risk a little. Also, doubling up on my usual backup strategy.
Well worth the effort, if just for the new skills it brings.
I hope things continue to go well for you.
Kind regards,
woolywinke
-
ok guys here my ten bob
firstly i had new account put in 25 bitcoins for first purchase.
forgot pin
locked out for seven days.
then just waiting for reset pin
now gets good..while waiting i couldnt get back onto account ?tried with same details then after 6 days for some unknown reason back in..
oh and yeah you guessed it .bitcoins were withdrawn by who ever yesterday after they requested new pin also?
so as far as making and serious difficult pin? dont see how thats to secure.some one gets into account .gets blocked .requests new pin.
presto has your funds cleared out.
beginning to think SR just scamming
Sorry to hear of your experiences liverpool23, sounds pretty disappointing.
I've read a few posts on here where folks are tempted to believe they're being scammed. Often, things turn out OK. I don't quite know how such a fortunate outcome will possibly apply to you, given that your Bitcoins disappeared but I wish you all the best in sorting it out satisfactorily.
Kind regards,
woolywinkle
-
ok guys here my ten bob
firstly i had new account put in 25 bitcoins for first purchase.
forgot pin
locked out for seven days.
then just waiting for reset pin
now gets good..while waiting i couldnt get back onto account ?tried with same details then after 6 days for some unknown reason back in..
oh and yeah you guessed it .bitcoins were withdrawn by who ever yesterday after they requested new pin also?
so as far as making and serious difficult pin? dont see how thats to secure.some one gets into account .gets blocked .requests new pin.
presto has your funds cleared out.
beginning to think SR just scamming
Hate to say it, but that'd be a security problem on your end. You likely entered your details onto a phisher site, or your computer could be infected with something. Or just a weak password perhaps. That sucks, good luck
Those are some interesting and thought provoking points jme.
I'm definitely going to maximize the strength of my passwords in future. As far as virus infected computers go, I can never be too sure despite having a fire-walled router, up to date AV and PC firewall software and regular scans made with SpyBotSD.
I've read that some folks here use a dedicated computer for this sort of activity and it seems like a pretty good idea to me if things are as risky as suggested by some posts.
As far as phishing is concerned, if I use a Tor browser and enter 'http://silkroadvb5piz3r.onion/' as the access address what are the chances of having the session intercepted and diverted by a phishing operation?
When I'm presented with the fairly sparse log-in form following the access methods described above and the log-in fails, despite my entering the correct details, what are the chances of this being a phishing exploit?
Kind regards,
woolywinkle.
-
ok guys here my ten bob
firstly i had new account put in 25 bitcoins for first purchase.
forgot pin
locked out for seven days.
then just waiting for reset pin
now gets good..while waiting i couldnt get back onto account ?tried with same details then after 6 days for some unknown reason back in..
oh and yeah you guessed it .bitcoins were withdrawn by who ever yesterday after they requested new pin also?
so as far as making and serious difficult pin? dont see how thats to secure.some one gets into account .gets blocked .requests new pin.
presto has your funds cleared out.
beginning to think SR just scamming
Hate to say it, but that'd be a security problem on your end. You likely entered your details onto a phisher site, or your computer could be infected with something. Or just a weak password perhaps. That sucks, good luck
Those are some interesting and thought provoking points jme.
I'm definitely going to maximize the strength of my passwords in future. As far as virus infected computers go, I can never be too sure despite having a fire-walled router, up to date AV and PC firewall software and regular scans made with SpyBotSD.
I've read that some folks here use a dedicated computer for this sort of activity and it seems like a pretty good idea to me if things are as risky as suggested by some posts.
As far as phishing is concerned, if I use a Tor browser and enter 'http://silkroadvb5piz3r.onion/' as the access address what are the chances of having the session intercepted and diverted by a phishing operation?
When I'm presented with the fairly sparse log-in form following the access methods described above and the log-in fails, despite my entering the correct details, what are the chances of this being a phishing exploit?
Kind regards,
woolywinkle.
tHANKS Man!
I think the chances are slim but they still exist virtually no matter what...Im looking into the measures one can take through hardware separation and tunelling traffic but consider this....
Tor uses relays to re-route your IP traffic from the moment you send a request, (send info, click link etc.) to the moment it hits the server you send it to. The last relay point is the exit node....So, think of this last node as a flight....and your information as the passenger. The computer is the airline so its telling the flight where to go, but that exit node doesn't have to send it there. The exit node could in theory either probe backward and try to find you, (which from what Ive read would be extremely difficult still because each relay in the series only knows who is directly before and directly after it, but, in theory, they might find exploits and be able to break the chain down step by step) OR (more likely)
They don't send that info directly to where its supposed to go and do any number of things instead, example, redirect it to a mirror and log the data.
Just read about one such instance occured where some dude did this and got email names and passwords for 100 or so diplomats and other similarly large profiled people and then posted them on his website. The site was offline in under 24 hrs. per US Govt. request , but he was basically trying to show the exploit and guessed that at least 100 people prolly had set up relays that could do this while serving as exit nodes.
I have no fking idea how you could battle this, maybe some way of whitelisting sites, but if you whitelisted SR's onion you would then have to direct all internet traffic through TOR and make sure you were running a lot of other stuff, thats my mostly uneducated guess. I have a lot more reading to do. Good luck fellas