Comments on: Bitcoin Attacks in Plain English http://codinginmysleep.com/bitcoin-attacks-in-plain-english/ Thu, 20 Jun 2013 04:10:32 +0000 hourly 1 http://wordpress.org/?v=3.5.1 By: AvL http://codinginmysleep.com/bitcoin-attacks-in-plain-english/#comment-2974 AvL Mon, 08 Oct 2012 10:38:01 +0000 http://codinginmysleep.com/?p=1396#comment-2974 There's another "attack", nowadays: As miners become more and more greedy and tend to ignore transactions with "too little" miner fee, all you do is make a transaction with just the right amount of "too little" miner fee. If you spend much too little, then your tx won't even be propagated, and if you're "too generous" (in context of the attack), then your tx will just be confirmed.

Needless to say, that this one is easily avertable by waiting for confirmations on receiver's side, or by tying consequencial outgoing payments to the incoming one, but at least one public bitcoin-related site does not seem to do that, yet.

]]> By: Bitcoin Attacks in Plain English » Coding In My Sleep | Bitcoin News Bits - CoinBits.com http://codinginmysleep.com/bitcoin-attacks-in-plain-english/#comment-2968 Bitcoin Attacks in Plain English » Coding In My Sleep | Bitcoin News Bits - CoinBits.com Mon, 08 Oct 2012 07:04:42 +0000 http://codinginmysleep.com/?p=1396#comment-2968 [...] View post: Bitcoin Attacks in Plain English » Coding In My Sleep [...]

]]> By: David Perry http://codinginmysleep.com/bitcoin-attacks-in-plain-english/#comment-2944 David Perry Sat, 06 Oct 2012 05:04:30 +0000 http://codinginmysleep.com/?p=1396#comment-2944 Thanks for the tidbit, I had no idea it actually had a name – article updated!

]]> By: Bitcoin Attacks in Plain English | Bitcoin News Bits - CoinBits.com http://codinginmysleep.com/bitcoin-attacks-in-plain-english/#comment-2943 Bitcoin Attacks in Plain English | Bitcoin News Bits - CoinBits.com Sat, 06 Oct 2012 05:03:51 +0000 http://codinginmysleep.com/?p=1396#comment-2943 [...] by enmaku link 2 [...]

]]> By: @bitcoinmoney http://codinginmysleep.com/bitcoin-attacks-in-plain-english/#comment-2942 @bitcoinmoney Sat, 06 Oct 2012 04:22:01 +0000 http://codinginmysleep.com/?p=1396#comment-2942 What you call the Swiss Attack is commonly referred to as the race attack. The thief broadcasts two separate spend transactions to two separate nodes, hoping the transaction to the merchant does not reach the miners until after the double spend transaction does.

A merchant is very vulnerable to this when operating a node that is misconfigured, and that is the configuration the Swiss chose to use (where they were specifically connected to the merchant's node). The proper configuration for a merchant is to not allow incoming transactions and to have an explicit outgoing transaction to a well-connected node.

Additionally, the tip you suggested is good to have as well as being properly configured — to check unconfirmed transactions with a trusted third party first.

This is a great article, and it has been added it to the Double Spending page on the Bitcoin wiki:

http://en.bitcoin.it/wiki/Double-spending

]]>