Received: from sog-mx-2.v43.ch3.sourceforge.com ([172.29.43.192] helo=mx.sourceforge.net) by sfs-ml-3.v29.ch3.sourceforge.com with esmtp (Exim 4.76) (envelope-from ) id 1XFZpv-0006Mh-0f for bitcoin-development@lists.sourceforge.net; Fri, 08 Aug 2014 02:23:19 +0000 X-ACL-Warn: Received: from mail-vc0-f178.google.com ([209.85.220.178]) by sog-mx-2.v43.ch3.sourceforge.com with esmtps (TLSv1:RC4-SHA:128) (Exim 4.76) id 1XFZpt-0005mN-TR for bitcoin-development@lists.sourceforge.net; Fri, 08 Aug 2014 02:23:18 +0000 Received: by mail-vc0-f178.google.com with SMTP id la4so7569082vcb.9 for ; Thu, 07 Aug 2014 19:23:12 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:sender:in-reply-to:references:from :date:message-id:subject:to:cc:content-type; bh=2m3QRwZeBm+CPZXmZraFwUyhJM6AssaQnS13K1Hm0gA=; b=C8MvEEDURWx71Xf5xXhj6JK1F5saXMswGX9MjbaA1x4OueA6hS1GpTRZTMlfStV62Z VVfYRsG0XcmTsNfed3J5DWrRXQZy306elKJZrK8oP1dUSa2GU92ppRGJ4Tb8aPJYABPd lIt8m5Ew+Y3PQ1ZxEdawSsS29WE5T3UUAbp8sS1+R1oqJCTvGn5J/3gpy07xJifsanc8 /WSJhBsXazT4TXUhunpKA5kQFtgZGHbiY99N6zRRmU8uqVIKVNS1eeVm6pmYaTn1IxMf aDdJrhpnDSPh19+CAAeK0uKm4/jFe7QCcPCJJkSjrPJ9ADXZomTx2wRymDTNJTGpdgwg 9frA== X-Gm-Message-State: ALoCoQmQK65dt2JDIbSQGaG3wLVLe5HWCskbJPZAFTm6U0+gxL1oCewy/9aAMDODH4TRmsSIBWmE X-Received: by 10.52.83.227 with SMTP id t3mr4887128vdy.20.1407464592242; Thu, 07 Aug 2014 19:23:12 -0700 (PDT) MIME-Version: 1.0 Sender: marek@palatinus.cz Received: by 10.58.173.226 with HTTP; Thu, 7 Aug 2014 19:22:42 -0700 (PDT) In-Reply-To: References: <201408072345.45363.luke@dashjr.org> From: slush Date: Fri, 8 Aug 2014 04:22:42 +0200 X-Google-Sender-Auth: GG3l5YfTWQ-GqU36Qf8do9UxINE Message-ID: To: Pedro Worcel Content-Type: multipart/alternative; boundary=001a11368e800e0fc3050014e36e X-Spam-Score: 1.0 (+) X-Spam-Report: Spam Filtering performed by mx.sourceforge.net. See http://spamassassin.org/tag/ for more details. 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider (slush[at]centrum.cz) 1.0 HTML_MESSAGE BODY: HTML included in message X-Headers-End: 1XFZpt-0005mN-TR Cc: "bitcoin-development@lists.sourceforge.net" Subject: Re: [Bitcoin-development] Miners MiTM X-BeenThere: bitcoin-development@lists.sourceforge.net X-Mailman-Version: 2.1.9 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 08 Aug 2014 02:23:19 -0000 --001a11368e800e0fc3050014e36e Content-Type: text/plain; charset=ISO-8859-1 Although 140 BTC sounds scary, actually it was very minor issue and most of miners aren't even aware about it. TLS would probably make the attack harder, that's correct. However if somebody controls ISP routers, then MITM with TLS is harder, yet possible. slush On Fri, Aug 8, 2014 at 3:07 AM, Pedro Worcel wrote: > > Seems to me that it would correctly mitigate the attack mentioned in the > wired article. I am surprised that miners are not worried about losing > their profits, I would personally be quite annoyed. > > --001a11368e800e0fc3050014e36e Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable
Although 140 BTC sounds scary, actually it was very minor = issue and most of miners aren't even aware about it.

TLS would probably make the attack harder, that's correct. However if = somebody controls ISP routers, then MITM with TLS is harder, yet possible.<= /div>

slush


On Fri, Aug 8, 2014 at 3:07 AM, Pedro Worcel <pedro@worcel= .com> wrote:

Seems to me that it would correctly mitigate the attack mentioned in the wi= red article. I am surprised that miners are not worried about losing their = profits, I would personally be quite annoyed.

--001a11368e800e0fc3050014e36e--