From 59ac3c9ea494756c690c50132acd2fcea40d05df Mon Sep 17 00:00:00 2001 From: i-rme Date: Wed, 30 Sep 2015 21:09:37 +0200 Subject: [PATCH 01/11] Fixed small grammar issues --- _translations/es.yml | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/_translations/es.yml b/_translations/es.yml index e284e6d9..f373d112 100644 --- a/_translations/es.yml +++ b/_translations/es.yml @@ -6,7 +6,7 @@ es: own: "¿Quién es el dueño de bitcoin.org?" owntxt: "Bitcoin.org es el dominio original utilizado para la primera página web de Bitcoin. Fue registrado y sigue siendo gestionado por los desarrolladores del núcleo de Bitcoin y por otros miembros de la comunidad, con las aportaciones de las comunidades de Bitcoin. Bitcoin.org no es una página web oficial. Así como nadie es propietario de la tecnología del correo electrónico, nadie es propietario de la red Bitcoin. Por tanto, nadie puede pretender hablar en nombre de Bitcoin." control: "Entonces... quién controla Bitcoin?" - controltxt: "Bitcoin es controlado por todos los usuarios de Bitcoin alrededor del mundo. Los desarrolladores están mejorando el software pero no pueden forzar un cambio en las reglas del protocolo de Bitcoin porque todos los usuarios son libres de escoger el software que utilizan. Para permanecer compatibles unos con otros, los usuarios deben usar software que cumpla con las mismas reglas. Bitcoin solo puede funcionar bien con un consenso completo entre todos los usuarios. Por lo tanto, todos los usuarios y desarrolladores tienen un fuerte incentivo para adoptar y proteger este consenso." + controltxt: "Bitcoin es controlado por todos los usuarios de Bitcoin alrededor del mundo. Los desarrolladores están mejorando el software, pero no pueden forzar un cambio en las reglas del protocolo de Bitcoin porque todos los usuarios son libres de escoger el software que utilizan. Para permanecer compatibles unos con otros, los usuarios deben usar software que cumpla con las mismas reglas. Bitcoin solo puede funcionar bien con un consenso completo entre todos los usuarios. Por lo tanto, todos los usuarios y desarrolladores tienen un fuerte incentivo para adoptar y proteger este consenso." mission: "Misión" missiontxt1: "Informar a los usuarios para protegerlos de errores comunes." missiontxt2: "Dar una descripción precisa de las propiedades de Bitcoin, sus potenciales usos y limitaciones." @@ -16,7 +16,7 @@ es: missiontxt6: "Mejorar el acceso mundial a Bitcoin haciéndolo internacional." missiontxt7: "Permanecer como un recurso informativo neutral sobre Bitcoin." help: "Ayúdanos" - helptxt: "Usted puede reportar cualquier problema o ayudar a mejorar bitcoin.org accediendo a GitHub para abrir un problema o enviar un pull request en Ingles. Cuando envíe un pull request, por favor tome en cuenta el tiempo requerido para discutir sus cambios y la adaptación de su trabajo. Puede ayudar con las traducciones uniéndose a un equipo de traducción en Transifex. Por favor no pida una promoción para su negocio personal o pagina web, a excepción de casos especiales como conferencias. ¡Muchas gracias a todos los contribuidores que han pasado tiempo mejorando bitcoin.org!" + helptxt: "Usted puede reportar cualquier problema o ayudar a mejorar bitcoin.org accediendo a GitHub para abrir un problema o enviar un pull request en Ingles. Cuando envíe un pull request, por favor tome en cuenta el tiempo requerido para discutir sus cambios y la adaptación de su trabajo. Puede ayudar con las traducciones uniéndose a un equipo de traducción en Transifex. Por favor no pida una promoción para su negocio personal o página web, a excepción de casos especiales como conferencias. ¡Muchas gracias a todos los contribuidores que han pasado tiempo mejorando bitcoin.org!" maintenance: "Mantenimiento" documentation: "Documentación" translation: "Traducción" @@ -31,7 +31,7 @@ es: fraudtext: "Todo negocio que acepta tarjetas de crédito o PayPal conoce el problema con los pagos que son anulados posteriormente. Los fraudes de reembolso significan un alcance menor del mercado y aumento de precios, los cuales afectan a los consumidores. Los pagos con Bitcoin son irreversibles y seguros, lo que significa que el coste que conlleva el fraude deja de recaer en los comerciantes." international: "Pagos rápidos internacionales" internationaltext: "Los Bitcoins pueden ser transferidos de África a Canadá en 10 minutos. De hecho, los Bitcoins no tienen ninguna ubicación física real, así que puedes transferir tantos como quieras a cualquier lugar sin límites, demoras o costos excesivos. No hay bancos intermedios que te hacen esperar tres días hábiles." - pci: "No es necesario cumplir el estandar PCI" + pci: "No es necesario cumplir el estándar PCI" pcitext: "Aceptar tarjetas de crédito en Internet, normalmente requiere muchos controles de seguridad para poder cumplir con el estándar PCI. Bitcoin también necesita que asegure su monedero y las solicitudes de pago. Sin embargo, no tiene que cargar con los costos y responsabilidades que conlleva procesar información clasificada de los clientes como es el caso de los números de las tarjetas de crédito." visibility: "Obtenga un poco de visibilidad gratis" visibilitytext: "Bitcoin es un mercado emergente con nuevos clientes que están buscando maneras de gastar sus bitcoins. Aceptar pagos con bitcoins es una buena forma de conseguir nuevos clientes y de dar a su negocio un poco de visibilidad. Aceptar una nueva forma de pago siempre ha demostrado ser una práctica inteligente para los negocios online." @@ -50,7 +50,7 @@ es: own: "Usted puede ser su propio sistema financiero" owntext: "Si no se utiliza ninguna API terciaria, usted mismo puede integrar un servidor Bitcoin directamente en sus aplicaciones, lo que le permite convertirse en su propio banco y procesador de pagos. Con todas las responsabilidades que ello implica, usted puede construir sistemas increíbles que procesan transacciones Bitcoin casi sin honorarios." invoice: "Dirección Bitcoin para hacer seguimiento de facturas" - invoicetext: "Bitcoin crea una única dirección para cada transacción. Así que en caso de hacer un pago asociado a una factura, simplemente necesita generar una dirección para cada pago. No debería nunca usar la misma dirección para varias transacciones." + invoicetext: "Bitcoin crea una única dirección para cada transacción. Así que en caso de hacer un pago asociado a una factura, simplemente necesita generar una dirección para cada pago. No debería nunca usar la misma dirección para varias transacciones." security: "La mayor parte de la seguridad está del lado del cliente" securitytext: "La mayor parte de la seguridad es manejada por el protocolo. Lo que significa que no es necesario estar conforme con el PCI y la detección de fraudes sólo es necesaria cuando los productos o servicios son entregados instantáneamente. Almacenar sus bitcoins en un entorno seguro y asegurar las solicitudes de pago mostradas a los usuarios debería ser su principal preocupación." micro: "Micro pagos económicos" From 704aa21679eae3699e18f0155295a1647be3ada0 Mon Sep 17 00:00:00 2001 From: Jeff Garzik Date: Thu, 1 Oct 2015 11:33:54 -0400 Subject: [PATCH 02/11] Update jgarzik email, PGP public key block. PGP cross-validation: http://gtf.org/garzik/bitcoin/psa3-bitpay.txt http://gtf.org/garzik/bitcoin/psa3-pobox.txt --- _includes/bitcoin-core/core-committers.html | 2 +- jgarzik-bitpay.asc | 36 ----- jgarzik-exmulti.asc | 52 -------- jgarzik-pobox.asc | 137 ++++++++++++++++++++ 4 files changed, 138 insertions(+), 89 deletions(-) delete mode 100644 jgarzik-bitpay.asc delete mode 100644 jgarzik-exmulti.asc create mode 100644 jgarzik-pobox.asc diff --git a/_includes/bitcoin-core/core-committers.html b/_includes/bitcoin-core/core-committers.html index 1a6b539b..528874df 100644 --- a/_includes/bitcoin-core/core-committers.html +++ b/_includes/bitcoin-core/core-committers.html @@ -6,7 +6,7 @@ http://opensource.org/licenses/MIT.
Wladimir J. van der Laan
laanwj@gmail.com
PGP
Gavin Andresen
gavinandresen@gmail.com
PGP
-
Jeff Garzik
jgarzik@bitpay.com
PGP
+
Jeff Garzik
jgarzik@pobox.com
PGP
Gregory Maxwell
greg@xiph.org
PGP
Pieter Wuille
pieter.wuille@gmail.com
PGP
diff --git a/jgarzik-bitpay.asc b/jgarzik-bitpay.asc deleted file mode 100644 index c15746b8..00000000 --- a/jgarzik-bitpay.asc +++ /dev/null @@ -1,36 +0,0 @@ ------BEGIN PGP PUBLIC KEY BLOCK----- -Version: GnuPG/MacGPG2 v2.0.19 (Darwin) - -mQENBFGeKJIBCACqkgmA08XXCMZFYjUfBowAtob9o7Zlo6IGKOD3o5hrotbLYsVC -txHxhrxZZLnoPVESrUvks9VdcpRAkEdi1emt471yu1MbB7mtQz/J5xRjznPimFYY -NnhLeE87ltCiC5M/y65/ThIzP+tU17T+p0CunBAJr+YkNkSQ3FtGtCS0bOycsyQt -A9M/F5c7oqnUYVGzeAMuJ5JwYPCVETn/qGUZjZ6rHFwx1lDkxYxL8SFy54pjyfHM -t8Vwx12KKpiYJSiHjSOx74/jx/PaJcE+nvKnZht6FsNPfiJ00RT6PG2Y5D2j/CJs -Csp90gktDISI+Xx5D3bgcbxW6A+Egz9xHbapABEBAAG0IEplZmYgR2FyemlrIDxq -Z2FyemlrQGJpdHBheS5jb20+iQE9BBMBCgAnBQJRniiSAhsvBQkHhh+ABQsJCAcD -BRUKCQgLBRYCAwEAAh4BAheAAAoJEOeljjN63KB5j6IH/30TjTtE0YHpnWxuTMr5 -UNx71n0at2GEXlz1iNH2vl6Q+h56yzDebuRV/3/fdrnin8On165pWyr+WQjogXkK -ChG7HJ/uYKUeljKPxx/o3oiPxT+UIFhNEtLVeP53FEJRhJsy0mIHysKaRwJKa60P -aFrRJhORIg/KBBpNe143KqmJp2E7gTC5PgLl8wC7WvnNVgIy9XZ2vISm4nfVsMaG -r9JCvBMPlRbQXBhCTLGTEcX+LOWMH259Bt5+1GYcQAjBBS1s0Lox9607M5FO+4dX -3PZg4TeJ306QjVQnoSGvmVOLa+V8h7l7iNuDpgKxYWKGtwTToX3QX5mBNXYVjZrQ -g7K5AQ0EUZ4okgEIALraMFVIlju4adboLOGSClaZA//bvVEflgccTl/EOjkalVi7 -3aTVJ2q4dg+WgBdF4m/TgA1tZMolP2mTl1joZgKA0NrWr5BSEBG9FaOFy3w7NkEw -ukEGPuzIGJBrM77UsqFLLIGWMBivB6m9aJSKMXIAcjrgR4xsXaDSo8U4TVZeN023 -4JQikSdSlJVptdyE6aS83z5/m28ZJ80NIljd/fxYeYEHf1XwdtBsm+B89aGzTTFP -hbwl/GtMya5UU3B9PhE4DYVIO0n8XqIjLZh8cBD0Ne3qMzIFN0mSI6v13uTpOxk4 -fMx6EarlhvTC1grFnd4C4dU+oszOgwbYLwd0nY8AEQEAAYkCRAQYAQoADwUCUZ4o -kgIbLgUJB4YfgAEpCRDnpY4zetygecBdIAQZAQoABgUCUZ4okgAKCRC/GuCRotuc -yv3MB/9hfMjMlyAlBBKZXrPj+H3juolFgaGMTuruR5744gRHzx/D+16f6zSyGBve -B3g2fCSu97NgKpuLYTo4oPyn1fEWMdEx3Wa+oEJYRCG10e/rHM9W8AFtj/rauPR6 -LE6faZzBqYqI6JBTom5vmy4sd8z55KYKHGjeRN9wcxHjieNIkwQ4EBEESnmc0eb1 -W2YUXAaLTZbYP/ZSVroXILxMk9k8Fb2nosv1xpoD65Jm4FRgrlONwzLJVc5WVn/A -VBDC3q3nc+koAGcj+6fpt6npEs6+e4QAnnmXMBDfQDtAP1Z0jUsilkd2xIX8RV74 -s4NsdtnA8rRHt5V+i+G11EZrUpQC7YsH/2c7t/WfRBhWk7XgZe/T606JkiybQeqx -wLOr9UQWkgnC5eHVrvC5kE2Gtw3VnJ+z0z5M3emK8uuvzrBTRkNw3S+ljM4+nqiY -4z7Exo3iDLHrI/PozIATuXWaPMgxJpGfyM2VdtNPpV5KuOVwBuT+cAxwwDxIhZP0 -VS8iEomoAzn5YUD6LWBGLFeCRiYldi3OX9s93WKR2LI0wmhrP9vInjiFUK0p8Bgi -FdWECwE4Z18/AQihDwRMtYiRSBPvk6gPjVTa10gYHPVJyA72bEo2wy/UUAUYbNgJ -IeLyQDPXQavC3Ol1yGAfHt7OdFSFvj50Y6fiM2AHE9fTPtyhwSGPqVA= -=kUg3 ------END PGP PUBLIC KEY BLOCK----- diff --git a/jgarzik-exmulti.asc b/jgarzik-exmulti.asc deleted file mode 100644 index fd372c28..00000000 --- a/jgarzik-exmulti.asc +++ /dev/null @@ -1,52 +0,0 @@ ------BEGIN PGP PUBLIC KEY BLOCK----- -Version: GnuPG v1.4.11 (GNU/Linux) - -mQINBE1TFnMBEACvjq0HcfI0J7IUn9Vr9y9WPpXt1PZKYZqxL9x0FawdcWSNW08/ -NcldVHymWGESJ/JZ9UdTlp8u6CRDHRWiaEMlGNx7clMLbPtjtTnA1Kz8wWO6aarQ -GNwfiHOiG4gwqBfX5eoxDH1vvhJndgg9yHDtI4dBXrDS23wgFItha7s07Ax6RBBZ -8FTGyqC/2x7mTcraxwPGYZFr2oR6Vnd0g1xZ99CIfInY8+Zb1+rPyNHNP+mZuzMJ -gk/8n12RkfRb1674OcTKQZmstKFSbUNrDyfyBdeFhvTKLdTKunwDoCBxjWMdHR+3 -oyJWGlEUl9ay5Xbx05ZzExEP4vXJ/KsCj56iuZ8gCb892Hcujat5hDV71uKa44CL -K7e+6r+4eHDuyXOnKJqENAkU6jea2ZGDzJMhtp3LUegwrggaI4cezKPUh4Z5wHm1 -WmBz1mLijhcEbLA+bzgOzl/eLJxNhKGSEW5BHUBQvx8U+EzGKXccSWQwWBjVWgZy -7r8WCxv008vbM0yGjSWRFn4/A5OPuoZH0erwAqCmYm/SJI5AEZhvBBukq+cTM51y -aN6JobhmiRu5SkC9dSNM8j3MxJcmRDdl1+XZxIBh9Vb8X6Wzo2gxRxUKkQtZy6IE -/EP9/iCfiFTHxzR4q+eMcH/85cXcdmpxKIQDB2yei80g/6yS3ZS11zw+yQARAQAB -tCFKZWZmIEdhcnppayA8amdhcnppa0BleG11bHRpLmNvbT6JAj4EEwECACgFAk1T -FnMCGwMFCQlmAYAGCwkIBwMCBhUIAgkKCwQWAgMBAh4BAheAAAoJENodwg8tvwyo -UXwP/0YfFXUSMsdRq6jnbpOLygHtMqnZkLQLP0CdFThSmNG4qPHKemIYambLiBKN -P6mwYiBhhBCU3VAkW7mtQ2IPdLVRvhnylM2V/WZb+hxPv0yDl63PmMw5rH36iUMy -f7VHkdHg6KqAsPqz8gHQurTGi0c1p37GuF+YGzvGgBDh4KN4kZ9X9QbJwrqySVUG -beXSn0ATQ+Degdre1S8kCvU939XNWMPkj9EVQq+mSmqxlZcgm3P6Yzefuuwc+p6w -YMC4Wq1U0WGFg0NDKSrDVejdouyyVWDRmZ+Yhu5jqQl3EVGRTR9YmzDdCrMw/JST -Od2yvBHSbj9dy5imw3/gsvoyf2EYZD7tbM5IKKzg+mK3YIjVjOr6Rlaa2zfkjgL2 -CTHLYPTDw4GokhlmI63hdk6g+/M93rkd3Ev22R90OEezzeFS+mO16HFIzdXcQGlh -v8L3JEmxUaM2C0JzRGBhgJRJtXjlE4R6lnyhTjJt3sx2EY88Gtc3lkb1By6FIIR9 -8CkJaXWkKRYW+vaVcKawifRWNvRk/SOi0s6uIGIAYQauj+CF1TGTTxQf07sgvMwD -XG1qZ3hnqDjvee+IJG13HqcMRdYj0KRh8hzDkt8GSEANzaEYeR0ziP5h74u+EDFq -WRC3rVHcuvBcf1kJHBVNPfKGz0Cc4j4v6oKsClBeVCPopJoEuQINBE1TFnMBEADf -aPBIDIAt60mmxGxMqX6ItOn94fNtD9b+z2xaBz5aycIyPRrtwRMfm+PicV3eu/LH -4cUmVdfz2k8+3jqH/y9xY1XzJlh/o7Iwl2k2+cSlkhhWU2V3V/knDav5yvnlDZD0 -2xQn4hJ/DI4sYesZSU5ue6A0PD7QWiLoIJe/OsRcJQeGq9/ChDaxh5TEB1oNL311 -suWg64oN/zzd4fnQJ1qpBOLP+sTJKM/0qNYKe9zHKqmbRRNtP6o1h2/xtYfseX3M -RtG7pSZjG4tgurh1vCBymsiJfGjVxjdjBswhyIjhJbk0ZacoSdmTe2f2Y0PtA7vM -feTuTyeTH/rLX2EImiOVZrDXxZa1Gs3oBqA4PJg0QY9fWEQ/n2jMzThL/gfK8wde -wXo4zWkTKECp9tDaOzzW1sw75OHuEibU9BQln/KPg4bEzqOjEqbbvVZINOmNOM5c -8/ICKT+BTS2/RxyTYajyIPcDpWoHmnT2vn5+3cMrJwSddoq4M18HPu011Z1LZoFa -e17m/0fub/PKKDB8hbdroXS5B7EjtN9WE5tJA/qFyd9SEU2fq1bnVfXcfEKvGMY5 -lVoKpNW/gub+tElXN7vAkchMT4BwMYRXQkJZ4VKQtX4TX2xzyYjpGSVKGYylioKD -l7AJ536zMjKl7s8ew+cQw1LwVKqNFyjacZlpYKhsowARAQABiQIlBBgBAgAPBQJN -UxZzAhsMBQkJZgGAAAoJENodwg8tvwyoJOsQAJxRBb4uKus4+F78kwJNC48e+zGr -/PWgGjL83qrUmxhoRoSWjeVKsaJhV8tG6a7mAzUAICsko6Caa6UmHNvBvGkZ8AH6 -GbHO2miEV1VirCS1xZxgduqaJDpF84dAbhvO2GQHY8axcVFxSO1JySMes8aTLES6 -ykgVyKkNvSb5m2WkZ+Oolsgh7o/QDOPRIAJyKo7BMJLffFqhoxog4Fcpk9xTaMt+ -Ukhh7swmN8yD+Oq3h/+g/vkbc/QFFj80de9bRXaf9szhGiiT0124RDSbbWuItEBP -K0dy3vSpl8Q1R9EkTNvoYIZj2tE5ws91VvgNojbZmT9N0FMIPSvGt2504JqHWp85 -a4clE29ng9vk8DjZ2gumqKwQOzoK7/Dt/a37RmB3a5LCprv/4UEXLl7DyTVYvEp+ -ZO81WCuafuagNE261J2cZ/wlKyXZyJpCqSboMvv2TpLvKDZPRi875m8uHaPaAghy -qRBpGk4vVSZq+5qK4wWoEhNyfsA52+YHIjZfFBp0JR9+6N4RqSK3zG/4dt95yiyW -UZ2Z+nAWIu0bOBVevFt/H9TCYWUXjQm+tkQ0UHnGDROk0sr5bL9GbLlv4QuB/4NB -3OK+NH3ixhX/6s1qHNKbFuP85M//lAq6BvncXmPFUg/0iMqNu113X1LJKVUsC/2x -NLjdrUdMDpqp0wYi -=/xuc ------END PGP PUBLIC KEY BLOCK----- diff --git a/jgarzik-pobox.asc b/jgarzik-pobox.asc new file mode 100644 index 00000000..7e3a0a8d --- /dev/null +++ b/jgarzik-pobox.asc @@ -0,0 +1,137 @@ +-----BEGIN PGP PUBLIC KEY BLOCK----- +Version: GnuPG v1 + +mQGiBEKW4w8RBAC1MogkLlQsQTw8uxJqnXNL2m4Ie65yo+4V2DOooFQNRI+kelWO +7dcWsSnSOYBxE0/bpotGTxyerFtPwyiRig1OuCask+POb/Z1nGL8f0q72V4xeW9c +HbSXVvva3xOoTxVsPOou/eJxDkB3f9NtC/+awct1+wZS4yuKsm8xpm4wPwCg0t3x +hwtSKSYByGFVhXWlGk3PfjMD/1mztIYMJuVo8mO0ZtqdokdkRoUr+ggi8HuLPBuL +uGXF9G3bYPqSclVLAk/GyV3gMSI6AFETY3p6ayJkjqvwFyx4jER5z144RI7PBYw5 +2SKkyDwNpI/gh6BSgz4fpH0hRxyj4mFYN3HFoY2APtB3lbNstvZJrkkfS3Sh0Xvx +jA8eA/9mjhK8qf2fsqFx+Gn3NgIWNWMMZiQlYKzqi5kq3/OzVgau1Q6btjJZ4VMJ +Hom4xVwfsVoG4vBeMXUkpNAIoWI77suMfb5rXxebJ+RtrQEppQThw5rS2mtQrguR +YGgQnNuI/pZZx8AGVrR2jBMGUlOe1AskR8qlYoiO/ymwXEaKTohJBCARAgAJBQJK +9MVFAh0BAAoJECanxIwDzIp3QSwAn3CNbqGdubypEYqNrvm2xWOOc1e/AJwLd46Y +x6uW3y4JYfrhO38L8XiZoLQfSmVmZiBHYXJ6aWsgPGpnYXJ6aWtAcG9ib3guY29t +PohkBBMRAgAkBQJCluMPAhsDBQkDwmcABgsJCAcDAgMVAgMDFgIBAh4BAheAAAoJ +ECanxIwDzIp3jioAoMIUMZZBlh66QgaohUW5fBvnSX8xAKDLKPa9AeFJurr9dKxb +oc4dpjWKTLkCDQRCluMbEAgA0MyG1xfPO2aC1jhxVwLPNU9tHRqhQNwz34m5bEyV +AC2Zt+oQx4XDAaQphi1eJqluBBFvnq7rntNwl32wU3Bv74CvFz1LMt6UFdkyShsc +Dl+fE2Bm7kj2CDufYy9jT5cAkiUeuOZ9JH8yjZU81Jn4Iq2qXtxVyLQZvbV4+8Jf +HuSDuzVB/YiN2KsksIzHJ5+mwtreNDCHcOK0F58PCePGp3b5Zul9xp9iQSnHt2Pv +TwDGDNdV8gtLVsB0bDtegXMbm0gO1zfN5H8K4KjNx0bHC979E9m1lLiOSIvLBav5 ++dzKstLcSKVNhM3N+Zc6SIyu+qH3ZOAeoxTkg3YJF/MPXwADBQgAkGrcv41/ugWO +pkd8gbMPwDlFHGOZ8QVPlDaWpFhodLOCP3ttgqBQWwuZ6B6tmZlkGghpWYitWCHY +CiPKgB4I6RWNw4/3Y3hpY4EzX6a7ejlc9+6Znyn5yLDlXFZDl9A3DRx5JppJxtTx +pUyhEJqPxMq0S7o0goAamDFih75hcuuzzG1EIrZOwub+BnK8oBR1PZ47YudOl8If +js7AFQp2wLr48Ejj5zOeIQ4aN3ugqbKmzC69R0duvOp6G1Jq2F7tJuXgaTJsIet3 +0gBtMBEttZELLeGjyyfas6+L4ZsIwJOdFn1KHEbdhOo7LJpLipBscrw5c/oDh+Pn +G7BNo9cTa4hPBBgRAgAPBQJCluMbAhsMBQkDwmcAAAoJECanxIwDzIp3QmMAoMOr +ttIY5zUNl81josHR5SLBVkocAKCVZH5Yde1C3CCi8EhMdKLaGrS/+JkBogRK9MXx +EQQAyIpbQ3ITUhHdTBUOAf0FimnrYXAOCjrVRZ45NWaj5Av8cwjd1Yn13NjUJlZR +38Qu3zmP6uBW88xnoDpe7TubpgzG2QQGg+aBQY4gLDO+tG0dl4QSM2hlnn10g0rM +s9KWS4nL5nJTMu6A6gZvyrolw1lJsd7ALGsU+qhEWerIP5MAoN+GLdGHY0liJgLB +b7QugmTTK8IJA/9/VJYepmR8iFDStZjvcw1dlnqTrmLRXCFmASfuegJoumi9hFub +ErWNOCgVqBTA52+p3hC4lNmfljDqkXsarLACgb9LjJIMiilmlcP6Z9c/A4hYvd88 +kFL/CBm9SMNZNfkbHtDzYNKi8KJfN3JtWO+a7L69hKjV7PbiPdYc32DeIwP/apH9 +GTP83bEY3N1vw3+cNoR/YOjaCb2CMsKfA0jZ491uIeEHXm/mjBFfvymFTikso443 +7R40TyV7b/M2HxD3NlK9EWL9IRecLW7aYDpcjtkiw3VpTkklqB7JVUNitxtY/6Yh +no6nMFD/jBiPpzrptR/BvE752PMlAUfjEDZwCbeISQQgEQIACQUCTpzIEwIdAQAK +CRAhUACacH//0s95AKDY4bqBXxcb59qxZ7wjaxU3IqPFpgCdHGf9y3xXdvojuobn +huZjDJt2B620H0plZmYgR2FyemlrIDxqZ2FyemlrQHBvYm94LmNvbT6IYAQTEQIA +IAUCSvTF8QIbAwYLCQgHAwIEFQIIAwQWAgMBAh4BAheAAAoJECFQAJpwf//S/60A +njBAogvJzGAPNBwImE+7N33+TUu+AJ47WzwjsiZBMAgpqv4q0zyygZBLKrkEDQRK +9MXxEBAA45trWiTmIij8YczPYXl7cMBXZQmYQ37CLwLWvylUt1meAlMRSNNMZqJ0 +CRBdDc+p/3cNLTwrpc4jQpda0EY1lCo8RoKEc4m56nXbdGpW73FbWzsyNI6EMrW/ +/uPt6N84oZ4OuyaD0TXP6NkHc0ov4FmXt5hNUpKPSwQgWgYpZay4njd+idjAYZai +fxyMXpzUIP58mzIUpmSxUQXobNZDbsk/5rwB5LDYdh3eWDQfuuY934RmttWDmZdd +UqTWdpLnGYIagZn1r8u01f8wy0BBXx92SmruQhUVMOCSfYF92vShPiMB3hBqfg0i +kPd+khE03NXFERM45IVqR5G1tZvwk5wWwufIbvzJzW2mIXEYOWjqrhonsxogyGtx +dbua/vVncE13Na9LCWyOjvxT0tIixl28QShRGqRGME3hIZlimcCAdzu9EXhfXJ2J +V6ibJY9hzjJobQl5NLULWRtOO+c3jVEGeH627Cko0m+LBMCG5oDkEts/EZ76sbSH +ESDJzr07Om3C9Wnn+SIEiQTdyzljb5j+50ZOkKJVJfyherSpEh/YhfPCyxRs2Jvx +zM4aBgzMPF86oLzGTEiOuLu97iGzH3WbnvpqqmvnSaGZOpbT28yEkn4jjPi9U8iU +8Sw7N00Ha9Vpc2VeDNbuGWimMrK/9PMxDqKqYCp0ZLCFYXCreqsAAwUP/1J4/y0e +FxShhrwaGuitldKnY/clzVt2oHOELISk5efZwExKvwQoWw57UwNVZGRPkrSkWtm9 +6S0fH4vRXU5MQe29hYkiRC622CqSS+5mZGtXSNtw9Py1ZceZzOxzRg/Qqu8IMn5H +du3FcBnHVOJL0lI73eWmSeee2UxOaHCVPncse/sOPq4IaquNlnpdSIkfolZOm1t6 +EDO+PWjP38XFJhBLvUa/w3Qsb8P+BwCR7xYt+rLLCK22SP9qZeq73OvZ7unrOA8h +gh+XuAoXUXuT6mI97w5WDgC5wDFASR3XbkSmF2Awgna+a1xh2BSxR3qTzn5Wjl5J +MmOqba22nYznoA/nhcR/erqWIcV5Icg5oyezB1CGAnTEJddkmjCZe2KbsTo3S+uX +/PPY54HEo3AP8I17ZTFqH1VcwJyV1VRqHgkhibTPuz5Rgg2hy/GzyE8hVjPFW5NN +a/96CHQ25G5uXpO+TFHX7EkW4GEV7mGLMi81wrDVYbwY5x6B0yy9GgQTGbxe/z/V +PbhzA4d5FiEc7JLc/WLZD3NSwKd52WDllXi1ZR5boDhuVfZoaNDVubmN+QFjhaUs +fdFZQlLYCUGRNk4iwHlGZkGz6ciEto1paoj9HvjpOVmTJYXqE7+KRmW7SMIh6T6h +MXWQF3manPjHw+Bm0tOlTs0vUrEOSpptPhzmiEkEGBECAAkFAkr0xfECGwwACgkQ +IVAAmnB//9L2vgCgnsgcC/a0f6q+i546nXC/nxyMQPQAnjP7+pN5V+9PCsuPoRHI +kt6VAWp5mQINBE6crToBEADvAK4uis/Rp8COhFwv+vc7jF5sbu15bzazr4x9iOdI +w/Fi2V9DZwaT3CJDVvEFhSKFZtNnyeDvBkFIkgfnq/ZYpvklUr2hl/n3DDJc9cq0 +TfY5fQxbjFVDKHHYW7Lsnw0LBQg6ilBicSCn5ucsPqr/fd1NEAo8BQLeQPjwjxYx +HGNNFkUXqHl3Zlyy9us18jQcRiahNhoSJq5mwb1rdtlRJPS5MrJfiqwDWoPYMn3U +rYfzCXm+S4EJo9I0ugugeU+KWdSRlMjaLGEAtAymIVmkJXmJKp2I3S9DEVq9UvpM +7hCLqmsa2E8jBLI2FtINbrcg6hJ/8hGyHFBXq/Ijf2U2FvRKAlIso3UyL0s1U3Z/ +/8tz6jvblYxR7UYggBGDZ/hojLUMW9ROllwFaF5R/JRRKZ9YP73fa6DbyAz30Vos +8vIyLYKxirtfq6RhcMZcz4i9iKY2OwzL10qhLCoclNeYSYHLCbmaJnK19sKZ+0fL +HbOmBuHQwFhWYqxY8BkQTioA8tvPODMcWEWMgWX18XRqFCDZAZ6fm3/wnrKleJH8 +tHyqDtzXvfunFeOeMGUMLeillnkK+CrgMfXA8uZaWDNrU9pp9DJRSkYJ9lSV409A +dna11ClPSEBagOPwp0nW9zO9W845GfiKEtlON3oztk1ek2a4EfkjvyNrCHs6i6KT +nQARAQABtB9KZWZmIEdhcnppayA8amdhcnppa0Bwb2JveC5jb20+iQI+BBMBAgAo +BQJOnK06AhsDBQkLRzUABgsJCAcDAgYVCAIJCgsEFgIDAQIeAQIXgAAKCRAlswgy +AXgrL+HfD/wNzGYsFltXDzjtdeVjpSl6cbTQZ1lP14AEHlbYD0sn0TdDvJ9s8CMg +Mu5bzVmn5+doIT0iaH6/lu8SFq+hcQI++8VIOGuN77ygjyFYaHTRLcT8U6HYxHWx +MIgHsYdXztmb2JxmmCtxAy7Y+NV8QwyBwiDCHVjY4300Derz4EE0mYX1iS1IZ8PK +6oOjuJzejNw0uiubRA8EKAVNKQbJACSD6dHVV/u8go/xJOUGJoXJfGsA85eG3ywZ +hB4THxzW1aeX3JFfgG1um1nR3SSONfKH/Ks5AnivzRg6UGD+KO96iC5HOQRIE1Gi +flVNKz4UEHjKKkzTQJpiUzQAlv9TULr/S2YN73HATBSB6kkt7Tln+y8WHPkqMDjA +vSZhmxI97mknBHnMN1v3AgzzYfaH+xG6wLjsxTiu78zKDcxXzk6lsIPcnIX1HVNG +cl3CIXEMNCPJ0Xk6jA/e9Fc7hhWGIgiEbSf/FPO/SveLPw8WRaxBnXnxmx7+51JD +zGhu4k2mENudYl3LERRVG84BMEGAij6e9i5qD2exdNNC+ZFfDBePtMG++IRykFpF +XqoMfub0A6J+eBtX8wHBKnjS7wdT74mQHBu5N46d6SGmfXqXrrtCJA5aPXJ5FwtM +lheXNHP/m2VTgulGlIBY+QN0RLZeW6imVmlkjPXh1IdRnaTwPvouE4kCIgQTAQIA +DAUCTpzCggWDC0cfuAAKCRDP79icLsMguyosEACxmQs8yfh7ONhb2OVvf2HJ9Wmp +siJohkZWAQpb4aNBg5xgehWOn0yBLFH53+g14KVDbK8RifWOA+5elft2Yi2kao6L +0mWQrZrxEsEzGzfb4xjTIlP2/rJE4h6U2JlNIJMPEt4tH/Z93MFJQbf0pNcCvAXB +p0TuYA0j8UI7mTjHtjYOetBWN4IJ6KY5hTuiJa87/iLqTbppjV8QQK7F7le09vN6 +0gSPQzaAilCvg+9F/jM3NzKUgcSNZgpsQgQg5+QwopKWhh3RhXL4VOBBfyZiWU9v +WPwC/Y81LthYaSl/KbhKF+VKdPkcxD9EPYaejuDhlNCH+7GQ1x606HPYmkeUWn9h +85uAVCqaAtAKuzxr010jrYQYGNss1X9fSVBTAlo/8hPra9QdOyOPNQl3LGIUv/wu +e5uKq2+K9+B5sm9LBC+D2SerbBlCbTSGzIXqv2afLcRDO5D6ibCm16k0IM7KS/WO +9gvr3x2mtcRoTiAMsqtXKii8aqBTzECFhmUCShPWGQJ6zfN9/WN+vnC4GEzxAj/F +IAPnQZ05dEubKovDK5/c7u5T+Tj++SL+xAZZsrHofpTpzjDUdY3Q7ZuGp0Z5nO8n +1pVdwxvtyjNdY2Z1BDpfvPn5bwngagWnmmsbTL/Ad1b7QmVX6W/lvjOXmGpTbFGU +mGquXfhug9Pzm61bWIkCIgQTAQIADAUCTp0F4AWDC0bcWgAKCRDX5YqCDsPYzDGS +D/9gPHFVXix1x8sw1NfuTCqpezerKJ8H8j4NV48DreM4SsANL/2Zh8KKVhXsZYY7 +YI8sIUBuzT4b25A18SgyI3K9HGWrpyBx0W1nIMlmjEESS8anBiNDAWfAiZoja2nV +ozMunsPqUytJ7ZXSVQfYJUS+TFWaEH3Yt34RhYt1x65OF3x2lI480S23E4o8lyNU +9YC6GHC17qV/KgPnnPtv52EOaLdLQirsfXvx2pbyZtoSnYib5W74mtQcbeSk6MB7 +ltL/k8natGB1qgqkS4hNd/Shr6WnHXwKCcjJBr5ZlbsABzuwpF/Ugc/P42E86Tph +0LkXpWSFs1bKvMqw92LM+jQCwsibJkBwsCYL3UC87GVPRQ9HNeIkB4exr3/bseaH +Zbiz24sdwU7d3emqxFAq5EmzNmDLXtGX/ep7tvRI5g3YmIT7oUQGV17joEyvFSSh +Rsq/MFJb1GTwKZ3WN74kCNdB39MLKQAxuKNwWRpr3gxyfTojj8nnt3XIsQYxNhMt +c8/UzIQLuAPeqMFeo7xI24JyqJlwBMz9W/7McH0NV+Wkaxq9IY46bl8B9yM491ut +BPoaXOJyrXAqV6XVogfoDJUL9IL4zbk6V0A1xZmp4dA0GhBROGcFOeuCWjTfkjMD +SDgXtuPac6dcQ1VgBs7SMv6hMy+FjfmtLBSZhFz4Zjz8R7kCDQROnK06ARAAu7pm +FGbSTopOou2kxNcUABtdbpqAzQjqUw/ddL4wqLoTLD6QK98i2hqkSCEpl581mUrT +iyUqNloqu577CVYN2A2l5KDIJoJf7U2I/eURfmTSLm6amjEb2rHfLby7W5nA05gD ++DCN49FT6gwKyegbGsqOXC3Sps8iwgTtlM4rUmj2kGJohBCiV3rkwahq1n/eyiAm +BLyB10PWLQxXIcFmjokTQ2JD9tsqIrfCokJX2zZhapYlqzhkViee39WwlFK7mtAi +J5d20cJJ+gzhr0ROt2XNVgu7Y/J26QSLL5Usul1LzDD18sQglvxRF1JynsdCwgcu +IZc0eHANHXjo1RjdOVUI4nYPs8xslDuCnNaIez90X38pN/JZuGVw3ryQ7Nwa2fEg +4fzNTBAsNxxCeUeaQs6nvRvUrlQ9sSShi0I/3R0+zDoryWx/udwr6FE86WtUdvRe +GsbQBr9Z5q/EDKKx4hgHZs/CcX27gWCl/NXQMsG4seaoQoNatFjYB0jLepxVClir +OyaXhIxigWaETlpfybgxN7AArjJUfrpv6oX3qCARnTD9epG1Ds53Qy/iuWyt6vhr +GN9O1mABMfzk0p4UkYJ+m8d0ciEwv5Jjw2HXJvhU4DEUTuEjWhAeog6jPbHnNVX9 +j28Av6DjRdE7Q6fYv2xunK17l9nNbLzfDxwh/KEAEQEAAYkCJQQYAQIADwUCTpyt +OgIbDAUJC0c1AAAKCRAlswgyAXgrL3ILEADQZNpXlQh9h8R8lc8QTJw+mcFs6ZHg +crdgKoYnj+iw/81Lrcx6l3BrCXcKJAaS0eBH0WEqjSEUgLpMLMO5FcVL3xshODE9 ++X9+5FeZnlqUVdWvSCdCFEZuyz92alQAl2W0fJ5XVsFrgibExM9mrzAakte98k1n +OxwgBKza9jzSFcwFQ7Hu7JAnHFRAXFPNj7zxnzR/KIudSiGmbkbkwVoyi2CT/IPP +yhB7zvS4s/rqxcLeZVuUjXnlx6gQH1B3SfRu38CTOqWygYuU5W43Ihof1eNhj5fS +8Oags/pTi9uvrV6c+B3pKYP9a3W8N23e/T4QUIcGBo/Qbch77pdKHLBOTIyW+D8U +7befAvMwJp05HbhLOCmpm7vpwcMtLhrbmchWbAA8JMAblxQN5OYrZvDpcClF3Twl +sKoV83yHQ3H/Cx2c9L8eOi54p/8+srwwE5VyXBZKVqLaI3L8AuH7B5pVTrePFYfV +8dJ5v47cr5FumKIfn2DQlpmNVNjQOccSZ8PF6UL6eIfLqeXCjR47T/xVB9k+gjX1 +b1U0Q0D5Gan8M37+THeN7wREXAkdjUdRtst2NckzKY8ObMR0RFz1O2OflGHjcBUn +2RKJ8XbnfJKFvIuLXIOUkQT/B9NZvdkbo4h3EdKJp1xDRkIXE4mW8pjjfCJg3Cwr +0wiVlUrBocZh0Q== +=sGRP +-----END PGP PUBLIC KEY BLOCK----- From 7a7d7e0ff07fd1591f1933a293e4a971e43b1a9a Mon Sep 17 00:00:00 2001 From: "David A. Harding" Date: Sun, 4 Oct 2015 22:01:26 -0400 Subject: [PATCH 03/11] Events: update DevCore date and add Bitcoin Africa --- _events.yml | 10 +++++++++- 1 file changed, 9 insertions(+), 1 deletion(-) diff --git a/_events.yml b/_events.yml index fe508e02..d6a90b11 100644 --- a/_events.yml +++ b/_events.yml @@ -142,7 +142,7 @@ country: "Georgia" link: "http://altconvention.com" -- date: 2015-10-18 +- date: 2015-10-16 title: "DevCore Workshop: Developing the Developers" venue: "Draper University" address: "44 E Third Ave" @@ -262,6 +262,14 @@ country: "United States" link: "http://blockchain-sanfrancisco.com/" +- date: 2016-03-03 + title: "Bitcoin Africa Conference 2016" + venue: "Focus rooms, The Core" + address: "Leeuwkop Road & Kikuyu rd" + city: "Johannesburg" + country: "South Africa" + link: "http://bitcoinconference.co.za/" + - date: 2016-04-04 title: "Money 20/20 Europe" venue: "Bella Center" From 42ad10d254924cd9471afa5db8927bc498211e39 Mon Sep 17 00:00:00 2001 From: Mitchell Cash Date: Sat, 10 Oct 2015 12:52:32 +1000 Subject: [PATCH 04/11] Fix some spelling mistakes in README --- README.md | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/README.md b/README.md index e820ca5a..4abaced7 100644 --- a/README.md +++ b/README.md @@ -86,7 +86,7 @@ git remote add upstream https://github.com/bitcoin-dot-org/bitcoin.org.git 6. Push your branch on your GitHub repository. `git push origin (name of your branch)` 7. Click on your branch on GitHub and click the **Compare / pull request** button to send a pull request. -When submitting a pull request, please take required time to discuss your changes and adapt your work. It is generally a good practice to split unrelated changes into separate branchs and pull requests. +When submitting a pull request, please take required time to discuss your changes and adapt your work. It is generally a good practice to split unrelated changes into separate branches and pull requests. **Travis Continuous Integration (CI)** @@ -449,7 +449,7 @@ optional_magnetlink: ## Warning: this site's Markdown parser commonly requires you make two ## changes to the release notes from the Bitcoin Core source tree: ## -## 1. Make sure both ordered and unordered lists are preceeded by an empty +## 1. Make sure both ordered and unordered lists are preceded by an empty ## (whitespace only) line, like the empty line before this list item. ## ## 2. Place URLs inside angle brackets, like @@ -704,7 +704,7 @@ bannerclass: success ## Wallets -The wallet list is based on the personal evaluation of the maintainer(s) and regular contributors of this site, according to the criterias detailed below. +The wallet list is based on the personal evaluation of the maintainer(s) and regular contributors of this site, according to the criteria detailed below. These requirements are meant to be updated and strengthened over time. Innovative wallets are exciting and encouraged, so if your wallet has a good reason for not following some of the rules below, please submit it anyway and we'll consider updating the rules. @@ -744,7 +744,7 @@ Basic requirements: - Supports importing custom seeds - Provides source code and/or detailed specification for blackbox testing if using a closed-source Secure Element -Optional criterias (some could become requirements): +Optional criteria (some could become requirements): - Received independent security audit(s) - Avoid address reuse by displaying a new receiving address for each transaction in the wallet UI @@ -753,7 +753,7 @@ Optional criterias (some could become requirements): - Provides a bug reporting policy on the website - If user has no access over its private keys: - Full reserve audit(s) - - Insurrance(s) against failures on their side + - Insurance(s) against failures on their side - Reminds the user to enable 2FA in the main UI of the wallet - If user has exclusive access over its private keys: - Supports HD wallets (BIP32) @@ -786,7 +786,7 @@ Wallets can be added in `_templates/choose-your-wallet.html`. Entries are ordere ### Score -Each wallet is assigned a score for five criterias. For each of them, the appropriate text in `_translations/en.yml` needs to be choosen. +Each wallet is assigned a score for five criteria. For each of them, the appropriate text in `_translations/en.yml` needs to be chosen. **Control** - What control the user has over his bitcoins? From 37ad331026dff182e4cb369a596acb82b27dd234 Mon Sep 17 00:00:00 2001 From: Mitchell Cash Date: Sat, 10 Oct 2015 13:11:36 +1000 Subject: [PATCH 05/11] Fix spelling error in the Mycelium wallet description --- _translations/en.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/_translations/en.yml b/_translations/en.yml index 7faba61d..cd718c71 100644 --- a/_translations/en.yml +++ b/_translations/en.yml @@ -176,7 +176,7 @@ en: walletbitcoinwallet: "Bitcoin Wallet is easy to use and reliable, while also being secure and fast. Its vision is de-centralization and zero trust; no central service is needed for Bitcoin-related operations. The app is a good choice for non-technical people." walletairbitzwallet: "Airbitz is a mobile Bitcoin Wallet making high levels of privacy, security, and decentralization very familiar and usable to the masses. Airbitz wallets are always automatically encrypted, backed up, and even function when Airbitz servers go down." walletbreadwallet: "Simplicity is breadwallet's core design principle. As a real standalone Bitcoin client, there is no server to get hacked or go down, and by building on iOS's strong security base, breadwallet is designed to protect you from malware, browser security holes, even physical theft." - walletmyceliumwallet: "Mycelium Bitcoin Wallet for Android is designed for security, speed, and ease of use. It has unique features to manage your keys and for cold storage and offers compatibilty with Trezor and others." + walletmyceliumwallet: "Mycelium Bitcoin Wallet for Android is designed for security, speed, and ease of use. It has unique features to manage your keys and for cold storage and offers compatibility with Trezor and others." walletcoinbase: "Coinbase is a web wallet service that aims to be easy to use. It also provides an Android web wallet app, merchant tools and integration with US bank accounts to buy and sell bitcoins." walletxapo: "Xapo combines the convenience of an everyday Bitcoin wallet with the security of an insured deep cold storage vault. Xapo Debit Card links to your Xapo Wallet and allows you to spend bitcoins at millions of merchants all around the world." walletcircle: "Circle is a web wallet service that aims to be easy to use. It provides the ability to instantly purchase and sell bitcoins using either a credit card or a U.S. bank account. It also provides an Android and an iOS web wallet app." From 68586b6a69a3a6291dd81a8fa1ca6660e09d6537 Mon Sep 17 00:00:00 2001 From: "Wladimir J. van der Laan" Date: Mon, 12 Oct 2015 13:56:56 +0200 Subject: [PATCH 06/11] add warning about UPnP vulnerability --- _alerts/2015-10-12-upnp-vulnerability.md | 54 +++++++++++++++++++++++ _alerts/disable_upnp.png | Bin 0 -> 18819 bytes 2 files changed, 54 insertions(+) create mode 100644 _alerts/2015-10-12-upnp-vulnerability.md create mode 100644 _alerts/disable_upnp.png diff --git a/_alerts/2015-10-12-upnp-vulnerability.md b/_alerts/2015-10-12-upnp-vulnerability.md new file mode 100644 index 00000000..bb0ff59e --- /dev/null +++ b/_alerts/2015-10-12-upnp-vulnerability.md @@ -0,0 +1,54 @@ +--- +## This file is licensed under the MIT License (MIT) available on +## http://opensource.org/licenses/MIT. + +title: "Vulnerability in UPnP library used by Bitcoin Core" +shorturl: "upnp-vulnerability" +active: true +#banner: "WARNING: serious vulnerability in UPnP library used by Bitcoin Core (click here to read)" +bannerclass: "alert" +--- + +## Summary + +![Disabling UPnP in the GUI](disable_upnp.png) + +Either + +- turn off the checkbox in the GUI under Options → Network → Map port using UPNP (see above) +- add `-upnp=0` to the command line options +- add the line `upnp=0` to your `bitcoin.conf` file + +Alternatively, upgrade to a version of Bitcoin Core at least 0.10.3 or 0.11.1. +These versions upgrade the library to a non-vulnerable version, as well as have +upnp disabled by default to prevent this problem in the future. + +## Details + +Version before 1.9.20151008 of the miniupnpc library are vulnerable to a buffer +overflow in the XML parser during initial network discovery. The +vulnerable code triggers at startup of Bitcoin Core if upnp is enabled. + +Details of the vulnerability can be found here: http://talosintel.com/reports/TALOS-2015-0035/ + +It has been verified that the vulnerability can be used to crash the application at startup. + +To have more connectable nodes, the Bitcoin Core executables distributed by +bitcoin.org include the library and have always had UPnP functionality enabled +by default. + +This applies to the distributed executables only, not when building from source or +using distribution provided packages. Self-built executables have UPnP disabled +by default, unless `--enable-upnp-default` was provided to the configure script. + +Releases starting from 0.10.3 and 0.11.1, and the upcoming 0.12.0 will still ship +with (a patched version) of the library, but no longer enable the functionality by default. + +## Mitigation + +Bitcoin Core executables are compiled with Address Space Layout Randomization (ASLR), +Stack Smashing Protection (SSP), and non-executable stack and heap (DEP) enabled. This +makes it harder to use this vulnerability for remote code execution or private +key leaks. However, it is still advised to upgrade, or if not possible, disable +UPnP as soon as possible. + diff --git a/_alerts/disable_upnp.png b/_alerts/disable_upnp.png new file mode 100644 index 0000000000000000000000000000000000000000..d069d7e0ad91bc4cbd083460e5daf031b4c37c60 GIT binary patch literal 18819 zcmeIaby$>L`!+h*A|WLups2KfbYsv+cS}fj!w@P`5+gY@0@B?uq#}&8k$A`Nf}4b(s<1$W2=b4F?G17Qw|o3`kr82{?G&QBp?q`XnaS zEm~~<<9F^5$UTUp$TMZv5%jo=HlbR>wT($jeHV>aDsflMTJ9(mi=gg2d_|}$di8$z zZ5d@{^rKC(kklT!=ufEzavZ8xt^|sO&}Gq?GYu6f;^P&4Ql=kWqcY?och*qAc$U1r zP*>fKj%7FLB3+p3z^du!Y3ixjZ@CSDJYD@!qo$Vf^pz=OM`tx*U1{JAvsq9qm z(x5cOoF6g}h&=TBoPD)+!NoICirI?vDhx#N+9DzhM4RZi%9IyK^9%~M*q1aBt#kHo zpWX|TU=@HsKIQ8hY7r0+C@Cp{#}_YNgh@QSedEAG2%Lv~^<5l)m;J$k<TfxlCOjkEao{r-7~9N=^<7d*X~9 za@(HYJoIqZ*VK$V+LdkkIuoG8t^ne9PkV5$4? zkBE3iud%ZOQ7QVDcSqFOL^?+}=Ea2`KEk;Tc{3uO?G?9?{JuBgb@tHp+4j!LkxCn3 z;|>x6f{3fP?i4AdgU6Vdm|#-&4A0{|FdI>mCo@RcDjF>yAV7#Ix+%=Y&d$iY5+2KQ z_>yc2l^Y9&5)gnV5m&K}-X2$m(PSjR1$0uW{nE~BFnRdgXZ zsNSocn)o#{&lVFrDGv`152fIrUs%XhX1ILW2b?Wl*xR?y6cq59SSk3O1-#EZ9q%>8!FA0 z?|1q<*~xp~1#7l;UU9u%&`L%o-SR=ss#qptA%dd$zFn%ogKjk zSYg!bXLS)Zdx@Qo<)4UnSd+6fc;#!xk$ud`W8Ln}w!+KA#J0`CfGArz;we-Pk#h&uk$)R^0|(? zwYBASI0qldRU^K0N67Q2jIBq-xHnBt`Vn3frDomA*BSBV^w+S$L~Pt3&$j#coNGNL zl-ZF2?YP30mex!^>0ZCa6f>Pj&0jc|amK&Nv8*7#^1Zv;J6em55ycrS*>pyL+&43R z{p~)Hos6aCUNYD4z|cpD)>6xHL|8RmvO;THsfv;fVab&iX6B!m zI^4oDZx0Yew({_FK_EF?H31UM#w1Hs#_B@PuUvXtS9gkVS~)pA<#$G_tE#pzH#jc! zf-Q+&T^+v8-A4cT@nc3tf}m!wj}z52G&S*iP7b$^ca~m=#G+ zmi8KMM^H-^M8?O(RU5xOmL=)w7r=I=-C%I8gke{G_bRSGDdcICTp(p5nB z^k|n6wMD#{p&T90sw%G;8z1J%86R*(Mr#0iDE^+VQ@HG5YA=6aYdRZ4ryL^knaEg6 zKKaSQ3ySJC@yb3Uk#B`8Qv{n1U3%Sy0eJ|oQrn!uZDjPp6$!|j-^?b8T{ghveIdeN5TINeE`5wbkHsITg+4c$sE}*8+2_Yi|HbYaM4r8`kQhV3 zS~da>C%%1KUQsbTK3+>x(|vQgIf$4Ad~bLU!qO+{Q&r^y(@M<-RI`1<~Jm?NZtJ^iCIaI<% zM>x2q@S=!}C#oY3j;Y|ubByN>8ifzndG)AiM7{QW7h@*bw*%YhD7D9+Ma3@NYZYRb z@Cwn{3CPp#lW>K(*CK@)$?H!f%twEGRJddOIVm()^1G+3JLP?Sp2*|H>}*dTcVh#^ zJFhbnM~NLmzUW_p$VbHJj8=YYNo20vnQHPM9v*(IS@vpOfryxRvf3e2zsV2n;4>%S zwlxbDeW6-m5+8z$!?ehH9MRjWmj2$04B`QCOVP9Pwqb7L{f=Thoz*Xs54c7=Qud>7M}ow_@j=ehWV2r{LRaJb)k(;6rZffQJjT_0$odn*IP{ITG1;4l+;h z9~&Lp?_wR`ML%_X76D`xAqFo^y#*e6uKxC(KM(!!F%Uu5#di#-3{Mnd2u-fmrH=+L z-%XlVrRaQfQ^~kMgY-S#l{YTzh>5|x=j{0As~s6@T{`ajYl8Z19aU9Td?ROkcCN49 z-P&+YU3uKa(BJn?lfN`O4URb(Qfj^`EWrBZY8FG`UQElVAbnBaI|Nh|$JW)9i|EBQ z`4<=CdUG+Go@3Xn4qw+urBkPljS1k&>8-LgH$Mt`=hfEH=GA27=6W>I?fORO zIz&XxS1cs9%4xK#x0j7tk&aN|7}tZ7?Nh3f`R;13+Jno?v^tNdqokbB2RE;aFRcmU zSt_6Gq9%pvo1C~ZG#`9U_?{KBv(vCkNcZ@$AoT3r^OP)K@eb*l{d6BKg;yvNT4L_& z;`GN2042ut(Bv$kgVy&qm}jJ1_}YkbFXW7f^Om4?G=e;OG|vxE$C4l&zk;{ z=IfQ#lM30&n7-6&-&$c%Ct5A#+P7Mlaeo=)veAFTj@poO;YhJGu0dON= zFFqZ?*JIOKUOL)Fx*r}qnyi%(S)-hgh8HT*mPw_55RPRvnSgN))(!AgsXV97c3FHn zTizbX=;JeJGlqYsz7PSEgk;tA0I197vTS?UrUGW`xJz&)L*|>o18Ri(svm6K7K|w( zXtZ0)CCl5!X@4V$-y83kabvA0Ajez`i4)2lZo?4OmMNE`46!E^mFHVt*`OJjZgdbcLB zih1zmiBdf5PQ6ueOA~vmBdQ!#q_}JiWTZc5rzWU zy-1zPtiz{QlccRm!+*ZuYu(E%KnV*_^?Q#)$@6o%IwJQSTnu?vnK-)Dh&tsS4TEL# zRx^4jO^U;2f{FiF!Om`TV1+v`Kfc0zI8{j;$sV}S-e#1Yy(B5A=EOChj;B~oD!jGA zQn@}B5g*^q%vV?Nhc=VP@V6|K1UC>zUgrtMHwArz1R;UUYQJ)$b zN5l3zROr!~h=30tFass{U3M27qo_`?nmqce(?k^I>K>X7e@Ggy(GhSl*m_^QGH64S zT3b8znGyBX<$QS%<K~4Qi%AR|6*=WPTaBVa0*t*mo^XxSKv#A@m!cxN zl6agYN{y5l8DG3mI0<|o9*(aDp8#dU@yz1pyLaz!LRZ@dS{Lkwi7&lwZTeui6O-3Gu_^ z={`E2(m6I|;A&N}adWTq=pa0r&5?VnLvB$aAx`QC^$7`?AY2AC8>}vkt2H&eBAIV1 zU*YVl!w(Eh`l6B(Nu<&~Z$0OLkjhfd5oXcuJ;62(KsBZZ5f2Spb=%lxBcsv|c>`sOS8Nk=UYI0ouNkZXJ^umA7Lnv7%CN^rk**>ZsJqmqVrJv~|$aS|{=LJDsH^R7+;TNjI|X=Z!P; zu#ew)3cl{GitOhAyP*i(>2*21Y#8*!p7uM>sPOra|kr{YY z4l}=e`3za-ZaGvgW4{N17Pl<>@>p#Sqi|iz_E5WPxSR~<5eSgEaV(> z9w0Q!4nBc|;3@2+KibIpvYT?8jMIE^s6Ia>MMBOn<0aYt>DblYq=FDKPHmoZsMCAp zDXf>L56PQY*Q}EfHJ(x;gEIMEr>}jCi&efz_ZJGA8W&nOUhhQ1C_kKWTja;Doj8?t z9Ss!b$7{Mlv2$YARB#a$k~7GTq?%XD+@&eQfBLA|-M0^J0Sh zIF48<9%&uL<1Ay63~=o7wMBNO4h{|g zcF;V&?-aE}1@g?^*A+>VN%xuIwfq{YTUs)J49Q#{`8X$&AE#_g<}x)s2lB-Vs(^!w z%iX_*?33nIe@n~%EjWXNikc@OC&6h+fF2dTU6Ld=XuEB$VxzqJ6ct60moZ7XwY5#m zq`5aooJ>j@Xt#%vrK&=z<23#G1n1%PqavD7y+dJ@0@|>j>v0(7*9yL0hBWf?ttfg2 zPHUZTHFK@j05+nRe={VsTy=bPl+V#MD;{&B-p<*%AiSowwxc6Y>P|DUK>es6)-tz| zyl^lZL^&d0u}MXR$p3VP2w)z>yNHbaQEmXu%yk@Fjb1MTAe8k&cYEr9%l*9My7>gQ zzz!~Cy*n?coBJsXz(+bCn6)e{b^uiBzb`4*>#6RY)T!Pu2pp^bUBAU`|n=Ab$No{S-^Ow7zk@j!k68>XI&R6akR znVDIGa7W2lbuYJIacb$9EO)HiwXwddv(wPR*51y+HjzpuA1*QqZ(J>8^RPo9pj5Mj_!Kd#aX3H&^f zaybmeOxtzpH9x55Qm;rVK!pq0*fY_g4$E@L#DN!Tt7I#KbX#gYBErN)otlfXJ~+TJ z$)pgr8UNDtiaO08L3>Of`%GkhxB%}!vh?u zMNSS*&Q6;Hy2QQ*yJL$(n*`{7@KtEF>Uig&$MdV>b zD-%-(w~czKusy7T!E$vnyVzo!Fd+TW8pL=SS{ir?Ek4(?&6ZY2d5dnrSu|qw zwDdu?IxKn zf=~&Wm%)s~UlsIlrFkNFpk41kIQLr}$$L7ex@!e-&}~E_BJNSI}QgD zdBtI2zSX=nwu1>&;0Sw1H(Woak?KxEfCf&J@tb*(*>sz1_>C*?;9O`oyJBr-+SL2H zm#wVwyU*S1=Fx7aTaVENwoEP-lMy`yCWuJ9*OENI+3IFE0*ND_!@~AA0n{Q@~rDWL9uT z`t8$3U0;Hr5I!fz9V-4OQ;yTYHfN=XJ*|JHSuBe|Q3>SwaY_TKj=Gc}SmMeyT(nh>gp=%k5q zB<;BHS_F7%zqCGoOj6iZ4G}iH`$8ZO={j#Ftu%=cT zsOUd2i^5^uuYRS1^u-eM-YdV}BoXE5rw=kKJo+XUmdC1G=yfo*X;8Nu9JmUuuZ>re zj$;FvhY=A#$IM)iT1jb=@u>y_gzABB$n~6tV|Cg;3g*y6eTJwHIv_abo~>Izn+7cM zx^fh?wM*z0GduFoniH}h>Qm|*IRpjF+8<5{8$kCKodwQ}>?9?LtPy)WKAo!Wy z1(cMOAY~Hff6}eaaM7I^z3Y;3bv-J$Ilc($Kv2vk*6f1{x_CuZ*#v}feLa|+y`5Hx zWqOT&rSUOiDeo#~Io!zDIAnur{U_b-#*PfaUZ!ULt?mmYrM?qCm||rq8#x~+7?0Cx z{9VwSt|t+YH~Wr*%{0+`mHlvxa-f90?+a8_mC>v;@A*jHuhzO^LWO5 zXS}H2Dk~d4F%gkD*C)34KI_kW;XknBh3%aA;&1Z{z3OlKD8CxFFTPe>Sqb7(X;ML7 z0oOlr!HfbK#8odXH@sR@@*mYE_45C9d8&5y zg&<5~_E)_(o7P3~DBN8nGCX{Fzgo`c+V1hLQ^;7&iv=3MqpeTWp;s*fvvfwedJCwE zSC;d({}JmAio=XAGgMdGhxF^(ubni590y=>UqfPIbW%a-Jlr|axje0>N5LZZF{~ zfX`T?(c^VJ_o@iG+=4iO`qnL~h4Jq!_v(PS>^`BifD2@qu|NL#) ziZ~!rJckfb)zuoXwca^KRsISa69WV7*!khnQD1Sfg}DW)kdW=I&A#eDH3K^Qa?>6G zfs1R@KkPspS@TL=CBC${7zY->%)}Ht;r%LW@q=t0>mv^#Z;vVE)3e9k)(7u#|KHeBv0Z8^4N79qC60(ece)8r{aJWtnz zhU7D;4svd2rSOfMmo)sgKYt|Eg+X0xnu@PN|9)29E5@IpI?59kqnkcwKg-nX-avxuAs58ao<@$N?O_{y5I&Zn1&h(ttm2fh3&ywf9o{K=JqeDI44zMxO#33AZvSPxQh8_HgS^mcrr;13Sgqy`0m z6WXniqQKY*PBf^(oU ze|kDx^qKH$e^IYMKvJv@1sK!*w>M%sSA9$GBVOG_I8HEAPx@<{mfC$x!gc? zXxy?Ncgw+H8{lk425&&u(h^q=Sa2(sK+BP3aZI{febIUqYV$P>7(d5h1(Uc`;}mzQ zJzBrMClDX0bWpE-SanpP0%W7TldHbZQ%od7G^$KBz`E;B6go38sNMhgMfjvDGC-Cl zL8IPacQ(+FK(3iN;rw(jQU5sAU}ryEF?)<04kYc?xtBr%t1MCdN>-J()Bf=i|CG*7EF02VAuz~u> z@#oK};#)FLkcm^%MD57j+R(w8T#?|;uh=TOalZEASCH@|H_;${|ivEv~F)#Mak{O6>dtV}$>diwvhvfx`$ zW~8S-{COGr%P?_wcC#VIvnJ4VvOZ=L<188BWngL9KbIy863fu}=sM9ZJ{~>M2OTK& zwA{m&i2}NGgsRG`pt=EYZ+6p_kCr)1;fXA>H5ehPfVRQ0aDnBu1|Nsh9UGCD^kRqi3F)A`X%Y3R5#kIj>WqL zvSRN5AgYBtcGTs{)e0vAM!bux{H=9`yogyIow}q(#5>Mu9<1q&A0Z0V%lFcug6{ol z-ggC^xB6o#_?uc_yR_7qFzC1DWFU2z;CBxXkEqAQXEO>z*8pu)W5;usT9W`#{5lAC zZ*{!YIjCz>5m#I(mxl4h^Xs^GZ8yhS0Yj8#h@ESoM&k8iW_c& zTtuz|qFR|X)#vm~+}%y!@SqSV@&@C>3lyPVzwh&ihK9;%jV`ReuX=XuFzA`IPr9H^ zrZ+$TW5L7#MMcF^p?$L-pS&9C3qUkovJOLst-TTRHorddEU? zuCkM@pcJsh(4)w74R(I&W#(1)2Z!@b;xI#4vaQonK5u1vYpdB<)%{~WPEMc&O?qlWcN_sNNKZUboSaNFS5KJU*_X|LJW6>!T^%wC&#d`?K6jC`#J zDg=9*C@lj6%QE0g0-V->iz6XG3oqx$AKb1tBAAQ&jPuypK24rZ`LltGh+LxiH4iU; zoK@t3H$|;wPs)R0k^U@&rWI7g@PG=#z&Mn?MQr+myCiisH*=#N6W0#OPcOEqm$F@b zA97T#>%Wk0PfbnT5{LNf=MMA@j6fepv=0%7kaL%ml^vY!Kd5$dqo5eI$ltXIr&p0W zok=$X^)4Z1Gpq2V=&kt@h0O7(Bb*iUA$m%(Fb2kMf_%3HADuJ&$WGV+DF8RQ*CIy$Dx)II#f zD7Z!VUklZs51810FH0}&#l=wSVUZINdw-~lj*5%x5{vA<-5sJ;k;vnOC@b3m7)Ls~ zknG1~eyT1t^`2%zh*RG@6-SUDWuaoWqbfgok7^tg`@4ZMCAnllLmRqFjiayv!1z`2u9y#xITVREzNgng@X}7!a+*Dd z;K?MB*scsx&=T)g9Yg?Rmv5w^L=z${DHE~hs8i#$4G7f$)3$GKp!C^-LT8R(5A?SZ z0F;-Q?*u+*S)~lFEK(!cmk~T!v}9s}ItwAw_|Po&545DXw)LrkxAdHa&AcHZNXsAQ zp0824d0w9=B?3s5Oc_$DT6?R^0$Bifk3AMY-cP#BxSZ~tiQ`cZHcSK6QCd-vgh@H5 zUEH7+g|D%W?y6MQGDIAC%-HFjo0Wv8XReftTP z%TAtdu2bX47vUP3C?ZQHJimTSs?-q6iEi&6{xy$(V-va%ZBA85czL0Tz(+{TtXol9 zdS4&|L;e;k2sS?|bo~Ff_-)}I_$~J|ACzo5jvkby=|m9OKp;4MHjXtunhj_B?1^o#K^{md*wW%juvU4>vi@{w7vdhn*BlA7Tg(F zo;>`paC91Y7m;pGo|zRVC3Vos0zjSpL|>L?G}gfnEQZ7PfLpBP45hDr{=3 zo9^r}dIkpQ$Gmy+U|?lJT2hdVJX0~7#BXUR#S_Jx$haN7CzgT?C{r=lvz9t|MXOf9olKH*A6nkoM0r%lR>^BEq zUO7&+^X;#X7;|a5>Y$1I-cv^*@o^^1f;MJ0ggLeW($do1Nevt6lRwl(M9`ZA`C8?R zG^_SN3^GK{_#e5N!CtlaybMeE-i`7{&eSd0BApPtut7 zzcJx9@s-t~aEUgW$kiR{96$Wx_diNWObyXhw1R=vw6UF0Dne$^#*YBfP+u)gD6HkvXmJZ55e?KslcdL zABcNuWABi~#l_8Yd-O9>+pkGUQD5swU&#N!g&8IMp$v9+*RK2zQd@6H0{D5) zPxnuIOGm7;LLhq5-nrN z@K!oY?p2y`#%j0Jn~qh5rKdNqH&C^9wyyvcF+ASY3cR0oVQI4}VjSUIT*hhwAFHzK z>*(nJ@uNsvpBb*DsQp#fngMR^KJku$_hL2^kt&adM~6c<&*K8l&iH4(_ZYg1ebguE zyM_%Qj2P*sitLn8RxYkV{i$Pn`y{bd;YQuW_Aaj~hy4lP?S&S~pazG1O6a478C}7O z^^utiwcJ2)Tn6DaGk-RTvxmN4URtUTk8Cx9Q3_XBo2PraNHKBMCV6awbqdTRQSms- zZntt~zSH~H>8ZHIS6K4L+Rh(tPebYHvB~;Tyzk<@&vpS80G^!Ih`X0BUk+w#gp%p} zlYtI2ote)+JwkvlJlzWFevYy+_HJG6@9AlL`U5#o9S-ACKAW$t0EPuA0G|wT{0b&( zL1>~5kBS17U~K&90_CWmOv7!3V`nRNHcHD=Cse0at2}kSXK2dDiNRrw6DP`9(tg3G?|z=fAV0v$Iz}W(Os3J4YEH&V8)IZkDrub9oOU0cic(D8I63V0H1)U^PE3w+R15i92TWIUKZamGUXCXrM-}RI4-F0dkbj7eiGAf7P}-3f{(2mLr66X{*|`Nk zvZLEsgxJ{_ymh{RQII;gGO!Qf{}IQ!2we4dMAZZXKc|W(*qyn{z50aliERT_a^c4M zTDbA%0R|+ekN-Hv=GCivV#FX7+(Rtm3zS^t!G}z!RG|RvaN$7vH#gaZ=j>m6YJVL1 zkK607491^_{_v{(I`luYul@0=KOJrV{}}$fJbz65pPs=#4*fatzYhJyj0Y~y{|Bx` zBY%k6VJbjpJ$iuBGD&S89wto$YtM-uF_?$-+yn!NE^jWhn*T>mR4%dQq^}g`JFZ}h zTAU2i6rzJ{M5jqJ!>P_5RG7f5ku!34;E{_=O23m=&qP2nY>-Y=r>IdXA5YiN8n{y+ zD5!dQV#<)@r)O{hs7(}=`dUIM71Y&T*L4|cSQ#0iW8chhLVJa*eWvATuzpYHkw@Hv zJs1()50f6G0(C`Dz>`YgJ8-Cz{YKqQEdjbAZl0!XKn(b^*u+C(7lGulwJBZi7N74d zvnci(1&1E1Ljj%IMg4u!oLb@d#wNwuPdX=iyJNQ%9BTVtX27tBpm?9O$j1?z_qKDx zFaSMNv-ci2F9aQKtUB$YL%UkU#hQ7ltH31b)+FVP>x|@@+H78k<1nCo7b9l|;`{Ps znBnKnKR*H?#y#Ku^pl3VoDU6 zytQ!rdmI&E#}H(~%kf|J7fF%(7Tf?OCJK0&9!1{FMdeLWRU;=RtdSL+%S6I!12f9c zQ=g~s>@WBNw-ji_xG`RINMMp#db4=uvRFRW&4Dqg>X87`xg2>5i`;`Dp91DCKz;;f zRaL3e-M+%21qhv5b*3}xmYrSl%0-QO5XUzfF^IbpwTWsu_~!57wHmR7$=@a*sxUY- zsOX6M5%O5eqsV4mmKrb{{e8G2E6c+at1Sz2b2K{Dcj}MTD(edvRr3edm{(QGDoM&L zMZ4F=nUnaRxP2XRS~=HIE3HUP{fdMopB!zw?`qB+J%je~RqDo0MYI~-xicTnokzbP zmp)#3!ILa0 z5TC5~RD_;B8(=XGQ~3rxJ=FI){xUW6M1DKSeGc|XG)aP!m9SedB>!KXiL%miD5g9e zElu|$c`6{r_kFp1yf8lp#GZ%CKyt22e2iCaF)B8)`ylXhQW9u#V(MU_ixDy$tYlx9 zotrCpRQJ28|3Hi8uPjVJvzR+LJsrWCv~kye+6M~s7S5tar?U$EA0mdneIQ`oc$J2w76baT3;Wyh*=Ff(pNCa$gHG2~cBM_R*ZpGh@X zNh7RagG#yD=!#02n@gE51GUDuD+$S54Ft$)7Z%^=Uv8(FG}DBTbDGMZ{|Fm8IeCXe zF@hHsSlpBIGoPx$I$cNI+scCy?s@U zm^BLQK~vme+HX~qQr{76CdrMc+*8GSx0M~A*!CVg@t*9CIqJ;Q*YoPqJOWSo|T;lAaV(bk*xRRSXr?hPUo#=1w!UCQ6B(EPD>d=)!4v#3bmLR7o zZnTJExA(V=NA0Q!k^AKCsvhSVn_GLa?zxkK>Q0uNoJ&-2l7WK3Aml2qa3r_x{XTk2V@P zu3d#N+ys83-`WWNZ$g3%Sy5C}F6y`n8;~D+cI1wW8$BOBOvQh^Fo>0lx*GL2VytD# zojo~e?{0dK_QW3G#ey7AxdJH(18;7AzL?-1;0*q1x(@t4-UMAc5d~QUq%@#O@wJ<_ zfB)|2WCvV7Jf34Sz=d;WtPRvhq)Qbr3IJEYLO#EvHOI`e`JzH3NHdQ$DtgD8v`hqJ zV>KR}Ao+QuKS_XiJ@VaZUQ=OQGd4 z1?ud~(vCnwf5-lGMZ7Sn^y%%YBW?tc#sGP{#BMxZ?@*YRrwmQ&4hm9IRP;X4FNlrJ zM!kah_@Di#?g6~G*t#%D8Al8@dt%6S$eSFe{WTp*Sf(r!R~ZSm%55FAk#Ax~7O@Zu zb9DP0+5*R)o|yO2+fUk$=Gsi<-T)3*UjYvCq}Uwm-}EZ5;j_^Ukz zZJ^Dheo8j(Oz;8{A!r0n+|(Hs2@I6TlX zU!urJ5lRwf!rG!dN`HFqRlEYuKU_`9j!QOepY7Lzx{uHa# z`mO;P6y?WcV?Hp8-L4$L7K?6t`vSTrwl-deEq)o&s6~9Yq&P+N)V$%9Ix#3!uRYfJ za^@NHn}5l#=_=$?LDt^lhvCW^sW#=uZ=c@gF){v`5X%Fk zAjxef!FHla$4jN^)eV6Bu`bGzf2s7$9UOV9tAL0-d=7pC4@85m;2+IHgW7=nf}PlP zj5m#bQ5Zp5$-5er0eeM5fqy0oXs==@Ox+F!e&f^N>y~c?p$`^1j*GJv-6%#_sDKJC< zcO2*fHt9}azC%8ka(Z;S(KD_e25{3$9=p$;{Qk|-@1Csmp2i2gWH$8H0W`k_C8L;KKW}D z=0v^rCjRdFk=MLK1h}%{Fg@VN5SjhW!CHZRp;dF;giO33N;Co3o4 zf?h!DRn%J_e`M$x0*uogzcrw+9*sgp1r+=y@zzP~0lPn6cZi0@@C=Qt;lig)S^~$U z-W3l=U@JlF?t@g~e2|5DM+Fb2+$F;EwH`VNEbSY9KeUOF2KsF96@HWu3D&sOxUPMh zy=jQbpUl%S{$0Z5vQYgO0oH&!?yt(KDs=o`dWrsKxk{9|^k!dPbb+*5oAM52RHWnX zQeP%6m0*Fxaa2S^U+Up?w1uHz+B3@Y2dTi2?sFZd%5`lv=VyA)lj}}Nv48vsBinM;@H$ptqOD0vG>FMiuiEWSV+8jpn@t+5ku@ zEONWp_@3OIpG0*8p$v+90H_53AE=W8t!_DWs{aDFw0PS#~hk}GWP>%!NRCMc5px~?``_>I$qnaD}eYU|?s)BeI5B)HF zbKLr#ofqLHUC^mnZr+;oQ4ft8C!~)1Yu^lTfOR>fJx_TR(4(yw+vk)R%uH=Q^rJVe z;TZVtsQ*ivJaX@^0s}u4$DvwVAiqPIU5bSVIBxU7CH8L)GtpMGvWd)(AJ;h^wuR5- zUfXdo^d{FN-01@>dg>k(D<|iGF6!_4XK~jx3+~^yK>)Bqh5eyN>Q&O{)+b}%gaymi zyB)jPZ36#_&1i8@09$E^R)r;KvMxQZ^Z{;aKDDyHE2e5aOGgxe%zpYudrqxwT{Nlm z5iRMTGbEvi0-XjoV4M}<_@~`zmF;;-W7i0uv8*4d{3)!DZ0+Ix{;>N$hPuADqoco;Usw;)<){m~^<` zhMl|)I-A!0&*+$#a->TOqB{kzL$ADy=}nJ!*y_}Zpt*9p=dVaO%S31HWh{v;%cF86 zGP&T!%|t%8cU?;Et6$K6G=A*DE&A$Lw9fB(0oYf5zdc@)Gdtr5n3j-8k=z>xi$Em_Z$fx-_e-p|COUBFl7joSHoFZG7ceLZdx=`uNahd(w-QMbx_zj&u@B__2 zB-9s1f6#tOB8EJ{y!goS#|0ec$)P*XK}+vbt7OZl^q(;x**VVXob0&79I{jYT2 zlN?Kup(BF>c(9BC#U>xW;R-q)kyExLI89SUl@&vBZ>gybNT%(0wW%?2h6B354Pr*# zbT4eXYE#16=WI!L$AZr4?7z=!Rh=GtDyl0h1FMLlCIe$cE0Mjgc8WYh6ej44RnAua z3>Y?W6Bxx5IbcVYIXND>+5~Pr18zbC=55N>O`8&qLoz<3&FbQ?5bIkQ1?PI zaY!kXyOkIYo>#vK;JF(bj8p?!$J?IC8 zcQ25VkleWVG@<14>9+e9_rcK>AnInt>V9L>IM_V1X>{pwwRVa!!-Y#%4QLIb>cu_j z7ni0nUKD~?ytNFRlM3HUt;aOquV7LT}_bUPY(?)s&87u>b47GMVFvM_jF>2j?V8=U@? zr)TF#YUoF5{?JVS&z(1++qax08kNO9Qp0CiOAFGO&5Z^~#t#Iix6rSHpUj`SS$NmK z*L_Hc*ULoOl^2woV>kBW`^S%vduG83v6+r5A0wSEUMI}qT%bLyr#DN0%@@J|K{Ebbw0VFo0Tc}3Z>VZgZd_K?N)Et)N*Drt3GW4Hmfpra$6qOYzc>e0${{sCYY32X` literal 0 HcmV?d00001 From 5b4ca428ef1ef4c00c57e572ad3e38ffc7fde2a5 Mon Sep 17 00:00:00 2001 From: Saivann Date: Mon, 12 Oct 2015 08:10:15 -0400 Subject: [PATCH 07/11] Move uPnP alert image to /img/ --- _alerts/2015-10-12-upnp-vulnerability.md | 2 +- {_alerts => img/alerts}/disable_upnp.png | Bin 2 files changed, 1 insertion(+), 1 deletion(-) rename {_alerts => img/alerts}/disable_upnp.png (100%) diff --git a/_alerts/2015-10-12-upnp-vulnerability.md b/_alerts/2015-10-12-upnp-vulnerability.md index bb0ff59e..a411c7c9 100644 --- a/_alerts/2015-10-12-upnp-vulnerability.md +++ b/_alerts/2015-10-12-upnp-vulnerability.md @@ -11,7 +11,7 @@ bannerclass: "alert" ## Summary -![Disabling UPnP in the GUI](disable_upnp.png) +![Disabling UPnP in the GUI](/img/alerts/disable_upnp.png) Either diff --git a/_alerts/disable_upnp.png b/img/alerts/disable_upnp.png similarity index 100% rename from _alerts/disable_upnp.png rename to img/alerts/disable_upnp.png From 8b4abfdc1f2ffc430636938a084559f64b00ded3 Mon Sep 17 00:00:00 2001 From: "Wladimir J. van der Laan" Date: Mon, 12 Oct 2015 14:34:32 +0200 Subject: [PATCH 08/11] improve the text a bit --- _alerts/2015-10-12-upnp-vulnerability.md | 20 +++++++++++--------- 1 file changed, 11 insertions(+), 9 deletions(-) diff --git a/_alerts/2015-10-12-upnp-vulnerability.md b/_alerts/2015-10-12-upnp-vulnerability.md index a411c7c9..a4510784 100644 --- a/_alerts/2015-10-12-upnp-vulnerability.md +++ b/_alerts/2015-10-12-upnp-vulnerability.md @@ -16,29 +16,31 @@ bannerclass: "alert" Either - turn off the checkbox in the GUI under Options → Network → Map port using UPNP (see above) -- add `-upnp=0` to the command line options - add the line `upnp=0` to your `bitcoin.conf` file +- add `-upnp=0` to the command line options Alternatively, upgrade to a version of Bitcoin Core at least 0.10.3 or 0.11.1. -These versions upgrade the library to a non-vulnerable version, as well as have -upnp disabled by default to prevent this problem in the future. +These versions upgrade the library to a non-vulnerable version, as well as +disable UPnP by default to prevent this problem in the future. ## Details Version before 1.9.20151008 of the miniupnpc library are vulnerable to a buffer overflow in the XML parser during initial network discovery. The -vulnerable code triggers at startup of Bitcoin Core if upnp is enabled. +vulnerable code triggers at startup of Bitcoin Core if UPnP is enabled. Details of the vulnerability can be found here: http://talosintel.com/reports/TALOS-2015-0035/ -It has been verified that the vulnerability can be used to crash the application at startup. +It has been verified that the vulnerability can be used to crash the +application at startup by running a malicious UPnP server on the local +network. To have more connectable nodes, the Bitcoin Core executables distributed by -bitcoin.org include the library and have always had UPnP functionality enabled -by default. +bitcoin.org include the miniupnpc library and have always had UPnP +functionality enabled by default, to forward the P2P port. -This applies to the distributed executables only, not when building from source or -using distribution provided packages. Self-built executables have UPnP disabled +This applies to the distributed executables only, not those built from source or +from distribution provided packages. Self-built executables have UPnP disabled by default, unless `--enable-upnp-default` was provided to the configure script. Releases starting from 0.10.3 and 0.11.1, and the upcoming 0.12.0 will still ship From d3d01dcf0faf5fe2e328d24e2da18c8df4859cdf Mon Sep 17 00:00:00 2001 From: Saivann Date: Mon, 12 Oct 2015 09:04:17 -0400 Subject: [PATCH 09/11] Make link clickable on uPnP alert page --- _alerts/2015-10-12-upnp-vulnerability.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/_alerts/2015-10-12-upnp-vulnerability.md b/_alerts/2015-10-12-upnp-vulnerability.md index a4510784..7b3e2547 100644 --- a/_alerts/2015-10-12-upnp-vulnerability.md +++ b/_alerts/2015-10-12-upnp-vulnerability.md @@ -29,7 +29,7 @@ Version before 1.9.20151008 of the miniupnpc library are vulnerable to a buffer overflow in the XML parser during initial network discovery. The vulnerable code triggers at startup of Bitcoin Core if UPnP is enabled. -Details of the vulnerability can be found here: http://talosintel.com/reports/TALOS-2015-0035/ +Details of the vulnerability can be found here: It has been verified that the vulnerability can be used to crash the application at startup by running a malicious UPnP server on the local From 3fb01e8c72fb378b57326dbe75f3135abcaad57d Mon Sep 17 00:00:00 2001 From: "David A. Harding" Date: Mon, 12 Oct 2015 09:10:57 -0400 Subject: [PATCH 10/11] Alerts/upnp: show banner / describe manual port forwarding --- _alerts/2015-10-12-upnp-vulnerability.md | 10 +++++++++- 1 file changed, 9 insertions(+), 1 deletion(-) diff --git a/_alerts/2015-10-12-upnp-vulnerability.md b/_alerts/2015-10-12-upnp-vulnerability.md index 7b3e2547..5475c4a0 100644 --- a/_alerts/2015-10-12-upnp-vulnerability.md +++ b/_alerts/2015-10-12-upnp-vulnerability.md @@ -5,7 +5,7 @@ title: "Vulnerability in UPnP library used by Bitcoin Core" shorturl: "upnp-vulnerability" active: true -#banner: "WARNING: serious vulnerability in UPnP library used by Bitcoin Core (click here to read)" +banner: "WARNING: serious vulnerability in UPnP library used by Bitcoin Core (click here to read)" bannerclass: "alert" --- @@ -54,3 +54,11 @@ makes it harder to use this vulnerability for remote code execution or private key leaks. However, it is still advised to upgrade, or if not possible, disable UPnP as soon as possible. +## Manual Port Forwarding + +With UPnP turned off, your node will still connect to 8 other peers on +the Bitcoin network to receive new blocks and transactions. However, it +will not accept incomming connections from other peers unless you +manually enable port forwarding on your router. If you wish to do +that---it isn't required---please [follow these +instructions](/en/full-node#network-configuration). From 38c10793e01f6ff673473368f5410cb675e25085 Mon Sep 17 00:00:00 2001 From: "Wladimir J. van der Laan" Date: Mon, 12 Oct 2015 16:19:18 +0200 Subject: [PATCH 11/11] mention that 0.11.1 and 0.10.3 aren't released yet --- _alerts/2015-10-12-upnp-vulnerability.md | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/_alerts/2015-10-12-upnp-vulnerability.md b/_alerts/2015-10-12-upnp-vulnerability.md index 5475c4a0..cae4d65f 100644 --- a/_alerts/2015-10-12-upnp-vulnerability.md +++ b/_alerts/2015-10-12-upnp-vulnerability.md @@ -19,9 +19,10 @@ Either - add the line `upnp=0` to your `bitcoin.conf` file - add `-upnp=0` to the command line options -Alternatively, upgrade to a version of Bitcoin Core at least 0.10.3 or 0.11.1. -These versions upgrade the library to a non-vulnerable version, as well as -disable UPnP by default to prevent this problem in the future. +Also upgrade to a version of Bitcoin Core at least 0.10.3 or 0.11.1 when they +are released (the release cycle is in progress). These versions upgrade the +library to a non-vulnerable version, as well as disable UPnP by default to +prevent this problem in the future. ## Details