Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I expect nothing less from Instawallet. Previously, they used to keep private keys in the URL and allowed google to index these URLs. It took a lot of pestering and hand-holding to get this fixed. I should have figured this would have happened sooner or later, given their incompetency regarding security.


Dunning-Kruger is an order of magnitude stronger for security.


If you are doing security for a Bitcoin site, your motto should be "I am an idiot and am forgetting something very basic." Then you should try to figure out how to protect yourself from your own idiocy despite being stupid.

And you should never assume you just got smart.


And then a 17 year old launches before you and takes your customers.


In that case, you need to out-last the 17 year old until his site dies from the security breach.


And the 17 y/o takes their customers' wallets, what's your point?


The market can stay irrational longer than you can stay solvent. Everybody who tried to "do it right" (TradeHill, CampBX, etc.) seems to have failed while users flock to the joker du jour.


Wouldn't it then be hard to be the joker du jour for long?


That should be your motto all the time, for everything.




Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: