Gavin Andresen wrote:
On Mon, Dec 20, 2010 at 10:55 AM, mmalmi@cc.hut.fi wrote:
ShadowOfHarbringer described a way of mirroring the bitcoin.org website and forum here: http://www.bitcoin.org/smf/index.php?topic=2026.msg30043#msg30043
Should we go by it and trust the database along with its password hashes to some reliable community members who have servers?
That seems like asking for trouble, and I think it would violate the implicit trust of everybody who’s registered for the forums.
I agree, don’t let the database out of your hands. There’s private PM in there, e-mail addresses, passwords.
BTW, password hashes = passwords. It’s easy to break the hash of short
passwords people use on forums.
6 chars = 3 difficulty
7 chars = 410 difficulty
8 chars = 25418 difficulty
Another option is to
encrypt the backups with pgp and store them in multiple places.
That seems wiser. Daily backups copied … somewhere … seems like the right thing to do. If they’re reasonably small (less than a gigabyte), I’d be happy to pay for Amazon S3 storage/bandwidth for them.
+1
Even with encryption, a trusted storage place is better.
Source: Published by Martti Malmi on GitHub in February 2024 as part of his testimony in the COPA v. Wright trial. The full correspondence archive is available at mmalmi.github.io/satoshi/.