101
« on: December 28, 2013, 10:23:06 pm »
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Silk Road Community,
Merely three months have passed since our marketplace's first incarnation was captured by our oppressors. This was a brutal blow, but we are very proud that such a devastating compromise only resulted in one month of downtime. I chalk it up to an incredible crew surrounded by a fiercely passionate and supportive community.
Our movement's strength has been tested more in the recent months than across our previous two years combined. I am deeply honored to fight alongside thousands of determined warriors, and fight we will.
This past week our ship suffered major damage.
Three of our crew were lost, and our Captain was forced into exile.
Unfortunately as contingency plans were engaged, an even graver situation reared its head below deck.
Will this be the end of everything we've fought for? Will our movement be remembered as a cypherpunk fad, or as an unstoppable force?
I'm here to fight.
But I recommend that you take a deep breath.
Reopening
The market will reopen on schedule today, at 23:00:00 UTC. Your patience has been appreciated.
Our team has worked tirelessly through the Christmas break, and you’ll be pleased to see several new features implemented when you log back into the market. More features will be rolled out on a daily basis, check the Silk Road Discussion forum for daily updates.
But in order for this community to grow it is important that I remain as transparent as possible.
There is a pressing issue I want to make you all aware of. And I won’t play it down – it will affect many of you.
This is a very hard announcement for me to write. It would be far easier for me to follow in the footsteps of dishonest market owners, and blame this issue on a fictional bug. I now understand the inner conflict they were feeling when they decided to lie to their own communities.
I must be honest. Silk Road was built with integrity, and that means continuing to be honest with the community even if it will trigger severe backlash.
So, here is the issue, followed by our plans to resolve it.
The Issue
As you know, DPR has been absent for several days now. The good news is that the contingency plan has been followed precisely, and is mostly on track. I hoped to never need to play more than a silent role in this movement, and I am distraught that we needed the contingency plan so early on: roughly forty-five days after relaunch. But let’s be glad the plan was there.
When we began building the Silk Road's second iteration, we decided that our servers should store as few Bitcoins as possible to minimize risk. The list of marketplaces on the darknet which have been hacked for Bitcoins is far longer than it should be. Lessons haven't been learned by many administrators.
We implemented a cold storage system similar to systems used at many banks and Bitcoin exchanges. This system stored the majority of user and escrow balances on computers completely disconnected from the internet. Throughout the week, we would transfer funds to/from cold storage to ensure enough balance on on each server for projected daily operations.
It was an attempt to learn from the mistakes made on SR1, to protect your funds in the event of a catastrophic hack or server seizure.
Unfortunately this week we learned that this approach was not perfect, and we again find ourselves in the humiliating position of learning from a fresh mistake.
When DPR disappeared, Cirrus wisely encouraged everyone to withdraw all coins from the marketplace. In the aftermath, I ensured that the servers stayed online for an extra day, and deposited the majority of my personal funds into the server to prevent the balance from going negative as orders were finalized in the withdrawal rush.
The contingency plan worked flawlessly except for one critical failure: When DPR hit his killswitch, I was to receive an encrypted message with the keys to access the escrow cold storage. I am still waiting for it.
I cannot elaborate on the specifics of the killswitch mechanism or the Captain's present situation, as it will cause more harm than good. We do know for a fact that he has not been compromised or detained by our oppressors, and that he does not hold any information which would threaten any within this community.
After last week's mayhem, it is now apparent that we have lost ability to unlock the Escrow wallet's cold storage mechanism which contains over 90% of user escrow funds.
All Bitcoins in users’ balances are available and safe.
But all Bitcoins that were left in Escrow over the Christmas period will be temporarily unavailable.
In other words, if you have funds in escrow, you will not be able to access them yet even once they are released/refunded to you.
I take full responsibility for allowing this foolish single point of failure, and will personally commit to repaying all escrow balances within the next four months by working unpaid. All staff is on the same page with me on this.
To be clear: This does NOT apply to your Silk Road account balance, and it does NOT apply to any funds you deposit to the market (or place in escrow) from now onwards – it applies ONLY to funds that were left in escrow before Christmas.
What Will Happen In The Short-Term
For the time being, coins released to vendors or refunded to sellers from pre-Christmas escrow will be placed in a separate wallet on your account, which we will name your ‘Pending Wallet’.
Balances in your Pending Wallet will be temporarily unavailable for withdrawal until we are able to unlock the cold storage mechanism.
I want to be clear here that this restriction of coins will only be temporary – the moment DPR returns to us, escrow coins will be returned immediately. In the event that he does not return (and I am confident he will), we will be refunding coins on a bi-weekly basis from the commission the market makes.
For every two weeks that pass, we will split our market commission earnings between all users with Pending Wallets until everyone is completely repaid. Vendors and Buyers will receive payouts on the 1st and 15th of each month, starting January 15th.
In the worst-case scenario of DPR not returning, ALL coins will be returned by no later than May 1st, 2014. Until ALL coins are made available once more, ALL staff (myself included) have agreed to forfeit all compensation and commission they would normally receive, instead choosing to offer their salaries back to the community for as long as it takes for all users to receive access to the coins in their Pending Wallets.
A Longer-Term Solution
Two new features have been designed to help prevent this loss from happening again:
1. 'No-Escrow' Listings – Vendors will be able to opt-out of the Escrow system by listing items as "No Escrow". This completely bypasses our escrow system and is a truly free market.
This will allow you to bypass Silk Road fees, and forfeit the safety of escrow to deal with other users directly. PLEASE USE THIS WITH EXTREME CARE AND CAUTION – although this option will waive the Silk Road fee and therefore be cheaper for buyers, it should be approached in the same way as finalizing early.
Vendors: be aware that refusing to offer escrow will most likely drive customers away.
Buyers: please be aware that selecting this option puts you at greater risk – only ever deal directly with vendors you have complete confidence in, and even then, only choose this if you can accept the possibility of losing the money.
NOTE: We will be temporarily charging fees on No-Escrow listings until all Pending Wallets are completely refunded, then this will become no-fee option. Our top priority as a staff is to get the Pending Wallets refunded as quickly as possible, and charging fees on No-Escrow listings may help accomplish this before May.
2. Multi-Signature Bitcoin Cold Storage - We have rebuilt our cold storage process to use multi-signature transactions to make it much more difficult for Bitcoins to ever be lost again. This revolves around a voting system, where multiple admins hold the keys to the wallets. Many other improvements have been made operationally, which we will never disclose. We will also never disclose the size of the admin staff.
No-Escrow will be launching over the weekend, with a vendor-specific announcement. Cold Storage improvements have already been implemented.
A whole new set of features will be announced in a separate thread in the hours to come.
This has been a very difficult two weeks for staff, from the DDoS to our fallen crew. We are growing from our mistakes, and know there will be many justifiably-harsh words directed towards us. To the many out there defending our motives and standing by our side: we will not fail you.
Thank you for sticking together, and welcome back to Silk Road. I wish you all the best for 2014. May it be nothing at all like the last quarter of 2013.
On a personal note: I realize that many of you do not know me.
Trust in the darknet is more volatile than any currency, and it cannot be exchanged. It must be earned personally.
I intend to prove to you that leading this movement forward is my top priority in life, and that I will pour any time and energy necessary into ensuring its success.
You may not always see me here under this name but I am completely committed to ensuring this movement's immortality.
I take this responsibility very seriously, but don't trust my words alone. Over the next months, ask buyers and vendors with Pending Wallets if they are getting paid and watch for yourself if I am a man of my word.
While other admins may run away when calamities strike - I'm ready to fight right here alongside you.
May our past mistakes stay fresh in our mind. As often as the sword is sharpened, may we also refine our approach.
Defcon
-----BEGIN PGP SIGNATURE-----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=Gce1
-----END PGP SIGNATURE-----