0
Each time you start bitcoin-qt.exe program will generate new random address
But what happen if I modify source code and compile new version:
- instead of new random address I can hard code in source code address which already exist on the network with BTC on it ( for example http://blockchain.info/address/1933phfhK3ZgFQNLGSDXvqCn32k2buXY8a )
After I sync "new" wallet with the chain I can retrieve all BTC on it
- to do the same I can also modify RANDOM generator source code to generate any address which already exist on the network with BTC on it as above
So the question is:
It's possible to modify source code, compile to EXE and generate THAT way existing BTC address with private keys inside wallet.dat (I believe that private keys are created FROM BTC address by bitcoin-qt.exe) to steal the money
white-hat question? are you trying to find possible attack vectors so that the community can help fix those bugs. – Jonas Oestman – 2013-11-24T22:04:02.733
You have it the wrong way around. Private keys are not created from addresses. In fact, addresses are created from private keys, and in a manner that's designed to make it extremely difficult to reverse the process. – Nate Eldredge – 2013-11-25T00:37:56.300