It's "average" block time and not an absolute value.

That is based from the adjusted "difficulty" from the previous 2016 blocks (about 2 weeks).
The harder the difficulty, the harder it is to produce a hash lower than the "target".
So since mining is basically generation of pseudo-random hash, we will never know if miners get lucky enough to generate a valid hash in the next second or unlucky to generate it after an hour.

Is there any particular reason for this?
Because in normal circumstances, this shouldn't be an issue if you're the sole owner of the private key.
Solved puzzle 66 or something?

As mentioned by BlackHatCoiner above, if the fee you pay for your transaction is high enough, it will be confirmed in the next block and I just want to add that blocks are mined at the rate of 1 per ~ 10 minutes on average.

That is not possible, and it never was in the first place. When your transaction has 0 confirmations, it is by the protocol not final. If you're referring to the mempool policy rule before full RBF, then it is neither possible. Almost all nodes will have upgraded to Full RBF by now, and even if full RBF nodes are a tiny minority, it's enough to reach the mempool of the mining pools.

The point there is to use a better wallet. Network rules are not bound or limited by third party developers failing to implement basic functions in their software. Being able to replace an unconfirmed transaction is an increasingly basic function of bitcoin. If your wallet does not allow you to do that, then find a better wallet which does.

It is either what @nullama said (people trying to get into the halving block) or this is "fee market manipulation" considering the timing and how the attack took place. There was an "artificial" injection of a rather large number of transactions (the first suspect is the Ordinals Attackers) into the mempool which has only manipulated the fee market and significantly increased the fee rate by creating this fake competition.

Luckily the attack is becoming very expensive so it can not continue for long but the attack itself will not stop as long as the exploit in the protocol exists and the fake market where they sell fake tokens under the codename Ordinals exists. That is creating an incentive to spam attack bitcoin.

HODL'ing

importing private key to electrum wallet then send to your address is it enough? or some bots can double spend tx

someone pls  advise how to avoid such attack i read that the second of the public key of key 66 67 is revealed looters can double spend tx and steal those coins

suppose someone lucky find the private key of the puzzle what he should do what wallet is more secure to use to send those coin

Some words from satoshi himself while undercover. 

Well, it is also possible to share some data, which is needed to mine a block (like transaction ID, transaction Segwit ID, etc.), without sharing transaction data. Then, it would be sufficient to mine a block, but the pool wouldn't know, if it is valid or not.

And also, if you want to prove, that you know the public key, but you don't want to reveal it, then you can share for example SHA-256 of that key, and then everyone can validate, that RIPEMD-160 of it is equal to the address, used in the puzzle.

For example:

This is the public key, which you want to keep secret: 04678afdb0fe5548271967f1a67130b7105cd6a828e03909a67962e0ea1f61deb649f6bc3f4cef3 8c4f35504e51ec112de5c384df7ba0b8d578a4c702b6bf11d5f
This is what you can share to prove, that you know the public key: 261c1eb21fc4708c6acbe1cfc6d4565652e9e768b620782898936b93000a6c02
This is the hash used in the address: 62e907b15cbf27d5425399ebf6f0fb50ebb88f18

Edit: And also, you can deposit funds on-chain, for example into "OP_RIPEMD160 62e907b15cbf27d5425399ebf6f0fb50ebb88f18 OP_EQUALVERIFY <yourScript>", and then, it would be possible to move those coins, only if you reveal the in-between step (which is 261c1eb21fc4708c6acbe1cfc6d4565652e9e768b620782898936b93000a6c02 in that example), and "<yourScript>" could contain any conditions, like some new public key, to avoid getting those funds captured by other mining pools.

...
.
...

The only safe way to do this is to ask a solo miner or pool to include the transaction without relaying it to the network,
but that also comes with the issue of trusting the miner whether they wouldn't take the puzzle reward themselves or not.

YES, there is a bunch of tools to do that some people running crazy crazy machines
the pubkey is not revealed yet and because of the small range 2^66..

you can try this buy yourself pick a random prvtkey 0x2AAA5555000FFFFFF run kangaroo and see!


The public key is already known information, but that is not enough to crack the private key, and if someone get's access to the private key first they need to spend the coins before be able to double spend it. But looks like you are lost in the topic, what op means is.

Let's say someone finds the private key from puzzles 66 and 67, if they spend the coins and make public the private key, som users could use that private key to make a double spend from the same coins and if they use bigger fees then they could steal those coins. But the way to avoid that is to not make public the private key until it has more than 1 confirmation.

Seems kind of pointless puzzle if when you do find a solution someone else can just rob the coins off you by spam attacking and kangaroo attack.

So really the whole point of the "weak" keys puzzle is flawed as many people will just be waiting for the TX to hit the network then just go after that.

In essence unless your conneced to some mining pool or have connections there is zero chance your going to get a pool to include this actually you may find they try steal it from you.

And yes there are people running this stuff on crazy crazy machines so there is a good chance once broadcast before it gets picked up someone else then it's fee race and yea before in the past this happened someone ended up paying a massive fee just to get what little coins they could.

So don't participate unless your well linked up and know exactly how to do this stuff or you will get mugged for your find on broadcast.

I want to open this thread to talk about the tool that i develop Keyhunt available on github.

https://github.com/albertobsd/keyhunt

Keyhunt use the BSGS algorimth to find privatekeys with the publickey, the program runs on CPU and make several use of RAM to boost the speed.

Current Version 0.2.230430 Satoshi Quest
Lastest changes on development branch


How to use

Download and build
Run againts puzzle 66 (addres mode) 13zb1hQbWVsc2S7ZTZnP2G4undNNpdh5so 6.6 BTC


You need to add -t numberThreads to get better speed

Run againts Puzzle 130 (bsgs mode) 1Fo65aKq8s8iquMt6weF1rku1moWVEd5Ua 13 BTC


You need to add -t numberThreads and -k factor to get better speed

---

Best regards!

It depends on which puzzle you have solved, if it's 66, 67 then you won't succeed with electrum, you'd need to either have a bot that automatically double spends the tx or talk with a large mining pool to privately include your tx in a block, because once 66 or 67 start moving on chain and having their public keys revealed, it would take seconds for looters to brute force the public key for the private key just to double spend your transaction and loot for free.

But if it's 130, 135 etc, go ahead and use electrum with Tor.
There is no multi signature etc.

Your question is not clear enough for me to give an answer. Where are you importing your private keys from and where (which address) are you sending to?

If you are asking if you are protected from double spending, Yes you are if you wait for 1 confirmation for lower amounts and 3 confirmations for very large amounts of bitcoin.

- Jay -

You import the private key and then send the coins to another address. Why not just sweep the private key instead. But if you just prefer to import and send the coin to another of your address, that is not also bad as long as the private key that you imported is not compromised and your if the wallet that you sent the coin to also is not compromised.