is there a way to initialize a Trezor seed w/o revealing the master pubkey to mytrezor.com? is that what python trezor is for? can it be done through Mycelium?
I'm not sure the master pubkey is revealed to mytrezor.com at all. I vaguely remember slush or stick saying it wasn't the case. Does anybody know for sure or can point to the relevant part in the client code?
does capture it in advanced settings, or somewhere like that.
if "it" is the client side javascript code, the I have no problem with that. Question is: is it sent to the mytrezor.com server?
i thought it would have to be b/c that master pubkey is definitely in one their setting windows.
No, it isn't. Think of your browsers javascript engine and html document view as providing a runtime for an application.
An example where this is easy to see are browser-based paperwallet generators: you can see the private key "on the page", but it's not sent to the server.