Ninjastic
PostEdited versionsQuotes to this post
Post
Topic
Board Bitcoin Discussion
Re: ALL of my bitcoins stolen (Around 60) . What the F*CK.
by
elggawf
on 27/06/2011, 15:11:08 UTC
Quote from: xanatos on June 27, 2011, 02:44:49 PM
This would be a shitty security method that would protect you only from the most noob script kiddie.
Two ways to hack it:
* the simple: wait for the window asking the password to appear and take the password (keyloggers)
* the "a little harder": You know (by looking at the source, the client is open source, you know?) in which function the key is unencrypted, you wait for the exe of the client to be loaded (you are a trojan, you are resident in memory), put a breakpoint there and snoop the memory. Each time a new version of the client is created you lose half an hour to "expand" your library of possible breakpoints. Hackers do more complex things to games that are protected by latest generation protections. You think that an open source software that anyone can compile is more resistant? Encryption will only make the wallet.dat more resistant to "one shot" trojans that enter, steal and exit (or to trojans written by script kiddies that don't know assembly). This would steal one private key at a time, if the program is well written (but then, if you are already putting a bp in the code, you can directly steal the password).

The only "possible" way would be to make the program polymorphic, like the viruses, so it would be more difficult to put a breakpoint in memory, but it's quite complex... And it would protect only against the second method. And in the end the trojan would simply replace your exe with another one that would only ask you the password and send it to the hacker.

This shit can't be emphasized enough... so many people get pwnt and then scream in anguish to the sky "why? why doesn't the client encrypt the wallet by default?" but the fact is that client sided crypto where you can't really trust the client is terribly hard to get right. If malicious processes can run on your machine, all bets are off... throwing more crypto at the problem just raises the bar for how hard the malicious person has to work to get a payoff.

Sure, right now there is very little work to be done to score a giant payoff - but if you think those people are going to stop trying just because your wallet is encrypted, particularly if the BTC does go to the levels people here seem to think it will, then you're delusional.