Search content
Sort by
Showing 18 of 18 results by KidPoker
If you worry about the day to day fluctuations of btc you probably put too much money into it.
I just want to buy as low as possible. A $100 or so difference on the price will make a big difference when I'm buying 10 coins.
Re: Finally have a wallet setup after much research. Can you guys review it please.
I've got ... just a little bit more on my online computer. My offline one has a lot more. I guess it depends on how much risk you are willing to take. But so far you go the right idea.
Did you check out the armory offline downloads?
Did you check out the armory offline downloads?
The armory offline bundle is only for ubuntu 12.04 exact. My live boot is 14.04 LTS which means I have to use the normal download. However I cannot install this without connecting to the internet so that ubuntu software centre can install the packages. This means having to connect to the internet just once which defeats the point. Same thing for any program on ubuntu. It's pissing me off to no end.
i've been thinking about doing the same thing for some time now to use as a cold storage. i think i am gonna do it now that i read this 
and as far as i know uploading "Encrypted" wallet backup to google drive can be safe and you can change the name and type of the file too, like changing it to "crocodile.webm"
and as far as i know uploading "Encrypted" wallet backup to google drive can be safe and you can change the name and type of the file too, like changing it to "crocodile.webm"
How do you change the .wallet ending without fucking up the file?
A few days ago I was waiting for the price to drop even more below 320 usd so I could buy around 10 coins. It's currently 371.12 usd and increasing. Do you think I should buy now and get in before it climbs towards 1k or wait and see if it drops again?
Download the package or installation files first. Put it on USB. Verify the GPG signatures or SHA1/MD5 hashes.
I need to connect to the internet to download the package and installation files from ubuntu software centre. I've spent hours looking at alternative methods like using synaptic and stuff to get an online computer to download the packages for you and transfer them via usb but they all require to be installed on the offline computer first, thus defeating the point!
Once I've installed the new ubuntu OS how in the world do I manage to install Armory without connecting to the internet. I've just spent the last 3 hours trying to figure this out again. It's driving me crazy. I don't understand why this isnt a widespread issue. Surely a lot of people use ubuntu for cold storage? Connecting to the net to install the package defeats the whole point of having never touched the net.
Re: Finally have a wallet setup after much research. Can you guys review it please.
Yes, I would say that your setup is relatively secure. (remember to keep the encryption key/password used secure, don't name it too obviously, and more off-site backups too)
However, have you looked in multi-sig for your cold wallet needs?
However, have you looked in multi-sig for your cold wallet needs?
Thanks John. Do you think uploading a backup of the .wallet file to google drive is okay? I know about multi-sig but how exactly would I use it. Would I make two wallets myself and sign off both transactions when needed?
But I thought the whole point of doing a live ubuntu boot was that you have a fresh OS free from all the nasty stuff?
Yes, that's true. The other benefit is that nothing is persistent, so whenever you are done, just remove the CD or USB drive that holds the live image and you are good, but the bigger advantage of using a live image is hiding your tracks. Think Tails OS.
Thanks for the reply. Actually the usb live boot is persistent to 500mb (I hope I'm saying this right). I had to because in order to keep the armory client on the usb and not deleting everytime I had to make it persistent.
Re: Finally have a wallet setup after much research. Can you guys review it please.
I have norton on my windows OS. But I thought the whole point of doing a live ubuntu boot was that you have a fresh OS free from all the nasty stuff?
Re: Finally have a wallet setup after much research. Can you guys review it please.
just a short question: which amount do you want to store?
About 2000 usd worth of bitcoin and more in future.
Some malware have been known to cross or bridge the air gaps. But those are extreme.
To answer the question, I would probably nuke the old computer using DBAN (Darik's Boot and Nuke), with at least 1 full pass. Then I would create partitions or format it fresh.
I would not use a factory reset. I will just use a linux CD/DVD/ISO or even WinXP/7/8.1.
It's not ever going to connect to the internet right? So you don't need any other drivers. You don't even need the anti-virus stuff. The nice thing about ISO files is you can check the SHA256 or MD5 and know the installation media is clean. More or less.
To answer the question, I would probably nuke the old computer using DBAN (Darik's Boot and Nuke), with at least 1 full pass. Then I would create partitions or format it fresh.
I would not use a factory reset. I will just use a linux CD/DVD/ISO or even WinXP/7/8.1.
It's not ever going to connect to the internet right? So you don't need any other drivers. You don't even need the anti-virus stuff. The nice thing about ISO files is you can check the SHA256 or MD5 and know the installation media is clean. More or less.
Thanks for the DBAN tip and idea to just use a linux CD after verifying the sha256. That sounds like a much better idea. Yeah it's never going to connect to the net.
-snip-
So if your private keys are air gapped and if even using a usb to sign transactions isn't 100% safe, what is the alternative to signing transactions from an offline computer?
So if your private keys are air gapped and if even using a usb to sign transactions isn't 100% safe, what is the alternative to signing transactions from an offline computer?
#1 QR Code, e.g. the bither app uses them
#2 sound [1]
#3 type the TX by hand, which is IMHO the safest way, unless your brain was hacked [3]. That level of security is almost never needed. On the other hand its not that hard unless you create a TX with 100 outputs/inputs. The nasty part would be the signed TX, which is just hex code and typos can happen easily.
#4 floppy [2]
#5 CD/DVD which is costly and has the similar problems USB has
Edit: In case this wasnt clear, I think for the majority of bitcoin users an USB stick is fine to transport data from cold to hot wallet. Not everyone needs/has a tinfoil hat.
[1] https://bitcointalk.org/index.php?topic=735111.0
[2] https://bitcointalk.org/index.php?topic=813295.0
[3] http://www.turnkeylinux.org/files/images/blog/i-know-kung-fu.jpg
What a fantastic post. The sound option is fascinating to read about. Thanks a lot!
Finally have a wallet setup after much research. Can you guys review it please.
At the moment I don't have a separate laptop for cold storage but in the meantime this is my setup.
-I disabled my wifi and adapters on my windows OS. I ran my laptop from a ubuntu 14.04 persistent live usb boot with disabled network connectivity via editing the startup applications. I already prepared a usb with a verified armory download file and inserted it into the laptop. I went down a dark rabbit hole trying to install armory on ubuntu while being disconnected from the internet. So I eventually admitted defeat and connected to the internet just once so that ubuntu could install Armory.
-I installed armory and generated a wallet. I printed out the passphrase with SecurePrint and copied the .wallet file and the watchonly.wallet file onto a usb.
-I ran my computer from windows and using Diskcryptor I encrypted the USB with AES-twofish-serpent. I installed armory and imported the watch only wallet.
So now I have an encrypted USB with my backup .wallet file. I have a 'cold storage' wallet that I run off the ubuntu persistent live boot.
I feel uneasy at just having my paper passphrase and backup usb's in my home in case there is a fire or something. Storing them elsewhere in a safety deposit box or elsewhere is not an option at the moment. Do you guys think that encrypting my .wallet file using aes encrypt/gpg4win (on top of the encryption that Armory does via the password) and storing this in google drive is safe?
Thank you for reading this.
-I disabled my wifi and adapters on my windows OS. I ran my laptop from a ubuntu 14.04 persistent live usb boot with disabled network connectivity via editing the startup applications. I already prepared a usb with a verified armory download file and inserted it into the laptop. I went down a dark rabbit hole trying to install armory on ubuntu while being disconnected from the internet. So I eventually admitted defeat and connected to the internet just once so that ubuntu could install Armory.
-I installed armory and generated a wallet. I printed out the passphrase with SecurePrint and copied the .wallet file and the watchonly.wallet file onto a usb.
-I ran my computer from windows and using Diskcryptor I encrypted the USB with AES-twofish-serpent. I installed armory and imported the watch only wallet.
So now I have an encrypted USB with my backup .wallet file. I have a 'cold storage' wallet that I run off the ubuntu persistent live boot.
I feel uneasy at just having my paper passphrase and backup usb's in my home in case there is a fire or something. Storing them elsewhere in a safety deposit box or elsewhere is not an option at the moment. Do you guys think that encrypting my .wallet file using aes encrypt/gpg4win (on top of the encryption that Armory does via the password) and storing this in google drive is safe?
Thank you for reading this.
-snip-
1. Disconnect the laptop from internet.
2. Run Bitcoin-QT or some program to generate your address.
3. Send the wallet to an USB.
4. Remove the USB.
5. Ctrl+Shift+Del your wallet details from the laptop. If possible, format it once.
6. Connect your laptop to the internet and send bitcoin to your address, whose details are in USB.
7. Just keep the USB detouched from all internet connections... and you are safe
1. Disconnect the laptop from internet.
2. Run Bitcoin-QT or some program to generate your address.
3. Send the wallet to an USB.
4. Remove the USB.
5. Ctrl+Shift+Del your wallet details from the laptop. If possible, format it once.
6. Connect your laptop to the internet and send bitcoin to your address, whose details are in USB.
7. Just keep the USB detouched from all internet connections... and you are safe
By the way, is this 100% safe?
Nope, an advanced trojan could be transmitted to the offline system via USB, snatch your private keys and call home when possible (e.g. using your online machine to broadcast the signed TX). So this might be compromised the moment you try to spend the bitcoins (e.g. connect the USB stick to an online machine). You also have a single point of failure (the USB stick) if it breaks your coins are gone.
On the other hand: nothing is 100% safe.
So if your private keys are air gapped and if even using a usb to sign transactions isn't 100% safe, what is the alternative to signing transactions from an offline computer?
Cheers for the reply. I know about generating wallets/addresses safely and clean booting from ubuntu/tails etc but I want a watch only wallet on my new laptop and have armory installed on my cold laptop. I was under the impression that apart from paper wallets, this is the best option? So I wasn't sure if factory restoring my laptop was be sufficient enough in terms of security to do this?
I need to buy a new laptop anyway so I was wondering if I completely wipe my current laptop (It's a sony vaio) could I then use it as my cold storage laptop? I plan to make a large investment in bitcoins very soon and was wondering if factory resetting my current laptop would be sufficient in terms of security? Cheers.
Once I logged in using my password and wrote down the long mnemonic and tried that it worked and allowed me to log back in. The print option of the mnemonic however when you first sign up is wrong. I have no idea why this is.
When you create a blockchain wallet it says:
Wallet Recovery Mnemonic
Your wallet has been created successfully. If you forget the details the phrase below can be used to recover everything.
Please Write Down the Following:
(22 words)
There is also an option that says print. The print page however shows:
Paper wallet
Login Link:
Mnemonic: (14 words)
Public Key
Private Key
I'm just getting used to bitcoin and decided to play around with blockchain. I decided to see what happens if I ever forgot my password and entered what I thought was my printed out wallet recovery mnemonic and it didn't work. After logging in with my password I went to the security settings and saw that my password mnemonic was not what was printed out. I didn't realise that my print out and what appeared on screen were two different things.
I retested this by creating another wallet and the same thing happens. The on screen wallet recovery phrase is different to what happens if you press print. Why are there two different mnemonics? The print out never works?
Wallet Recovery Mnemonic
Your wallet has been created successfully. If you forget the details the phrase below can be used to recover everything.
Please Write Down the Following:
(22 words)
There is also an option that says print. The print page however shows:
Paper wallet
Login Link:
Mnemonic: (14 words)
Public Key
Private Key
I'm just getting used to bitcoin and decided to play around with blockchain. I decided to see what happens if I ever forgot my password and entered what I thought was my printed out wallet recovery mnemonic and it didn't work. After logging in with my password I went to the security settings and saw that my password mnemonic was not what was printed out. I didn't realise that my print out and what appeared on screen were two different things.
I retested this by creating another wallet and the same thing happens. The on screen wallet recovery phrase is different to what happens if you press print. Why are there two different mnemonics? The print out never works?