100% in agreement, i only wanted to add that IF you don't have sufficient diskspace, your coins are not lost...
You can either run a pruned node, or you can export the private key(s) of the address(es) you funded and import them in an SPV wallet (like electrum)

Let them hold as much as they want... Less bitcoin in circulation means higher prices... Also, i'm not sure if an exchange actually legally "owns" the coins in their hot and cold wallets... I guess legally they belong to their clients, eventough the exchange has complete controll over them them

hm... These 3 rules sound a bit paranoid to me... Defenatly NOT bad OPSEC, as a matter of fact, it's good OPSEC. However, if you're going to be THIS paranoid, you're better off with an airgapped setup.

I mean, as soon as you're going to get a dedicated pc for your wallet, just do a clean install, remove the network card (or deinstall the drivers), install the latest version of bitcoin core or electrum by following an airgapped setup walktrough and you'll have a wallet that tops a hw wallet when it comes to security. Just make sure you do it right... There are several ways you can mess up an airgapped setup... Ah, and make sure you keep a backup of your seed or wallet.dat on a couple usb sticks which you only plugin in your offline airgapped machine (and use a strong password to encrypt them)

When it comes to safety, it's more or less (from safest to least safe)

• Properly generated airgapped setup
• Hardware wallet/Properly generated paper wallet (i've seen lots of debates as to which is the safest)
• Desktop wallet (on a legal, clean pc, with AV and firewall)
• Mobile wallet (on a clean mobile)
• Web wallet
• Brain wallet

When it comes to hardware wallets, i'd probably go for these rules:

• Go for a decent hw wallet... Stay with ledger or trezor... There are others, but these 2 brands are the most known
• Buy from trezor or ledger directly
• Make sure the box you receive hasn't been tampered with
• Make sure YOU initialise the device
• An an extra passphrase to your seed... Makes it THAT much harder to bruteforce
• Make sure you don't keep your seed on an online machine... It has to be WRITTEN down
• One or two laminated copies of the paper containing the seed won't hurt, but make sure they're kept in a safe place
• Make sure you always use the latest version of the firmware. Learn how to install firmware
• Make sure you always use the latest version of the wallet software
• Never ever enter your seed on any website... Seeds should ONLY be used for recovering your wallet, and should ONLY be entered on your HW wallet itself
• ALWAYS doublecheck any transaction on the screen of the HW wallet before signing it
• It's always a good idear to keep the device where you plug in your hardware wallet clean... I mean, nobody wants a nasty copy/paste virus that changes addresses by hacker's addresses or something... A virusscanner and firewall won't hurt, and installing random software you found online should be a big no-no... But these things are not specific for hardware wallets
• Make sure nobody has physical access to your hardware wallet...
• Don't brag about how much you hold
• Running your funds trough a mixer or a coinjoin session protects you from a $5 wrench attack... But some exchanges won't like you anymore if they cannot trace your funds...

Not your keys = not your coins.
I definitely wouldn't use a web wallet like you're doing right now.

A truly cold wallet means a wallet on an airgapped device. Most hardware wallets are connected to your device to receive unsigned transactions, and for sending signed transactions, thus they are not 100% cold. They are still safe tough, since they're created in a way so your keys can never leave the hw wallet.

Basically, if you want secure storage, go for a ledger, a Trezor, an airgapped setup or a properly generated paper wallet .

I buy my hw wallets straight from the ledger or Trezor (never from resellers), check the package for tampering and make sure they're not preinitialized

that's what i said in your previous topic: it's you who is banned, not only your account... You need to take care of your ban before you can post without risk getting your new account banned aswell...

The fact that you continue evading your ban might not be ideal if you want your ban to be lifted...

If the hacker used a mixer, there is no way what his receiving address is. That's the point of a mixer...

The only thing i see is this transaction: 89abc9415125c304773b68bad4dd37456b2f459d035a73c19eea722ab78acc0b
It uses 3 unspent outputs to fund address:18Y8B6CJFEMS93zgSPycySNkBNbFwhvE2S
https://www.kycp.org/#/89abc9415125c304773b68bad4dd37456b2f459d035a73c19eea722ab78acc0b

Afterwards, the unspent output funding address 18Y8B6CJFEMS93zgSPycySNkBNbFwhvE2S is spent funding 2 addresses:
bc1ql72syjwvm4m9lwajpaylaxvj9lxc2tzn706ruj (value 0.1)
1KgiSi5wrVYumSskG3GPaaE2MSRdFKyzj7 (value 0.81399400)

the first address is funded with a round amount... This might be because of a self transfer, or a transfer to an exchange...
bc1ql72syjwvm4m9lwajpaylaxvj9lxc2tzn706ruj belongs to a huge wallet: https://www.walletexplorer.com/wallet/000003e028959c0b
So it's probably some sort of active service or exchange...

If the thief's first transaction went to a mixer's deposit address (18Y8B6CJFEMS93zgSPycySNkBNbFwhvE2S), the rest of the trace might belong to somebody completely different... That's how mixers work.

Well, if you're avoiding a ban (https://bitcointalk.org/index.php?topic=5300851.msg55850713#msg55850713), there are 0 posts you can make... Unless it's in the one topic in meta that's discussing your ban.

If you're not avoiding a ban, you can make an unlimited amount of posts (eventough newbie accounts do have a hardcoded waiting time between 2 posts), as long as they're not spamming or breaking other forum rules... It's an international forum, we're used to grammar problems...

That's really sad to hear... Whatever the reason was, you're a victim of this situation. transactions are irreversible, so the chances of getting your funds back are small. The best you can do is go to the police and file a police report.
Have you contacted ledger support? They're usually pretty helpfull.

This being said, the instances where people lost money due to a bug or vulnerability in their hardware wallet are very, very low. Especially if the enduser is paying attention.

Sure, bugs happen... They're usually not the kind of bugs that put your funds in jeopardy.
Sure, vulnerability's happen.... But the exploitation of these vulnerability's is usually so complex (and usually requires physical access to the device) that i've never met a victim of such an exploit. Also, vulnerability's are usually fixed pretty fast.

The thing is: ledger is using a secure chip. Private keys never touch your online machine (they stay on your hardware wallet). You should be able to use a ledger on an infected PC, as long as you review your transaction on your ledger's screen before signing it, your funds should be safe.
However, either ledger or trezor did have a vulnerability that allowed an attacker to trick a user into signing a "wrong" transaction. The victim would think he was signing a tx transfering 1 LTC, while in reality he was signing a tx transfering 1 BTC. Needless to say, this vulnerability has been fixed.
Did you create other transactions around the time you were robbed?

Now, I don't know what happened in your case, but based on my experience, in case somebody loses his/her funds stored on a decent hardware wallet, it's usually because:

• the victim exposed their seed. Seeds get stored on cloud storage, seeds get stored in emails, seeds get stored on pictures on your phone, seeds get entered due to phishing attacks, pre-initialised wallets get sold by thieves, family members or friends or collegues steal seeds from the paper they're written on
• the victim exposed their xprv (or derived private keys). Usually be exporting xprv or prv and importing it into an other wallet
• there was physical access to their hardware wallet: for example, amazon is notorious for taking back used wallets and putting them back in stock, which allows people to install fake firmware or pre-initialise the device. Also, there are vulnerability's that allow the extraction of date from a trezor if you have physical access to the device
• bad opsec: not installing patches, not paying attention as to where you download software from, not paying attention when signing transactions,...

Once again: i'm not victim blaming. It IS possible you fell victim to an unknown or unpatched vulnerability, and there was no way you could have avoided getting robbed... I'm just saying that if we look at the odds, then we must say the odds are small (but not nonexistant).

So, my advice would still be: open a police report, contact ledger, move your other assets from your ledger to a different secure wallet.

Frozen? Do you mean banned?
In this case, if you continue to post with other accounts, you're evading your ban (an offence that's bannable).

In case of a ban, it's you (the person) that's banned, not (only) your account.

If your other account was banned, you are allowed to use a new (or existing) account to make 1 thread (and 1 thread only) in the meta subforum with the sole purpose of discussing your ban. Only if the admin lifts your ban you are allowed to continue posting.

You made a typo there.... I just fixed it

You don't have to enter your 24 word seed ever again, unless something goes wrong while installing new firmware, or unless your device gets wiped due to to many failed attempts to enter your pin, or unless you break your device and you buy a new one.

You should have chosen a pin code when initialising your device... This is the code you'll be using to unlock your hw wallet... This pin code can be completely different from the password chosen when you installed ledger live.

So, in the end, following passwords, seed phrases, seed words, passphrase come into play:

• the 24 word seed: your master private key gets calculated using these 24 words... They are necessary to restore your wallet if you ever break or lose it, or wipe it
• on top of the 24 words, you can add an extra passphrase (optional). This passprase is added on top of the 24 words, and is necessary to restore your wallet (if used)
• the pin code: necessary to unlock your hw wallet, but not to restore it
• password of ledger live, electrum, wasabi,... is used to encrypt your ledger live, electrum or wasabi wallet file... But these files do not contain seed, xprv or derived private keys, so they cannot be used to rob you... They're also not necessary to restore your wallet in case of thefth or loss

,

the most important thing is writing the seed phrase down on a piece of paper, copy it, laminate it and store it in a safe location.

In order to spend your funds, you can use the leder live app, or you can use electrum (or wasabi) as alternative wallets.

Well, I switched to openVPN on my dedicated box a while ago (witch has it's own drawbacks, but hey, i had a dedicated server ready, so i went ahead and used it instead of renewing my trust.zone contract), but the main drawbacks of trust zone were the fact that connections got dropped once in a while, and their nodes get overloaded from time to time, resulting in lower speeds (due to the fact their network isn't really big). But their price/quality ratio was defenately OK.

As for my coupons: I have a coupon to apply for a 2 year contract, and one to apply for a 3 year contract. After applying the 2 year coupon, you'll pay 1,95€ instead of 2,19€/month for a 2 year contract. I just realised my coupon for a 3 year contract gives less discount, so you'll end up paying more per month for a 3 year contract than for a 2 year contract...

Add 10% discount for bitcoin payments, and you'll pay 42,21€ for 24 months (1,76€/month).

By the way, when i said that openVPN on a dedicated box or a vpn has it's drawbacks, i mean the following: when using openvpn on a vps/dedi box you'll only be able to use one node, so one exit point (ip) so you cannot use it to try out different netflix zones, or test services from multiple country's/ip's. The VPS is also linkable to you, so it's not ideal privacy-wise (since the exit ip is still linkeable to you). I still use it when i'm not at home and i connect to a public wifi tough, my packages pass trough the vpn tunnel to my server, so i don't have to be afraid from public/hotel wifi anywore

sorry, but that sounds shady as hell...

If it were me, and somebody offered me plane tickets to eastern europe to exchange crypto for cash, i'd run in the opposite direction. I'm also from the EU, from a country neighboring Germany, and i know eastern europe's reputation... Try going to the (bribed) police officer to tell him you were robbed of magical internet money at gunpoint by some bald dude in a leather jacket, see what happens.

As for you sending him 0.2 BTC first, without escrow, without knowing the other party => you're just asking to get scammed.

6% above market value + free plane tickets sounds to good to be true, so it usually is...

ps: I have nothing against eastern european people... I have worked with many people from ukrain in the past, they're lovely people... I just mean to say that i truely believe that there is more corruption over there than there is in western european countries, and going there to meet somebody you have never met before with an irreversible payment method in your pocket might not be the brightest idear...

If you follow the link to blockchain in the OP, you can clearly see it has been solved in ~2 days...

I've used trust.zone in the past... Using a coupon + paying in BTC it can be as cheap as 1.8€/month for a 3 year plan. PM me if you need the coupon (full disclosure, it's a coupon that was generated for me, and i get a small fee if you sign up, this being said: i was using this vpn before i was their affiliate... They're not the best, but they're one of the cheapest that do the job)

It would be interesting to find out if it was possible... That being said: I don't know how safe it would be, since you'd probably be stuck with legacy code, or binaries that were really hard to build, this would make them very hard to keep up to date...

That being said: it seems like there is a legacy python version for palmos: https://legacy.python.org/download/other/
So you might be able to rewrite electrum.... I'm pretty sure you won't be able to get the gui running, but maybe the daemon?

Or maybe you could find a browser that supports javascript and run coinb.in... even tough I wouldn't use it to create private keys for cold storage.

Or maybe if you find a wallet that's written in c++, but even then it wouldn't be an easy task to compile it.

Bottom line: it would be a nice theoretical experiment, but I do not believe you'll be able to build and maintain a recent, easy to work with, safe, full featured gui wallet... Unless you wrote one by yourself, especially for palmos (they do have a compiler). So, unless you wrote a wallet from scratch, you wouldn't be able to use it as cold storage IMHO... But I'd be happy if you proved me wrong 😉

wasabi does not give free service. They charge 0.003% per anonimity set and keep any change that's smaller than 0.3% of the base denomination.... Exceptions do apply from case to case.

Last time i coinjoined with wasabi, i ended up with a 70+ anonimity set, so the fee was 70 * 0.003, so i ended up paying more than 0.2% in fees, since the base denomination is ~0.1 BTC, the fee was a little over 0.002 BTC (about $40 in FIAT at the current preev rate). If your change value is to small, you could end up paying 0.5% (0.2% in fees + 0.3% of the change that's kept by wasabi's owners). The fee is not exceptionally large, cheaper than a lot of other mixers, but not free

Chipmixer uses a pay-what-you-want fee structure, but in order to use it, you do have to read up about their chip sizes... So they could theoretically work for free, eventough i usually do tip them (if everybody would use them for free, they'd stop existing).

Other mixers usually charge between 0.5 and 1,5%... I'd recommand doing your homework before using one... I'd stay clear from the ones with a negative rep on bitcointalk (or the ones without any bitcointalk representation). I'd also stay clear from the ones using cloudflare or missing security headers, or forcing you to use javascript, or the ones without a presense on the darknet (an onion domain)...

The OP bought bitcoin not from paypal, but from a p2p market using paypal. This means he probably used a wallet to create an address witch was funded by the seller on the P2P market.

This also means a mixer or coinjoin is a sollution to his problem.

Sure, the seller will still know which address he/she funded, but he/she should not be able to trace the trail of unspent outputs post-mix/post-coinjoin. For all that he/she knows, the OP might have sold his BTC, or used it to purchase goods or services.

You download these blocks from multiple peers, AND all consensus rules still apply... This means that a sybil attack would be extremely costly, since the fake blocks should still follow all rules, so an attacker would basically have to mine an alternative VALID blockchain AND make sure your node only connects to his attack nodes.

As for this topic, the main point has already been made: trust...

If you want to be your own bank, and verify everything, you need to download and parse all blocks. If you don't want to verify everything: use an SPV client...