Not if I'm doing the public-private key generation locally on an air-gapped, unconnected computer - one of the reasons for my posts above. I would like to get hold of that code for personal use, but the creator has hidden it, unlike other websites that randomly generate public-private key pairs. I actually think that I could create the code if I really put my mind to it, something I might consider if I can't get that code.
I don't understand why you are so fixated on choosing your own private key that is memorable. Why not instead generate random private keys until you generate something that you find memorable. That is far more secure than you choosing something memorable. Not if I'm keeping it purely for storage and not transacting with it.
<snip>
How would a thief steal it if it's committed to memory and the public key has only ever been used once - to deposit the money? You're assuming I'm using it for transacting. That wallet is cold and the private key has never touched the Internet.
<snip>
Not if I simply put the bitcoin there for long term storage.
It can be stolen the moment you decide to spend the coins and have to enter you private key into some software. Even if you are keeping the coins in long term storage, at some point in the future you will want to move those coins out of storage to do something with them. Whenever you do that, you expose your private key and it can be stolen. Similarly, the same argument can be made for randomly generating a private key and keeping it on a storage medium that never touches the internet. There is also still a significant privacy loss even if you are only using that address for receiving. For starters, everyone that sends you money will know how much money you have. Furthermore you are reducing the privacy of everyone that transacts with you because anyone will be able to look at their transactions and immediately know who they were paying and how much. |
|
|
|
|
addwitnessaddress was primarily a shim to facilitate testing of segwit. It was not really meant to be widely used by users for segwit.
Segwit addresses beginning with a '3' are actually P2SH addresses. This means that the address itself is mapped to a script (after all, it is Pay-to-script-hash), not to a private key. From there the parts of the script itself are mapped to a private key. However dumpprivkey does not go that deep, it only takes things that are mapped directly to a private key, which are P2PKH addresses and public keys. Segwit addresses are not mapped to a private key because they are really just P2SH addresses. So using dumpprivkey with segwit addresses will return an error (as will using any other P2SH address).
To get the private key of the address, you need to take the address that you used addwitnessaddress on originally and call dumpprivkey on that address.
|
|
|
|
1) Using my method where it's a simple algorithm for me to remember the page number and location via a HUGE (and I mean HUGE) string of numbers - i.e. not your typical internet password. This wallet would exist in my head. Despite this, it's more vulnerable to attack because it doesn't have the entropy of a purely randomly generated number.
The page number and location that you find memorable, even if a "huge" string of numbers, is probably something that many other people would find memorable. Regardless of what number you choose, it will not be as secure as randomly generating a private key. What you are doing is similar to brain wallets which are notoriously insecure. Except your method is less secure as it does not include any key stretching or additional things to possible add randomness (e.g. hashing) that brain wallets do. 2) Using a randomly generated key which is less prone to attack, but is more easily forgotten or the details of which more easily lost. (This key would have to be stored somewhere physical, opening it up to being attacked in a way the first option wouldn't.)
There's nothing stopping you from randomly generating a private key and then figuring out its location on directory.io. Or randomly generating the page number and randomly generating the key index on directory.io so that you can memorize them for your key. That would be more secure than you choosing the location manually. You can even keep generating random numbers until you find one that is memorable to you. That is much more secure than you choosing your own private key. Furthermore you are still vulnerable to many attacks (even the same ones that you thought you weren't vulnerable to) with your scheme. First of all, you are essentially sending your private key to a remote web server (directory.io). The owner of that website can see that your browser would be visiting the same page over and over again. It would not be hard for them to just search through the private keys on that page and see which ones have coins and then steal them. In fact, any man in the middle could do this. The site doesn't even use https so anyone sniffing traffic on your internet connection (e.g. shared wifi) would be able to see exactly what page you are on and then just scan those private keys. Secondly, you still need to load that private key into a wallet software in order to spend from it. You will probably have the private key on your clipboard, and the private key will be held in insecure places and in insecure memory. With a proper wallet software that generated your private key, the private key will remain in that software's memory (unless you export it). Your private key would then be able to be stolen by keyloggers and clipboard loggers which constitutes far more viruses than coin stealing viruses as coin stealing viruses much find specific files to steal your coins. This means that your key is much more vulnerable to viruses on your computer. Additionally you would still be vulnerable to traditional coin stealing viruses because most wallet software will write imported keys to a wallet file so normal coin stealing viruses can go steal those wallet files. Thirdly, because the private key is in an unencrypted form, if the private key is stolen, then the thief can spend your coins immediately. With wallet encryption, if your coins are stolen, you still have time to move them as strong encryption and a strong password will protect your private keys. Lastly, you would be reusing the exact same address over and over again which will lead to significant privacy loss. There's a reason that nearly all wallet software gives you a new address every time you want to receive coins and every time it makes a change output. |
|
|
|
|
What is the code that you are using to generate an address?
|
|
|
|
Here's a question: Are BDB forwards compatible? If I force a build with-incompatible-bdb and it's a newer version than what the existing wallet has, will that be able to read and work with the existing wallet?
Yes, it will. Will bdb keep using the old format on disk or upgrade the database?
I don't remember the actual behavior. I don't think it will upgrade the database. |
|
|
|
I actually don't see why it's so terrible if I do it offline, air-gapped? Doesn't this directory list ALL potential private keys? It's not as if I'd use page 235 key 15 as my address...my choice would be far more sophisticated than that.
Using directory.io to choose your private key is a horrible idea, regardless of whether you are online or offline. Private keys are only secure if they are randomly generated using a cryptographically secure random number generator. By using directory.io (or any other list of private keys) to select your private keys manually, you are significantly reducing your security because humans are notoriously bad at securely generating random numbers. You as a human do not provide enough entropy to actually choose a random number randomly, which means that whatever private key you choose will be insecure and more likely to be easily brute forced. |
|
|
|
Although I can not understand how a satellite that requires expensive dish to connect be useful to the poor.
Who said that it was supposed to be useful to the poor? You don't need to be poor to have a bad internet connection. |
|
|
|
|
A factory reset often does not wipe the flash storage completely. It will format it, but the data is still there and could be theoretically retrieved. The only way to be sure that your private keys do not exist on the device are to delete the file and overwrite it with 0's or random data. Unfortunately that is a bit hard to do on a phone.
For most use cases, unless you think the person you are selling the phone to both a) has the expertise to perform data recovery on a phone and b) knows you had coins on the phone, it should be safe. Additionally, if your wallet has a passphrase on it and is encrypted, then your private keys should be safe.
|
|
|
|
Thanks! It's F:/Bitcoin core. Does this mean I filled the home dir on armory correctly?
Yes, that should be correct. |
|
|
|
Hi Achow101! Thanks for your response, but where can I find this datadir? I'm far from being an expert in these kind of technical things. My settings in Armory are as follows: the C: drive is where bitcoin core is installed and F: drive is the external hard disk where the data is stored.  The satoshi datadir is the folder on your F:\ drive that has all of the blockchain data. You can check to see what Bitcoin Core is using as its datadir by opening Bitcoin Core and going to Help > Debug Window > Information. The datadir is listed there. |
|
|
|
I meant "Is it the right value to trigger the crash".
You are on the right track in my case then.
Yes, 1 is the value that will trigger the crash. |
|
|
|
This was set before:
"nCustomFeeRadio"=dword:00000001
Is this the right setting and value? If it isn't the right setting you have to tell me it's name.
That is the right setting but the wrong value. Just set it to be 0 instead of 1. We will be released 0.15.0.1 shortly which contains a hotfix for this bug. |
|
|
|
In windows, these settings are stored in registry under the key HKEY_CURRENT_USER\Bitcoin\Bitcoin-Qt. In Linux, the settings can be found in ~/.config/Bitcoin/Bitcoin-Qt.conf. I don't know about Macs.
For Macs, it's /Users/*username*/Library/Application Support/Bitcoin/bitcoin.conf. If it helps, my config items are rpcuser, rpcpassword, minrelaytxfee, limitfreerelay, txindex, and server. No, not that conf file. That's the Bitcoin Core conf file which the user must create. What I am looking for is the Qt QSettings storage which is not something done by Bitcoin Core but rather handled by the Qt framework. |
|
|
|
It took me over a week to fully sync the bitcoin core.. 144 GB of data! (Do I really need this to trade coins??)
You need all of that data in order to use the wallet software that you have chosen to use. Anyway, my Armory app is still in the same modus as described in my first post. Where can I find this satoshi datadir?
The satoshi datadir is Bitcoin Core's datadir. It is where the 144+ GB of data is stored. |
|
|
|
Just because Bitcoin Core does not do it doesn't mean that it is not allowed on the network. Just look at how NetMsgType::TX is handled: https://github.com/bitcoin/bitcoin/blob/master/src/net_processing.cpp#L1762. Nowhere in that does it require it to have received an inv with the txid. The inv with the txid is only there to avoid sending txs to peers that don't need them and thus save on bandwidth. |
|
|
|
i am confused here.,
how can nodes accept full tx ?
doesnt protocol says, it sends hash only at first and upon asking, its sends full tx ?
i am checking that python code now.
thanks
A node can and will accept an unsolicited transaction, i.e. it will receive and handle a transaction that was not announced to it with an inv message. There is no need to send an inv message to announce the txid first, just that it is more efficient to do so instead of just sending a tx. |
|
|
|
And btw, if you are receiving transactions in a legacy format address (for example, the BTC I receive for the signature campaign, which is paid in a legacy format address) could I use bc1 addresses within that same wallet, or I would need a new wallet for that? Because im not sure if they can be mixed within the same wallet, or you would need a wallet for legacy addresses, and a separate new wallet for bc1 addresses.
You will be able to use both in the same wallet. Thankfully, as far as I know, Bitcoin Core 0.15 allows for multiple wallets at the same time. I haven't tried it yet so I wonder how it looks like on the GUI.
GUI support for multiwallet is not yet complete and not available in 0.15.0. It should hopefully be complete for 0.16.0. |
|
|
|
Thanks; all is now well. One last (I hope!) question: should I use -resetguisettings on subsequent runs of 0.15.0?
No, that is unnecssary. |
|
|
|
Thanks for the fast reply.
My Bitcoin core is not running in parallel to the armory (it gives me error when trying to run both of them together) but the bitcoin core is indeed updated with the latest blocks from today.
What should I do?
Run Bitcoin Core manually. First stop both Bitcoin Core and Armory. Then start Armory and go to File > Settings and uncheck the option "Let Armory run Bitcoin Core in the background". Then stop Armory. Start Bitcoin Core and let it fully sync. Then start Armory again. |
|
|
|
|
Show Posts
