1) Why are they making such disclosures? Wouldn't they make it easier for hackers to get to them? For example, just for the sake of argument (know it's a bad argument because of math, large numbers, publicly visible to begin with but just put that aside) - if you provide the address hackers can begin trying to brute force it. But if you don't disclose it, a hacker would not even know where to start. It's like a robbery victim pointing hackers where to attack next.
Think the question here is: why are they comfortable with hackers knowing such information.
Just for the sake of the argument (just theoretical, because practically you can not bruteforce the private key to a given address): An attacker could simply download the whole blockchain and look for the address containing the most coins. And then simply try to bruteforce this address. Or, an attacker could withdraw some coins from binance and then track the origin of these coins. In the end he would also find the cold wallet address. It is not like you could hide it anyway. So there is no reason to not publicly post it. 2) Why do they appear to use only ONE address for BNB cold wallet? Isn't this like putting all your eggs in one basket?
Not really. Mathematically it is secure. So nothing can be done here. Regarding physical access etc.. If there would be 10 private keys.. they probably would be secured in the same way.. So with physical robbery (if they could steal the 1 private key to the cold wallet), they could steal all of their private keys. 3) Likewise, how many hot wallets addresses do they use? Any way to find out such information?
You could try to estimate the amount with blockchain analysis. But this won't be an accurate number i think. And additionally they are generating new 'hot wallet addresses' each day. I am not understanding you point , make one and heavily guard it? Why not make 10 and heavily guard it? To be precise what do you mean by "heavily guard" it? I guess security of cold wallet is due to its offline nature not due to "guarding" it.
Agreed. That does not make sense. Anyone have any ideas? Look above: Not really.
Mathematically it is secure. So nothing can be done here.
Regarding physical access etc.. If there would be 10 private keys.. they probably would be secured in the same way.. So with physical robbery (if they could steal the 1 private key to the cold wallet), they could steal all of their private keys.
It would just create additional effort without gaining much (if anything at all). |
|
|
|
Ok is a live linux distro off usb means it is like a ROM as in like cd-rom where nothing is written to the usb meaning whenever I restart linux I have to download and install ledger live over and over again whenever I wanna use it after computer restart?
Generally, yes. But you can create your live distro with a persistence memory. Anything you will store on it, will be available between different sessions (e.g. installed ledger live will be available). If so can anyone confirm whether windows 7 safe mode with networking works as the above method seems tedious.
You asked that already multiple times. Try it out, or don't. It is up to you. So far it's not looking good for ease of use factor for hardware wallets and if bitcoin wants to grow to the masses this inconvenience needs to be removed you know what I mean.
 You are using an outdated OS. What do you expect ? Just update your OS to the newest version (Windows 10) or use electrum together with the nano s to access your coins (even works on windows 7). It is very understandable why security-orientated software won't be maintained for outdated OS's. Just use the latest version, or don't. Up to you. |
|
|
|
4 days are enough to solve such an issue. I will write them every 2 days.
No. It is not. You might believe that it is just pressing a button. But a security-orientated company (which binance definitely is, just as any crypto-based exchange should be), has security policies. Accessing private keys - outside of the automated process - can only be done with a lot of work / security measurements. IMO, you should be happy that they even answered that they will try to recover them. This is not self-evident at all! If i would run such a company, my policy would strictly forbid anyone to touch any private key. They would be too isolated to be touched by a human being inside of the company. In this case your coins would not be released to you. I do know, that this would probably be an asshole-exchange in the view of the majority. But IMO, security > convenience. I would require that everyone can properly read and therefore use the exchange as intended. Long story short.. stop stressing them. They either recover them (which it seems they are doing) or they are not. Give them their time. Even if it takes 6 months. Just be happy that they even try to do you the favor. |
|
|
|
Additionally some coins cycle through cryptographic hash functions (if my memory serves me right, may also have just been a concept)
Your memory serves you well. There was a coin with 6 different hash functions and I had the distinct impression it was mostly a gimmick, as cycling hash functions doesn't guarantee that it's more secure, because security is dependent on other factors too. IIRC, Verge was using 11 different algorithms which it cycled through. Fun Fact: This actually was the reason attacker could perform multiple 51%+ attacks on it. Instead of needing to gain more than 50% of the total hashrate, the attacker got 50%+ hashrate of 2 of those algorithms (the ones with the least miners) and manipulated the blocks that the 'next chosen algorithm' was the other one where they controlled the majority of the hashrate. In addition to that, i believe, they found another flaw which allowed them to create a block each few seconds (instead of 1 per 1-2 minutes, don't remember exactly what their average block time was). This combined was like the ultimate MCA which could happen to a crypto currency. And i believe they didn't even needed the hardware for that, but simply rented the necessary hashrate (i am relatively, but not absolute, sure about that). So, instead of having a coin which is more secure, they weakened the security by cycling through multiple hashing algorithms. Their innovative approach to a ASIC-resistant and more secure coin, led them to be a laughingstock for the whole crypto community (without even mentioning that their so-called 'privacy' was basically non-existent). |
|
|
|
what the hell, didn't he have like 300 posts? Looking at his post history, seems like something in him snapped.
Ye.. he had about 220 - 280 posts. Something like that. According to him, he was searched by several governments or some shit like this. Maybe he's just cleaning his tracks?
lol
Maybe he got arrested and the leading special operator needed to destroy all of his valuable information he has given to us about BTC and possible improvements.  I think you guys like made him rage quit a forum lmao!
He probably just was an alt for trolling. P.s. I know that this post of mine is completely off-topic. Feel free to report / delete it. Just had to put in my two satoshis. |
|
|
|
viabtc's free accelerator will work if you're fast enough to submit it right after the clock's minute hand points 12.
We've managed to do just that, so it should get confirmed now, thanks! Note, that this does not mean that it will be confirmed in the next block. ViaBTC is going to include this transaction into their next mined block (according to them). Since they currently have a share of ~6.60% - 7% (depending on the source), it takes ~14-15 blocks until they mine one (on average!). So the average amount of time it should take for your transaction to be confirmed (if they are going to include it into their next block) is roughly 2.5 hours. It could very well be possible that they mine the next block, or no block for the rest of the day. These numbers are the average numbers. |
|
|
|
I am still looking for the posts which were plagiarized.
~snip~ There's another reported but the original post seems to have been deleted. +1 for hilariousandco for actually taking the time and looking it up. OP, when you copy/paste posts from other user, why take the very low quality one? This doesn't make sense for me. |
|
|
|
I am still looking for the posts which were plagiarized.
I am pretty confident (but not completely sure) that someone wrote a bot which scrapes all posts on this forum and searches for plagarized posts. Then the bot simply reports those plagiarized posts. If the moderator have the opinion that these posts indeed were plagiarized (maybe even multiple), you are getting banned. And that's probably what happened. If the person who created the bot wanted to share the posts you have plagiarized, you would get to see them. Otherwise, if no moderator wants to do the work, not. |
|
|
|
edit:
now in a fee war, the cost of a tx increases, so I don't see how you can claim it a 'savings'.
With segwit you pay less fees than with a legacy transactions. Therefore you save on fees with segwit compared to legacy. How can that be misunderstood?  It doesn't matter whether the fees are at 1 sat/B or 1000 sat/B. A X% decreased fee with segwit will always lead to a cheaper fee with segwit -> save on fees. |
|
|
|
This is not that easy to answer. You need to elaborate what exactly you want to know. PoW just describes some soft of a crystallographic puzzle which has to be solved. There are 2 types of PoW: - Challenge-Response
- Solution-verification
Moreover, these variants can be either CPU-bound, memory-bound or network-bound. If you are now talking about the 2nd type of PoW with CPU-bound functions (like it is the case in bitcoin), you can basically use any hashing algorithm (is this what you meant by "which algorithm"?) you want. PoW in a centralized environment (e.g. network login via RADIUS server etc.) always uses challenge-response. Obviously this is completely different from bitcoin mining. So you really need to be more detailed about what you want to know and the precise use case. |
|
|
|
|
Mycelium would only be used as a cold wallet if it is completely offline (not a single interface available on your mobile, no wifi, bluetooth, nfc, ... ).
If it is on your mobile which is connected to the internet, has a SIM inserted, etc.. it is a hot wallet.
Cold wallet = completely offline (all the time)
Hot wallet = network interfaces enabled (e.g. connected to the internet)
|
|
|
|
If you install mycelium on your mobile which you are carrying around with you, i would suggest to not put more money on it than you would carry in cash with you. If you just want to hold them long-term without regularly accessing it, i'd suggest to either us a dedicated offline device or a paper wallet. I have replied in your other thread with a recommendation of mine. Mycelium wallet is one of the recommended wallet by Bitcoin community. Few ques.
1. Suppose if I put my Bitcoin for 3 years in this wallet and meanwhile they close this app then is there any way to recover it?
On my Android phone Mycelium allows (insists!) to make a backup. The backup consists in a 12-words seed which *should* work on other wallet programs too (e.g. Electrum) to recover your wallet and your money. I wrote "should" because I use Mycelium only to see the content of my wallet, I don't trust phone security to keep money on a phone wallet, so I didn't try out the backup/restore. I can verify that mycelium creates bip39 mnemonic codes. They can be used in any other bip39 compatible wallet. So no problem here, OP. |
|
|
|
While this is a valid solution, in Linux I'd rather use symlinks, ie: ln -s /mnt/yourdevice/userfolder/bitcoin /home/YOURUSERNAME/.bitcoin/
This is valid, but you messed up with the order.
The syntax is ln -s source destination (just like the mv or cp command).
The above command would create a symlink from the mounted drive to the internal memory of the pi.
But OP needs the blockchain to be stored on the external drive.
So the command should be:
ln -s /home/YOURUSERNAME/standardpath/to/blockchain /mnt/mounted/drive/to/store/blockchain/onEdited, See post below. But personally, i'd choose to edit the config instead of creating a symlink. But that's just a personal opinion. |
|
|
|
you can look for coinbase wallet for long term holdings
Are you guys really suggesting to use a web wallet for long term storage ? This is probably the worst of all possible ideas.. I have had pleasant experiences with GreenAddress and Jaxx
Jaxx is not good either. Jaxx doesn't protect your private keys at all. Once, someone gains access to your computer, your funds will be gone.
@OP If you want to hold your coins long-term, without accessing them frequently and don't want to use a hardware wallet, you should either use a dedicated offline device (e.g. old laptop / computer) or a paper wallet. Long term storage doesn't require your wallet to be connected to the internet at all. It is way more secure if you store it completely offline. You don't even need to create a 'traditional' paper wallet (which can be quite tricky to spend from regarding change addresses etc.). My suggestion would be: - Download a live linux distro
- Boot into your live linux
- Download electrum
- Verify the signature of electrum to make sure you have the original one and not a malicious fake version
- Create a wallet in electrum
- Write down your 12 word mnemonic code (this is used to create all private keys associated with this wallet)
- Write down one (or multiple) addresses of your wallet
- Make sure you have your 12 word mnemonic code!
- Shutdown your live linux and format the USB
- Profit.
Then you'll have your 12 word mnemonic code which can always create the necessary private keys to spend from your addresses. If you want to access them, simply again use a live linux distro + electrum with your backed up mnemonic code. You won't have to worry about change addresses because they are included in your seed (derived from the 12 word mnemonic). Note, that you don't have to actually use electrum. You could also use any BIP39-compatible wallet (for more compatibility in the future). Even though electrum does not generate BIP39 mnemonic codes, you will still be able to always derive the seed from the mnemonic. Even if electrum doesn't exist anymore by then. |
|
|
|
You can indeed sign messages with electrum. Make sure to download it from https://electrum.org/#download. And only from this site. Simply use the executable for OSX. And, to be on the safe side, make sure to veirfy the signature of the file. Then connect your nano s with electrum just like described on the website you have posted. Afterwards you can sign a message, doing as described here. Note, that you can NOT sign message for your segwit addresses (technically you can, but there is no standard implemented yet. Messages signed with electrum will only show as valid when verified with electrum). |
|
|
|
Yes I got it working thank to you guys!
During installation of ElectrumSV I used the last option "Import Bitcoin adres or private keys" I copied the Receiving adres from my Electrum BTC wallet and I now can see the "missing" coins.
When starting ElectrumSV I get a message "This wallet is watching-only. This means you will not be able to spend Bitcoin SV with it. Make sure you own the seed phrase or the private keys, before you request Bitcoin SV to be sent to the wallet."
You didn't succeed yet. What you did is, you ust imported the (publicly available) addresses. You can only view the address. But you can not spend these coins. Anyone could create such a watch-only wallet. To be able to access / spend these coins, you either need to use your seed or the private keys. Please answer these questions: Is your Electrum BTC wallet maybe 2FA?
If your wallet is not 2FA, did you maybe use seed from some other wallet and import it to Electrum BTC?
|
|
|
|
You indicated 1MB was ok. I put why and used absurdo reducto, to show no its not necessarily ok. I proved my pint of view by pointing out 1KB is too small and 10TB is to big.
why is 1MB the most "secure". Because you assert it?
No, what you did was claiming that bigger blocks are more secure. You still didn't give a single valid argument for that claim. You made a (stupid) assumption without any proof / argument. My point was at you made a false equivalence. you said and I quote Segwit is necessary for further scaling, yes. But bigger blocks are not.
There are way better scaling options available than just increasing the blocksize, therefore it is not necessary (not saying slightly increased blocksize would hurt BTC). You failed to address there are different types of scaling. You made the false equivalence of segwit LN scaling and On chain scaling, which are completely different things. Then you went without any reason to say because you have LN you don't really need the onchain scaling. Did you even read the post you have replied to ? I said you don't need to increase the blocksize.
Never said that you shouldn't under any circumstances. Neither did i said that purely off-chain is the best solution.
On-chain scaling solutions are good, as long as it's not about purely increasing the blocksize.
I don't know whether you simply overlooked it, or maybe didn't understand it. But there are other on-chain scaling solutions than increasing the blocksize (which btw has nothing to do with scaling, blocksize increase is just postponing the problem and creating new ones). I agree though there must be some increase in blocksize.
Must? No. Can? Small increase maybe, but not necessary at all.. |
|
|
|
It has been disabled in the whole forum because it was being used for DDoS attacks.
And i already wondered why it has been disabled.. But shouldn't it be possible to prevent DoS attacks by allowing stats to be viewed by members of this forum only + rate limit (e.g. once every 10 minutes) ? Or another approach could be to slowly update each user statistic, then not generating it on-the-fly but showing the cashed version + updating it weekly ? I'd also love to have this feature available again. |
|
|
|
After one day of surfing my CCleaner is delete close to 1GB of data, that include cache, tracking cookies, browsing history...
But the majority of these 1GB of data surely wasn't browser ? The default setting for firefox is to keep max. 50 MB of data in the cache. Other browser have a similar limit. I am not sure whether browsing history and cookies count towards this, but this shouldn't be more than 1MB anyway. You might want to check what CCleaner is deleting (besides cached browser data) from your computer  |
|
|
|
So I dont have to worry about that since that address will be the same :-)
Your addresses are generated by your private keys. And your private keys are derived from the seed which is 'held' by your wallet.dat file. So yes. If you use the same wallet file with the new versions, your addresses will be the same. Just make sure to backup your wallet.dat (if you don't have a backup yet) before installing the new version (just in case). |
|
|
|
|
Show Posts
