Is there any reason bitcoind doesn't have this?  Right now, when you unlock the wallet with 'walletpassphrase' command, you have to enter the password on the same line in plain text.  If bash history is enabled on the server (which is default on all servers), the wallet password then ends up in a plain text file for all to see.

Are there any plans to implement the same type of password input as standard SSH, mySQL, etc.?  So you could type "walletpassphrase 30" for example instead, and next line prompts for password without any keyboard input being shown in the terminal screen.  Is that on the horizon at all?

Love it.  "Ohhh, it's ok that I don't know what I'm doing.  It's not my money, I'm just responsible for it". 

I would imagine many people use SSSS (http://point-at-infinity.org/ssss/), especially those with sites that have a live wallet, correct?  Basically, your private key / wallet password is split up into multiple shares, and spread around to multiple servers.

I'm curious, is there a common method / practice to securely retrieve the shares from their source?  Obviously, don't store the location of each share on one server, and spread the location amongst the servers as well.  Maybe encrypt the shares with multiple iterations of PGP or AES256.  Maybe don't even store the share in encrypted format, and instead use a mathematical algorithm to generate it?  Then obviously, lock it down by IP address, etc.

Anyway, say you have a live wallet server, and it needs to unlock to complete a send, hence it needs T shares.  My only concern is, if the wallet server can get access to all T shares needed, then so can hackers.  What's the best way for the live wallet server to retrieve those shares from the remote servers?  Is there any standard procedure used, or not really, and I'm on my own to figure it out?

Thanks in advance!

If you ever change your mind about Wordpress, let me know.  As I showed in the examples, have lots of experience in-line with what you're trying to do, and can quite quickly, easily and professionally get you setup with a high-end operation.

Couple projects just finishing, couple new ones starting, and always have time for new clients to take care of with the quality you deserve.

For those wondering, we'll generally run on bitcoind install unless project requires otherwise.  It's the most secure, efficient, and flexible.  Plus there's no merchant fees, limitations or anything you need to worry about.  Don't worry, loads of great security in place, including automated flush functionality, checks for suspicious activity, and more that I can't get into publicly.

If anyone is looking to setup a quality operation at a fair price, drop me a line!

Quick bump.  Always looking for new clients, and to help expand the bitcoin / crypto-currency economy.

As a quick note, our software has been a) pen tested by professional hackers with decades of experience, and b) hacked to shreds in real-world environments by, may I say, very intelligent hackers.  Some of the methods they used were quite innovative.  We do also work with a couple highly intelligent hackers, and can offer security audits if desired.  With the audits, we can either provide full server information and a standard audit is performed, or give no server information and simulate a real-world attack.

This is actually why I've taken so long to begin offering bitcoin related development services.  We've had several months of relative calm now, but without question are still getting hammered by hackers on an hourly basis, and we're holding up just fine.  Although security is never 100%, I've personally been through the gauntlet, and you can rest assured that your operation will be pretty safe with Envrin Group.

If anyone needs anything done, please don't hesitate to drop me a PM.  Thanks!

Bump for quality!

Yep, new crypto-currencies / alt-coins are no problem as well.  Just let me know what you need.

After the past 14 months of developing crypto-currency based operations, Envrin Group is extremely pleased and excited to begin offering our professional development services to the public.  We have an excellent infrastructure with various ready-to-go packages for crypto-currency operations, including quality integration with daemons such as bitcoind, exchange integrations, arbitrage, trading, and more.

Your imagination is the only limit, so what type of site have you been dreaming about?  Maybe you want to start your own exchange, a trading platform / bot, a membership based service with recurring payments, a directory site, eCommerce platform, debit card solution, and anything else.  The sky's the limit, and it's our goal to turn your visions into a reality.

Don't settle for an amateur solution that's been hacked together using bits and pieces from around the internet.  With Envrin Group you know all code has been developed centrally in-house, can be easily modified for your specific needs, and you will receive nothing but the highest quality.  We thrive on long-term relationships that last months if not years, so you can rest assured we will always be around to handle anything you need.

Not only with the under-the-hood functionality of your site be of the highest quality and secure, but it will also look highly professional.  Take a look at our Theme Library to see a list of themes we currently have integrated, and can be deployed with one-click.  You can also pick any professional HTML / CSS theme off the internet (eg. ThemeForest), and our software engineers will be happy to integrate it for you.  Alternatively, you can go with a custom web design, as our theme engine is very easy to use for any web designer.

Please take a look at our web site at:


If you have any questions, or would like a free consultation to discuss your needs, please feel free to contact us at support@envrin.com or via Skype at envrin.group.  Thank you!

Just throwing this out there...

Bitcoin advertises itself as "be your own bank", which is somewhat misleading.  That is true, but only if you're running the bitcoind/qt client.  As we know though, most people just signup for one of the online wallet services / exchanges out there.  Problem with this is, you're not your own bank -- you're sharing the wallet.dat file with every other user of that service.

I know bitcoind allows multiple wallets, but they each require their own instance, and obviously running 300,000 instances of bitcoind isn't feasible.  Plus if that service offers automated withdrawals of BTC (most do), then that wallet password has to somehow, somewhere be accessible to the software / server, and that's no good.

Why not change it so each user of these services can actually get their own wallet.dat file on that server, with the password only known to them, and not stored anywhere?  Add a "createwallet" function into bitcoind, then build a routing table of sorts into it, which routes the requests to the appropriate wallet.dat file as they come in?

This way when someone wants to withdraw funds, they will login to whatever site, enter their withdraw request including wallet password, which then gets fired off to bitcoind, gets routed to their personal wallet.dat file, unlocks it for a few seconds, and sends them their money.  Wouldn't this alleviate the problem of someone hacking an exchange, and wiping like 4000 BTC?  Even if they got into the exchange's server, there would be say 200,000 wallet.dat files laying around, with absolutely no passwords stored anywhere?

Or am I off base, and don't know what I'm talking about?

https://bitcoin.org/en/download

Maybe they forgot to update the site, but looks like 0.8.6 is still the officially released version.  Instead of playing around with a beta version, I think I'll just hang tight, and wait for the core devel team to approve 0.9.0 for public release.

It's been a while, and can't see anything on the Bitcoin Foundation's blog about it.  Any idea when it's getting released?  And is it 100% confirmed we'll be able to store up to 80 bytes of data in a transaction?  That would be a god-send for us.

Really nice design, I like it.  Clean & concise, just what's needed for a successful operation.

All the best, and keep us updated on the launch!

Starting with Bitcoind v0.9, which will hopefully be released shortly, you'll be allowed to include up to 80 bytes of data in a transaction, which gets stored in the blockchain.

Same as they handle their traffic load -- load distribution.  They wouldn't have just one wallet that stores 1 billion+ addresses, same as they don't have one server that handles all their traffic.  They'd distribute the load amongst many wallets, which then feed into their OLTP databases.

@elbandi -- Thanks, that helped loads!


Don't worry, it's for legit purposes.  We've been hacked to hell and back ourselves, hence the reasoning for this.

Looking for a way to do this, and I'm assuming it requires hacking the bitcoind/-qt client.  Currently, there's functions such as "sendtoaddress" and "sendfrom" available in the bitcoind client.  What I need is ALL sends from the wallet to be automatically sent to one certain address, regardless of what address is given to those send functions.

For example, say I have an address ABC.  If sendtoaddress(XYC, 0.5) is executed on the wallet, I want the bitcoind client to send that 0.5 to ABC instead of XYZ.  I also need to send a quick HTTP request to a remote server before every transaction gets sent, get a response, and add that as a comment to the transaction upon sending.

I know this sounds sketchy, but it's actually legit, and being done for security reasons.  And we need this done within the bitcoind client itself, to make it more difficult for hackers to get into.  Any knowledge you can share on a way forward with this would be greatly appreciated.

Welcome to the forum!  I'm in the same boat as you, and am trouble to find threads to jump into and reply.