So the gist I'm getting is that the host OS is well-secured against bad actions taken against the guest, but not vice versa. Unidirectional security in exactly the wrong direction Oh well, it was worth a shot. Guess I'll be buying a cheap netbook just to run Armory, although Armory seems pretty resource-intensive for them to recommend running the offline client on a netbook. Has anyone had first-hand experience with this?
|
|
|
Specifically the sort of mid-security cool wallet that clients like Armory offer. I already have split-secret paper wallets for the "savings account" but I need something more accessible for more regular mid-grade purchases. I know a thing or two about a thing or two and would secure the VM holding private keys quite well - TrueCrypt full volume encryption on the guest OS and the virtual disk stored on a hardware-encrypted external USB that would only ever be plugged in when in use. No network adapters on the VM and so on. The only missing piece is I don't know enough about VMs from a security standpoint to know what new security vulnerabilities might be introduced - I'm not sure how much access the host PC has to the VM's RAM, for example, or if there is any way to limit that sort of vulnerability.
Thoughts?
|
|
|
YouTube is getting better by the day, guys…
YouTube is only doing that because it has to. You can thank dinosaur government and entertainment industry lobbying for that Taking down content when a copyright holder complains is what they *have to do* - auto-scanning the audio of all submitted content and comparing it to a massive library of known copyrighted materials with such poor sensitivity that they mistake a DnB remix of a song for the original... that's something they choose to do.
|
|
|
i tried to leave a comment on your blog but it didn't show up.
Ah, like a noob I forgot to check discussion settings on WordPress and still had "Comment author must have a previously approved comment" checked. Your comment has been approved and no one else should need approval now. Thanks for the heads up!
|
|
|
Wow, no end to the number of these I feel something undetected has happened to the site itself. Apparently it's some kind of Android-based malware, so my phone was probably the culprit. What's really embarrassing is that I'm one of the "Ease of Use" panelists at the Bitcoin 2013 conference next month and I was about to sing their praises for how much easier they've made things. It's always embarrassing to be the victim of theft I suppose, but everyone will lose some coins eventually, it's all about minimizing your losses. Thankfully I do keep the bulk of my coins in cold storage, I'd just taken a few too many coins in and hadn't sent them off to cold storage in way too long - an oversight I doubt I'll repeat after learning a $1,000 lesson.
|
|
|
Live and learn I guess. I've washed my pants with my physical leather wallet in them plenty of times, it was only a matter of time before I did the digital equivalent. I kind of wish I'd been more vigilant about keeping less cash in said wallet, but it happens. I've updated all my posted addresses, informed those who had the old ones saved, etc. Time to start being more careful about moving to cold storage again.
|
|
|
this is why you don't use online wallets.
Armory is your safest bet.
I usually only keep a little in there for convenience and keep the bulk of my coins in cold storage etc, but I got way too busy and ended up letting too much coin pile up. Keeping that many coins there was my error, but it still shouldn't happen. Maybe where bc.info is a service that stores peoples coins they could have an optional feature requiring email confirmation before sending more than a configurable amount? I won't feel bad if someone steals $50 because I screwed up, but this is too much.
|
|
|
Mother.... fucking...... thieves.... We really need to identify how the hell this is happening to people!
Well if it came from my phone, then I can tell you exactly where the malware came from, the only app I've installed in months is BitCare, because I needed a mining widget. I don't do much on my phone but make calls and such, I have a tablet for games et al and the blockchain app wasn't installed on the tablet.
|
|
|
a lot of these threads here and on reddit the last few days... common factor always seem to be a cell phone. I think its fair to say some cell phone malware is going around.
Well that's just lovely. Nice to know that memorizing those ridiculous passwords and buying a yubikey was worth it. Time to go print myself a paper wallet.
|
|
|
And the video just got pulled from YouTube for "copyright violation" despite the fact that the intro music is not, in fact, “Sail” by AWOLNATION but a CC-licensed remix thereof crated from CC-licensed samples provided by Red Bull Records themselves for an official Red Bull Records contest for which the results were required to be (wait for it) CC-licensed. A CC-licensed remix, might I add, that I obtained the permission of the author to use and actually paid for. YouTube is getting better by the day, guys…
It's ok, at least there's still the audio version...
|
|
|
I like this, very good! Keep it up! But one thing you need a bitcoin address on your site now and show your friend how to use them. Working on it. Dave W is a good guy and he's plenty bright but this is pretty far from his areas of expertise - I think we all know how long it can take to get folks warmed up to this sort of thing. I'm getting there.
|
|
|
Watching I'm at the part where you're talking about fees. WAY off High risk is more like 9% with $1 transaction and a 6 month rolling reserve of 10-20%.
Not to big of a deal, I think you said 3%
Making it a more clear choice that high risk merchants should accept btc
Yeah, the places I worked didn't really do business with merchants that risky so 5% is about where my experience caps out at. I wouldn't doubt they can go that high though and high risk merchants should definitely accept BTC. I think that's why it's seen such high adoption in the adult industry and (at least in my neck of the woods) taxi services.
|
|
|
http://codexnerdicus.com/podcast-episode-6-bitcoin/Update: YouTube, in their infinite wisdom, mis-identified the intro/outro music and threatened me with a copyright violation. I've taken down the video and put up a new copy without the in/out music, sorry it wasn't available for so long.
|
|
|
Hey everyone, I'm going to a G+ Hangout this morning, 9AM Pacific - sorry for the short notice! We'll be spending about an hour talking about Bitcoin and I'm bringing my brand new Butterfly Labs Jalapeno ASIC miner for show & tell. Care to join us? https://plus.google.com/events/c8a275p31etbo79ku9c4s2l5glg
|
|
|
This maybe a noob question. But if this is the first time you have ever opened the box, then why when you plugged it in for the first time (and it said drivers not found) why did you immediately know that you were missing generic USB drivers...(that you found "embarrassing")?
My first instinct when plugging in a new device and seeing drivers not found would be to start rummaging around in the box for a driver disk?
Also (not directed to the OP) what is the thinking behind shipping out free demo models before shipping out (or even giving a concrete shipping date) for orders that were paid in full 10 months ago?
My guess is because he is using the FPGA Single already and ran into it before. You have to go through the same thing with the USB drivers for the latest versions of cgminer, so I would assume the same is true for bfgminer. Ding Ding Ding, We have a winner! The Jalapeno is now sitting right next to my good old FPGA Single.
|
|
|
|