|
There is an assumption that Bitcoiners wants decentralization. That is false, most of them are in it for the money unfortunately. When you're in it for the gains, you think less about the other intrinsic benefits that Bitcoin offers.
Pin this on the centralized services because that is the first point of contact for many and they stop right there. If you truly want them to take control of their own funds, we have to abandon the regulations and the licensed exchange and services. We all know that is not happening anytime soon.
|
|
|
|
I had various issues with the Snap package of Bitcoin Core in my Ubuntu LTS 22.04.x, particularly it didn't work properly with Tor installed and running. I think it was when Bitcoin Core 23 or 24 was the current version. I could pinpoint the issue that the snap package wasn't configured properly but I lacked the knowledge to fix this Snap quirk.
Maybe the current Snap package is fine, but back then I simply installed Bitcoin Core from the tarball and all was fine and working smoothly.
Was it a connection issue, or a data directory issue? I just started running a few nodes on Ubuntu via Snap and all was okay. Did the logs say anything?
@OP Snap configures everything for you and you just need to run the app. If not, then you just have to navigate to the snap/bin folder and execute it. A default data dir will be in ~/snap/bitcoin-core/common/.bitcoin |
|
|
|
Do note LoyceV reply before mine as I think that it's an interesting path to explore if you're willing to. I recommend the second approach (VPS with OpenVPN) and you can follow this[1] guide in order to have it up and running.
How about a VPN with port forwarding (or a cheap VPS with OpenVPN installed)?
Most well regarded VPN providers - such as Mullvad or IVPN - have removed the ability to do port forwarding. Proton still allows it[1] but you have to be a paid subscriber and you also get the port chosen by the program and you have to change it each time you restart the VPN connection. Considering that I personally do not trust other VPN providers, my recommendation would be the second option (VPS with OpenVPN installed). Generally VPN over VPS is rather slow, and also more expensive with insufficient benefits to the network. Instead of having one hop, data goes through your VPS and then to your computer. Cheap ones are generally quite slow and likely wouldn't have sufficient bandwidth for a very large node. 1TB upload is probably not very sufficient if you have a VPN running through it and nodes connecting to it. It shouldn't be an issue if you're unable to accept inbound connections. If you want an easy to setup and a free solution, then you can route it through Tor. |
|
|
|
|
You don't have to. During the initialization, if Bitcoin Core doesn't detect a data directory then it would prompt the user to specify a data directory. Else, it would automatically create a data directory for you in the default data directory path.
|
|
|
|
If I understand you well, you think from a state/government's perspective it will never make sense to allow non-KYC mixers, because a hard KYC requisite is the only way to be able to stop cybercrime. I believe that this is not true. First I would like to refer again to 1miau's text about the dangers of KYC. If the State really wants to protect us from crime, why does he provide a gift to criminals -- lots of personal data stored on thousands of servers -- and a big risk for most people because identity theft is a growing problem, unlike most other types of crime which are declining?
Correct, KYC doesn't stop money laundering or terrorist financing. However, KYC does make it harder by the logic of requiring the users to identify themselves to transmit funds. That by itself provides them with the ability to track and otherwise shutdown many crime syndicates and ensures that those who are regulated are accountable of their operations. If governments cares about your privacy, then the world would be pretty different today; Edward Snowden wouldn't have anything to share, there wouldn't be NSA, significant number of terrorist attacks wouldn't be twarted, etc. It is far easier to just impose a blanket ban than a soft KYC, which doesn't benefit the community either. Identity theft is a whole other topic; that has to do with the multitude of mismanagement of individual organisations rather than the government. GDPR and other similar laws are enacted precisely to tackle this problem. If done properly, KYC is not an issue with proper data security and governance and this shouldn't be the reason why we shy away from KYC; organizations should do better to protect our personal data. FWIW, I've had the opportunity to see how data governance works in competent organizations and I don't see how identity theft would be a problem for them, as opposed to certain less competent companies. There is an important principle in law which is the principle of Proportionality. If a basic human right of a citizen is limited by a law, the limitation has to be justified. Privacy, which includes that nobody, not even the State, should see what I'm buying with my cryptocurrencies, can be seen as such a basic human right. If a mixer ban is ineffective because it could even result in better possibilities for criminals to launder their funds, then how can such a ban be justified? You can expect proportionality to be thrown out in court for cases involving surveillance or national security, as historically seen by v. NSA for surveillance related lawsuits. A ban on conventional mixers doesn't result in better opportunities for criminals to launder their funds; atomic swaps or other anonymizing methods were always available to all and it is widely and easily accessible for everyone. Banning these centralized mixers never really increased or otherwise exacerbated the rates of money laundering, decentralized mixers has always been preferred as opposed to centralized mixers. Even for the average Joe, this is the way to go. For the record, I'm not advocating against privacy. Giving basic rights to the citizens seems to be detrimental in the eyes of the government and if they are able to make money laundering harder, then I don't think they would be reversing their decisions anytime soon. The problem in my opinion is often that law enforcement authorities still don't understand the whole possibilities of crypto. I doubt lots of them have heard about atomic swaps, perhaps some more about CoinJoins, but too few. If they don't know that their measures are ineffective they will try to continue the traditional way - more restrictions, more KYC obligations. So it's necessary for crypto advocates to educate them that this is ineffective and they should concentrate on other methods. Like they do when investigating money laundering with cash. And of course my "minimal cooperation" proposal for mixers comes into play here. But this cooperation probably has to include the freezing of funds.
Lawmakers might not, but they probably wouldn't care. However, inaction is seen as incompetence. KYC and AML policies has resulted in banks being able to detect and stop these transactions. These are policies proven effective in the real world, and whenever it seems to fail, they punish the banks and smack them with a lawsuit. I bet this would happen if you were to legalize mixers. My question is: How do you answer the points about how criminal proceeds has been funnelled over through mixers, and the steps taken towards stemming them. Given that these aren't detectable, save for the large ones, how should we ensure that the principles of Bitcoin is upheld (no censorship, fungibility, etc). If we were to continue with mixers and lawmakers discovers that criminal proceeds were to be funnelled through the mixer, then would the mixer be liable (and thereby should the owners be shouldering responsibilities) or should we just blame it on the privacy restrictions that affects how a mixer can conduct due diligence? If not, then why should banks be treated any differently than them? I think that this topic has brought up numerous points about how privacy is important, and how we should balance the importance of privacy and stemming the funds from dubious origins. However, I personally don't think regulating mixers would be the way to go. It would be difficult to try to convince them otherwise, and a waste of effort because it would inevitably result in draconian restrictions and regulations if it happens. Keeping it decentralized and difficult to shutdown makes the most sense. |
|
|
|
With blockchain-based currency like Bitcoin, governments don't control it from code to network, and they know they can not have full control on these blockchains and money flows in and out those blockchains.
You can't, but it is also possible to make a centralized Blockchain though that will be quite a bit different in function from Bitcoin. They would likely differ in quite a few areas as compared to Bitcoin to try to mimic their fiat system. If that happens, then it would possibly be recognized as a legal tender. Else, registering your wallet to regulate Bitcoin doesn't seem to be as good of an idea. |
|
|
|
Bitcoin is a godsend to avoid all these problems with international payments. There is no need for privacy, as the domain name registration is a matter of public record. I am happy to declare everything to the taxation authorities, and to exploit any legal options to reduce my tax bill on the transaction.
That's great. Privacy goes beyond the topic about engaging in illicit activity but it also concerns about the ability for your government to collect metadata on you, and for a thirdparty to be able to intrude into your privacy. If this does not concern you, then we can continue in this tangent. but it seems to be the major excuse that is used by governments to restrict and reduce the use of Bitcoin. My point is that by recording a wallet to allow the government to monitor activities, it may open up many opportunities, and avoid the draconian restrictions that they would like to impose. There is no need for the government to know your private keys, and access to them should only be granted following a high court order. This should only be granted following conviction for a criminal activity in my opinion. I find it better to take advantage of government incentives, and to maximise income and minimise costs. This is better than fighting, and winning pyrrhic victories.
Not exactly. Government prefers fiat because they are essentially controlling it; they can enact any exchange policies to influence the prices by printing more money or encouraging saving, etc. If the majority of the population are using crypto, then they don't have as much power to do it anymore. There is a reason why the restrictions exist and that is to make it prohibitively expensive for citizens to do something that doesn't align with the government. And no, I'm not talking about any illegal activities; capital control is an example that comes to mind. Again, Bitcoin advocates having your own bank which wouldn't align with your point about forfeiting your Bitcoins if there is a court order. Allowing them control over your coins is like Paypal or central banks (peep Cyprus's crisis in 2013) all over again. If forfeiting your rights to the government is the way to go, then we probably wouldn't have a decentralized network in the first place. Just let them create their own with absolutely zero privacy. It goes far beyond the problem about AML, KYC or any other illicit activities that comes with a pseudonymous system. |
|
|
|
I believe that even in the jurisdiction where already a hard KYC policy exists, a move back is possible if there are political changes. This will take some time, but perhaps at least we can stop them at the status quo. I've written elsewhere that there were actually successful fights of pro-privacy groups in several countries, including for example Germany where a project to store all phone connection data was stopped some years ago (this is for me an example of a "neutral" government). Perhaps in the EU there is still a way to stop AMLD6, even if the likelihood is quite low.
KYC policy exists for a good reason; to reduce the likelihood of money laundering going undetected and for them to stem it right when the transfer is taking place. It is absolutely necessary, because there is no way platforms would take the initiative to stop these transfers or perform their due diligence to prevent the transfers from taking place on the platform. Generally, you need to have the data (ie. their real identity) to be able to link and investigate possible money laundering. There is no way around this in the area. There are however other jurisdictions where some KYC-free crypto services are still possible (Switzerland, for example, or Argentina if the service's revenue is lower than a certain threshold). People should be encouraged to defend the status quo in these countries, or even roll back some recent laws (in Argentina's case, the KYC requirement for bigger services was introduced very recently to comply with the FATF travel rule).
Until this change reaches the point where FATF itself (and thus the majority of major countries) could be influenced to change their policies it will take some time, of course. Some will say it's impossible. However FATF is not a lawmaking body. The groundwork in every country to limit anti-privacy excesses is much more important.
Swiss KYC is quite active, and even if there is no KYC for most services, anything that involves money transfers be it deposits or withdrawal will reveal some information about the customer. If you're talking about normal crypto, for eg. POS payments, services payments, then KYC is of course not necessary. It is prevalent where there is a chance for money laundering to take place. Just for completeness, not to disregard any of your points:
~
They actually were charged with three things: money laundering, sanctions evasion and money transmitter. Having read some material about both the Samourai and the Tornado Cash cases, I believe the both first accusations cannot be justified without the "money transmitter" accusation or, alternatively, evidence that they have cooperated with criminal groups. If what they said publicly is all they have, however, evidence is very thin.
Thanks. Money transmitter is not illegal, but being an unlicensed money transmitter would be. They lack the capabilities to conduct the appropriate due diligence, evidently and they can potentially aid money launderers in achieving what they want. In the eyes of the government, having the threat of doing so is a good enough reason to charge them with it. Banks, and all of the financial institutions are also compliant to all of the laws and regulations as stated. Now, just to further our discussion a little: I'd like to pose this question as well. Let's say the community wants to see a legalized mixer, but the key benefits of a mixer is maintained (No KYC, no logs, no freezing of coins, and let's say minimal cooperation with the authorities (see protonmail). How would they operate considering all of the AML/KYC laws? I don't think a pushback from these measures are possible unless met with an alternative that is equally effective at stopping money laundering and terrorist financing. |
|
|
|
Firstly, I don't value Bitcoin in fiat, but in its purchasing power. I may need to relate that to a fiat currency, but that is really just to acquire it through an exchange. Even when you do value it in fiat, then it is international, so it is not just one fiat currency that is being used. Interestingly, its purchasing ability may vary from country to country - hence the opportunities for arbitrage via local exchanges.
Bitcoin should be treated as a currency, the fact that arbitrage opportunities or any profit making opportunities should be considered independently of its core function. What I am suggesting is that people who are not trying to evade taxes, or indulge in activities that some may consider undesirable, may not have privacy as the primary attribute of Bitcoin. If you use an exchange with KYC, then you are a long way closer to my suggestion. One might even say that you have already embraced it.
Would it really make you less secure if the database was hacked? Would it really leave you vulnerable to a £50 wrench attack ( price adjusted for inflation )? At least it make make any perpetrators easier to discover.
You underestimate the importance of privacy to most. The reason why privacy appears to be a smaller issue than it really is would be because of the lack of education and knowledge. Privacy is important and a fundamental human right. If it doesn't seem to be important to you, then I believe fiat would be far easier for you to use. There is also an assumption that people who want privacy are necessarily people who transact in illicit funds or are involved in them. This is false. Remember that Bitcoin is pseudonymous , so most of the info is easy to discover anyway. If you really want to indulge in illegal activities, use the currencies of the elite. These are high value gold coins such as the English Britannia and the Sovereign ( the coin, not the woke prince). They are exempt from VAT, gains tax and inheritance tax in the UK, so you can work out how keen the government really is to stop fraud and money laundering.
I just feel that registering your wallet with the government doesn't really give anything away, and may lead to simplification of the use of Bitcoin.
Pseudonymous != Zero Privacy. If you think someone can easily track your transactions, then you do not value privacy and you should absolutely declare all of your transactions and every single one of your activity to the government. Bitcoin is designed to be pseudonymous, and it cannot be done without the users intentionally taking steps to ensure this. Issues should not revolve about whataboutism but should focus on what we should achieve with our privacy. Of course you may elect to have an undeclared second wallet, and that would be your choice
Don't you think this defeats the purpose of your suggestion? |
|
|
|
Well, running a commercial mixer for example in Europe under MiCa would be a CASP service ("crypto-asset service provider"). And these services are regulated.
So the "status quo" (at least if we look at "legal" options for providers of mixing services, not necessarily for users) is not very satisfying. The problem is that if the trend doesn't change then it will be increasingly difficult to offer mixers legally in most countries.
Unfortunately, coming under regulations means KYC is necessary, for the current regulations. This is to ensure absolutely 0 illicit transactions are going through. There is no way whatsoever that any country will come up with a middle-ground because there would still be illicit transactions going through, and that is unacceptable for any authorities. Samourai was actually charged with money laundering, instead of being an unregistered money transmitter. As mentioned, the authorities would set a bar so high, that it would appear that they are valuing your privacy but is in effect having full knowledge and control of your privacy. None of us should trust them with their words, we should've learned the lesson by now. I disagree with the point about the status quo. Having privacy means that you should be able to use basic tools to protect your own, you should be able to use Tor and ensure that there is no privacy leakage during the mixing process. What I imagine legal mixers to be like would be having your coins mixed, but the tracing of the transactions to be readily available to the authorities and their ability to halt and identify any users at will. If there is ever a regulated mixer, I doubt the community would use it. The community is fine without having a government honeypot mixer.
To further expand on this point: - From the government perspective, their argument for shutting down mixers are always because of money laundering or the evidence of money laundering. It is unlike exchanges where they are required to have a license to operate. In a similar vein, exchanges are granted the license because they can prove that their platform has the ability to track, freeze and report suspicious transactions because of the stringent KYC/AML policies. This is unlike the concept of mixers where users are supposed to be anonymous, and privacy should be guaranteed. Any subpoenas will take too long to serve and that logically mixers would find that most of them should be challenged before freezing coins, or handing over information -> See Protonmail for example. Hence, this would probably never happen and doesn't fit what the community would want to see in a mixer. - An ideal solution that I can see for a mixer to exist and legalized is that the mixer should be able to conduct KYC/AML on their users, flag suspicious transactions to the authorities, and be ordered to turn over data at will. This essentially functions like a bank, but that is the final "goal" of the government to defeat and make money laundering harder. The argument within the thread mostly points to the ideal solution being that privacy conscious users should be knowledgeable enough to use decentralized mixers, which are sufficient to break the link and that centralized mixers being both legalized and trustable to be a far fetched dream. This argument is a bit weird in my opinion. We have had several examples of mixers that seemed to run completely fine and seemed to protect their users' privacy (ChipMixer for example) but in the end, when they were shut down, it was revealed that their privacy policy was much less satisfying as advertised and that they stored a lot of users' data actually. And they were not exactly known to cooperate with authorities. So I think you can't deduce that a "minimally-cooperating" mixer like I described would also compromise the users' privacy. I personally would even trust a mixer more with clear rules (in the style I wrote) than one that promises that everything will be fine but could be a honeypot, selling data to chain analysis companies or hackers, or even be incompetently run (like probably in the Chipmixer case).
Has it ever been established that ChipMixer stored logs? I don't recall them doing so, other than the fact that they retained the keys, which doesn't lead to the loss of privacy since it's quite obvious on-chain just that the connection is difficult to establish. All the more reason why I don't trust centralized mixers. I think there is a big difference between the delaying or "freezing" of funds coming directly from a heist on one hand, which I would accept (as written in the last post), and privacy violations on the other hand, e.g. if the mixer records IP addresses and connections between the mixed funds. The latter is something I would not accept when using a mixer.
I don't think both should be acceptable, or we are setting the bar too low and giving up too much of our rights. Delaying or freezing the funds would be unfair for the users, Bitcoin is fungible and for the mixer to be the judge of whether your funds are clean or not is not acceptable at all. This would be akin to exchange arbitrarily freezing funds of their users. This is not something that I can get behind. If mixers were to freeze or delay funds, then they would probably collect whatever data you have to prove either your innocence or if you're guilty. Either doesn't bode well for Bitcoin. Of course if you distrust any state authority no matter what then "no cooperation" is the only thing you can accept, I totally agree with that. But for me there are neutral governments and evil governments.
For the sake of discussion, I'm interested in knowing the neutral governments that supports their citizens to retain their own privacy. Generally, national security laws covers that part and doesn't need justification to obtain user data as long as it poses an inherent threat to the government. |
|
|
|
|
What are they going to do if people don't register your addresses with them? Are they going to stop you from using Bitcoin? They probably can't and they can't do anything about it. They have no way of knowing what addresses you have if they don't register it and if you do; hey, I'll let you track me however much you want!
Surrendering your privacy to the government goes against the very basis of Bitcoin, if you want to do this, then using fiat would probably be more efficient. The day that people willingly do this is when Bitcoin fails.
|
|
|
|
However, in my opinion, there is a large area beween total non-cooperation up to total cooperation (e.g. let's think about a "KYC mixer") a mixer can do. And I would be comfortable with a mixer who cooperates in some ways as long as they don't compromise the users' privacy, if this would be a condition for the mixer to become legal in a country.
Any form of cooperation or agreement should be construed as a total agreement. Mixers achieves the exact opposite of what the government wants; total surveillance, zero privacy, etc. It goes far more than just combating money laundering, China didn't want anything to do with Bitcoin because it results in huge capital outflows, etc. Governments always and will always put themselves first before your rights. IMO, most people who are paranoid about privacy will never accept any mixer that cooperates, or otherwise allows governments to dictate their service. So long as the mixers are within any jurisdiction, US for example; there are covert and overt means for the authorities to get the data that they want. Bottom line is that if there is a mixer that is approved by the government, the large majority would think of it as a honeypot. In that regard, it is not necessary for us to change the status quo at the moment. Mixers can still be used and most jurisdiction would never outlaw it. The fungibility problem is indeed a difficult one. I would accept a very short, temporary loss of fungibility of a certain set of coins if the services have clear rules to retain funds in some situations. I would for example accept the following rule in a mixer's ToS: if someone deposits the coins on the mixer, and there is a direct and clear link to funds which were recently (e.g. in the last 24 hours) stolen, without other funds mixed in, then coins can be retained. But a mixer freezing even coins of hacks commited months ago would not have my approval.
Fungibility should not be compromised, IMO and coins probably wouldn't be moved that quickly regardless. The pre-conditions above makes it such that it is easy to circumvent to introduce plausible deniability no matter what. Mixers would probably be freezing more funds, and perhaps even liberally to toe the line with the law enforcement. Any money laundering that goes through them would be subjected to regulatory actions - Even bankers have to go to jail and banks are fined. |
|
|
|
Would splitting coins into multiple single-sig wallets may be more secure than having all on one multi-sig? For example splitting my coins into 10 single-sig wallets vs all in one multi-sig?
Depends on how you think the security can be weakened. If you think that a random hacker cannot exhaustively search the key space and can randomly stumble upon your private key, then splitting it into 10 would be the better idea. If you think that the vulnerability would affect each of the addresses and their key pair, then neither would be effective. The chances of it happening is exceedingly low. Maintaining 10 separate seeds and addresses is too much of a hassle to justify any possible security improvement, for which there is practically close to none. Most people confidently keeps their funds without any splitting whatsoever. |
|
|
|
|
My view of mixers is that it is a double-edged sword that has no good solution. I agree that banning or cracking down on mixers is a futile endeavour, but it doesn't mean that whatever the government is doing is wrong, nor is it right.
The day that your mixers cooperates with the government is a critical failure of what mixers is trying to do. Your mixers should provide a single function of mixing your coins, and removing the links between the previous coins and the current coins. If they have any say otherwise, lets say they want to freeze your coins because it seems to be from a dubious origin, then it becomes non-fungible and your privacy is impacted. Mixers, nor any party for that matter should never freezing their customer's funds and should only carry out its purpose only. Censorship and funds seizure goes against the ethos of Bitcoin. I personally would not want any mixers who is dealing with my funds to be able to freeze it for no good reason, nor have any form of cooperation with any authorities; it becomes a rabbit hole for, let's say if they cooperate to track down political dissents, sensitive individuals, capital control, etc. Even if the mixers doesn't want to cooperate, there is no choice because they are a registered entity within their jurisdiction.
Government cracks down on mixers because they shoot at anything that is tainted with illicit activities. From a government perspective, it is rightfully so; mixers are always off-shore and out of their jurisdiction. If they have an opportunity to do something, you bet that they will close it down. Having them closed doesn't mean that it is bad, it just exposes the fact that centralized mixers are not infallible and we should be moving off to alternatives which cannot be tracked nor influenced by authorities.
|
|
|
|
I had no idea of this before now, good I came across this post now I’ll love to know more.
Is there a reason for obscuring the address, is it for security reasons or something else. And I’m seeing some of the legends post with something like a code I’ll like to know more.
Please can someone give me a detailed explanation
FirstBits was a method used to shorten the address, and you can give someone lets say the first 10 characters and they can identify your address. The way this works is that the service will label each address with its unique prefix; For example, if my address is 1abcdefg, and there is already 3 other addresses that is given the FirstBits of 1a, 1ab, 1abc then I'll get 1abcd as my first bits. The caveat of this is that it'll still be pretty ambiguous as the number of unique addresses on the blockchain grows. In addition, this also encourages address reuse which is more than enough of a reason this doesn't have much utility nowadays. Note that it is never an official implementation but it was a nifty service back in the days. |
|
|
|
|
In short, there is no reason for someone to choose MultiSig over P2WPKH because it would be insecure in the future; they are somewhat providing the same level of security. To answer that, you have to understand what makes up a valid transaction. Some of the responses above are strictly assuming that the redeem script can become vulnerable if and only if addresses can easily be cracked, but that is hardly a concern at all.
Given that we've already established pre-image of 160bit hashes to be difficult and infeasible, there is really no reason why you would care about the security of the individual keys. If you were to get an attack, a pre-image of your hash would be used to attack rather than exhausting the entire key space of your keys. For P2WSH, it would be 256bits and P2PWKH is 160 bits, which is not a sufficient security increase. While on the topic, even if you use more keys in your locking script, your security level assumes the security of your hash of your redeem script; used to generate your address.
Any rational attacker would not bruteforce individual seeds because it would be too inefficient, but finding the pre-images of hashes that would hash to the different addresses would naturally be more efficient. There is also no reason to believe that there would be flaws in the cryptography that we're using; it won't be cracked overnight and marginal speedups would be more reasonable.
|
|
|
|
The Python code is extremely simple and since it is from: https://github.com/trezor/python-mnemonici assumed (wrongly?) that it is the way Trezor wallets generate their Bip39 mnemonic: >>>from mnemonic import Mnemonic >>>mnemo = Mnemonic("english") >>>words = mnemo.generate(strength=128) >>>print(words) Is it safe to use? Thanks:) The code is from: https://github.com/trezor/python-mnemonic/blob/master/src/mnemonic/mnemonic.py. Looks okay to me, but I'm not exactly a security researcher. Your code looks okay assuming that the code is working as intended. The link is very interesting indeed. Here is a script:
import random
from datetime import datetime
random.seed(datetime.now().timestamp())
T=[]
for i in range(127):
x=random.random()
if x<0.5:
T.append(0)
else:
T.append(1)
print(T)
Not sure if it is better than the previous method though...
Edit: Please do not use anything that can be easily determined as seed when you're trying to generate something random. Use the secrets module, and if you're unsure about how exactly CSPRNG should be implemented, don't touch it or you might inadvertently generate something insecure. If you're unsure about the technicalities behind generating a Bitcoin address, you should also refrain from implementing your own. Any errors can result in you being unable to access your funds. |
|
|
|
Obviously it is recommended that you only do this inside your local network. Do not attempt to make a wallet software connect to your node from the public internet, because who knows how many entities are listening in on the encrypted communication the wallet is sending to and from the node, via the many network cables connecting your computer to that server.
RPC is not encrypted, the support for SSL was removed quite a while ago. Even if you're connecting locally, I advise having a secure tunnel directly to the computer rather than connecting through RPC in cleartext. |
|
|
|
1) Generate (and carefully save) a BIP39 mnemonic code (offline) using this: https://github.com/trezor/python-mnemonicIndeed, Electrum wallet doesn't generate Bip39 mnemonic and i would prefer to have one. I tested the few lines of code and it worked. Still there is something i don't understand: entropy = mnemo.to_entropy(words) I guess the aim of this line is to check the randomness of the list of words. However, i got this: >>> entropy = mnemo.to_entropy(words) >>> entropy bytearray(b'\x18\xe2\xa9=\x82\xd4$\x915D\x98....................................\xb4\x7f\x02\x90f\xdf\x8b') >>> How this should be understood? The entropy is the raw bytes before it was converted into your mnemonics. It is not useful to you. Entropy is random, and you cannot exactly measure randomness, or at least to any accurate extent. Seemingly random strings can be deterministic and vice-versa. You can safely stop at generating the mnemonics without going further. I haven't seen the code yet and I can't comment much on it. I would recommend just using another wallet that generates BIP39 instead of going with a less well-known script, or just go with Electrum. No downsides there. |
|
|
|
Good question, and the answer is simple, No, you don't have to download the entire blockchain again as you used the word again which means you have already downloaded let's say at some X block you have downloaded and synchronized all. And after that your machines shut down by power outage or any other reason and don't opens for like 1 or 2 days even for 1 hours let's say.
The blocks made after those X blocks will be the ones, downloaded and synchrinze in order to start a full node again. Just like when a new person plans to start a node he have to download all of the previous blockchain data.
That is provided that there is no database corruption, which can be quite common for Bitcoin Core which are in the midst of writing to disk. |
|
|
|
|
Show Posts
