Sorry for this probably dumb question, is the public address and the personal key, in general, all I need to spend or receive BTs (plus a wallet of course)?
Private key, yes. I installed Electrum and tried to use the key of "multibit.key" by entering it into "Sweep private keys/Enter private keys" believing that is needed to be able to fully use that wallet (spend and receive BTC).
However, the key code I found in the old "multibit.key" is not accepted (it is 53 characters long). Am I doing something wrong here?
Should have 51 or 52 characters, does it start with a 5, L or K? In an attempt to install the long discontinued Multibit, I found an old installer that I attempted to use on my Win10 (64 bit) PC. It asks right away for Java, which I subsequently installed. However, after installing Java, the Multibit installer still claims no Java is installed and I am therefore unable to complete the Multibit installation.
Can someone point me in the right direction on what to do? If I can't install Multibit, what other wallets could I use accepting my key(s)?
I read somewhere that I may have to try another wallet that accepts the code/key of my old "multibit.key" and then transfer to Electrum?!?
You shouldn't. The older Multibit wallets likely won't allow you to transfer the funds. a) The key I used to receive BTC and the key within the "Multibit.key" should be in theory all I need to access/spend my BTCs (which I mined in 2014)?
Yes. You should be able to extract is relatively easily if it's unencrypted. The format should have your addresses listed in one column and the private keys in the other, assuming multibit classic. b) Assuming those 2 keys is all I need, what wallet do you suggest (since Multibit is discontinued) to "migrate" using these two keys?
Electrum. You only need your private keys. |
|
|
|
|
Possibly cents. It's important to note that opening or closing a channel would incur some fees for it's an onchain transaction. My funding transactions are always executed at lower fees so my recent funding transaction was about $0.1 or so for $100 of TX. The fees for transacting within the Lightning network is practically negligible.
IMO, if you really want to determine a fair fee, you have to evaluate the costs per transaction in terms of the resources used. For LNs, they are usually fairly low cost to run as compared to on-chain transactions. As such, if you're talking in the context of LN, then the fair fee to charge is probably just several cents.
On-Chain transactions are out of the question and I believe you're not talking about it in this thread.
|
|
|
|
I find the line of reasoning very similar to how people on reddit say "don't worry the source code is open and firmware is open" [and just assume it's audited by experts].
Also just wanted to throw in there that if there was perfect time for Ledger to do an exit (or not even necessarily exit) scam it would be now given the high price of BTC and probably the lowest ever approval rating for the company. Even if 1 or 2 out of every 100 wallets lose funds it would be hard to prove fraud. They could probably get away with it. I doubt they will do something like that, but I'm just saying.
Well, then I guess you're better off with airgapped storage. It really boils down to if you trust the HW wallet manufacturer in this case, if you don't want to trust anyone else. At the same time, you have to make the same assumption about your cold storage wallet as well as the OS. I wouldn't say that it's hard to prove. I'll be able to see the various commits to the github page if I were watching it and it makes inspecting the code before updates much easier. Let me make sure I interpreting this correctly.
So, if I went to best buy I bought 2 HP laptops with Windows 10, I should be concerned that there may be malware in them even if they don't go online--perhaps by some of the pre-installed software?
Might have some spyware, after all they tend to include a ton of spyware. I'll wipe them and just install Linux. The popularity and the design behind Linux based OS makes the chances for persistent malware infection harder. Also, what do you suggest to be a lightweight option. I travel a lot and if I took this route I'd like to not have to carry around 2 laptops with me all the time. This weight issue might be the only reason I stick with Trezor.
I was hoping I can just use 2 phones (remove wifi card and antenna of the offline one)?
Your use case would probably make hardware wallets more attractive. If you'd like, you can just purchase 2 Raspberry Pis and use them as cold wallets. My personal preference would just be to put some funds in a hot wallet and bring it around. Even if I were to lose them, I wouldn't lose all my funds. |
|
|
|
|
As your Bitcoin Core synchronizes, it indexes transactions that are relevant to the addresses within the wallet.dat. It periodically (or when starting up or shutting down the client) writes to your wallet.dat file the best tip which is the latest block so that it is able to keep track of the point whereby the transactions related to your wallet.dat weren't parsed.
The wallet.dat isn't readable as it's in berkeleydb but you can dumpwallet and see that it does actually indicate the hash of the block where your client has synchronized to.
|
|
|
|
I've read that in case of a blocked transaction, one can ask a miner to explicitly confirm it, how this can work if nobody will know who'll win the block to be added in the blockchain? I mean, if that miner that mines as part of o mining pool, can do that, myself (assumed as independent miner) cannot do the same?
Block transaction as in censored? The only way for censorship to be 100% effective is for someone to gain a majority of the hashpower. If you're asking for blocked transactions as in transactions that are not mined,they're typically submitted to a mining pool and the mining pool will include it in their next block, when they mine it and there's not guarantee of the timeframe. A miner mining as a part of the mining pool usually don't have a say in the transactions that is included in the block being mined. The only way you can confirm a transaction is to mine a block which includes that specific transaction and for that to happen, you need to generate a block which fulfills certain criteria and that is very very difficult. Should I understand that the mining pools have the 1st chance to mine the block, so, in fact when a miner attempts to confirm that transaction, he/she will just manually add it to their next lot of transactions from the mempool but still there is no warranty they'll succeed?
Mining pools usually get a block more often than solo miners is because the hashpower are "pooled" together and thus more hashes are generated per unit time, resulting in a greater probability of getting a hash that fits the current target. When the miner includes a transaction specifically, they will (not necessarily manually) insert the transaction into the set of the transactions that they're mining and build a merkle root based on that. If and only if they mine a block then your transaction can be confirmed. |
|
|
|
|
Mining softwares are usually connected to a pool or node of some sort which will feed it with the information required.
The mining software will obtain the information needed to build a block header from the program. The ASICs merely hashes the block header twice with SHA256 to obtain the block hash. The variables within the block headers are changed with every attempt to ensure that the output is a different hash for every attempt. Only when the hash meets the minimum target, it will submit the correct block header to the mining pool. The mining pool will relay the block across the network and the reward becomes spendable after 120 confirmations.
There's no such thing as a verification node sending coins. Neither will the mining software interact with the coins, it's primary purpose is to supply information to the ASICs. When you're building your block header, you'll assemble a set of transactions and in that set of transactions, there should be a coinbase transaction which would consists of the coins being sent to the address that you've specified.
|
|
|
|
I think I'll try with 6.
So when I set that and click "ok" I get a confirmation screen
Transaction ID is unknown
And options along the bottom are Export / Save / Combine / Sign / Broadcast and Close
BUT broadcast is greyed out.
You have to Sign first before you can broadcast the transaction. Remember to not tick the box in the Bump Fee dialog to make the transaction final. It should still be replaceable. |
|
|
|
Aha! That worked, sorry to be annoying, but what should I do next.... It's showing the unconfirmed transaction at the top and my balance as 0  Right click the unconfirmed transaction and select Bump Fee. You should be able to see a dialog to see the fees for the replacement transaction. If you do this, the transaction will be replaced with a similar transaction with a lower output amount and a higher fee. |
|
|
|
The main difference between a hardware wallet with proprietary firmware/hardware (such as Ledger's Secure Element) and a PC that has proprietary firmware/hardware is to me that the latter can be purchased from batches that have been produced before Bitcoin's inception. It makes me paranoid that a hardware wallet, which has been specifically created to hold cryptocurrencies on it, has closed-source components in it.
There's no guarantees that there are possible backdoors or vulnerabilities that could be intentionally or inadvertently inserted as well. If it's of any assurance, some hardware wallets are actually audited regularly and/or has their schematics and firmware open source online. That's the reason why I bought a ColdCard. To be fair, NSA did try to backdoor Linux quite a few times. Doesn't make it any more safer than an opensource firmware which certain HW wallet manufacturers provide. What keeps me in between cold wallets and hardware ones is that HWs come with a preinstalled, verified OS compared to cold wallets for which you download and verify everything on your own, which means you make your own security. Makes me a bit anxious that I might be creating a cold wallet and not verifying everything the right way, making all my funds poof in a matter of milliseconds. I could be sending 0.05BTC as a test and leave it there for a month, just to test whether it's a malicious version or not - only to send everything else there after a month's passed, without knowing I have a malicious version that steals funds from BTC wallets once the balance goes past 0.1BTC.
On the other hand, the fact that HWs come with preinstalled OS is also bad, especially in extreme cases such as Snowden's. You could easily be a target and have a malicious OS installed on it.
You can build and compile the firmware yourself. You can also build your own ColdCard[1]. IMO, verifying something is often referred to comparing the hashes and/or using the PGP signature file to authenticate authenticity. When such an argument about security (with a high degree of paranoia) is put forth, the rational thinking is to assume that everything is compromised, not being able to trust the OS and thus reading through the entire source code and understanding how everything works. In this scenario, I would prefer to scour through the firmware of HW wallets since they're relatively light weight and more transparent than most. [1] https://github.com/Coldcard/firmware/tree/master/hardware |
|
|
|
Doesn't CoinJoin show up as 1 tx after which the address is considered "used" and the joined coins go to another unused address though, which pretty much means the said address likely shows up as having 1 tx only (the join)?
They are. The transaction will be quite big with a large number of inputs and outputs so I inferred that OP could have been referring to that and people could be doing repeated CoinJoins. I can't tell what it is unless OP states the addresses. |
|
|
|
|
Thanks for the topic. I've had quite a few discussions with the community here regarding this and I've maintain my stand that hardware wallets are better than airgapped wallets (at least perhaps till this thread).
Don't get me wrong, airgapped wallets are probably secure, enough for normal use anyways. I don't think there is a major risk of anyone getting their funds stolen through this and I've personally been using a Raspberry Pi airgapped till now, well if my ColdCard arrives and it wasn't lost in the mail.
I think the main argument that I've seen so far is that they don't trust the hardware and the internals of the hardware wallets. Well, to be fair I don't think you would specifically open up your computer to inspect the internals as well, given that most of it is proprietary and some of them are hard to decipher. Most hardware wallets are fairly open about what they use and the reason why I chose ColdCard is because I wanted to see the internals for myself and the fact that it's open sourced does give me extra assurance and the ability for me to inspect it further.
If you want to seriously compare the security of airgapped vs hardware wallets, then the sidechannel attacks are impossible to defend though I think secp256k1 is less susceptible to some of it than others. Hardware wallets are usually hardened against those. When I use cold storage, I always compare my Electrum implementation to an actual hardware wallet. Truth is, it is very hard to bruteforce the hardware wallets, given that the secure chip will almost definitely brick your device after X attempts. I can probably clone my SD card for my RPI wallet and spend some time trying to crack it. Well, it's hypothetical because I do take extra steps to secure it but I think bricking a device would make it impenetrable. Of course, plausible deniability is a huge plus for HW wallet as well.
Now, I can definitely see some points for airgapped wallet given it's more traditional approach as well as the fact that you won't tell the whole world that you have Bitcoins (erm Ledger) and that it is much cheaper. I think there are arguments to be made for both sides but I think in terms of both it's absolute security and it's balance between both, hardware wallets are still a compelling option.
As for the exploits that you see, I think Trezor got unlucky but they tried to mitigate it still. I don't think anything is inpenetrable but given how their business is centered around the security of their wallets, I would still trust that they can try to detect and mitigate most vulnerabilities that would appear, more than a cold storage definitely.
The database leak for Ledger was a giant facepalm and I was quite disappointed as well. Using a reshipper or a PO box could be useful when buying things online.
|
|
|
|
|
Lightning network. I've used it quite a few times and it was simple to use and saves the fees significantly.
Whilst I've long thought of the risks of unconfirmed transactions being fairly manageable, I don't think that's the case anymore. Opt-IN RBF has to be mandatory in case the fees are too small. Lightning network is mature to the stage whereby it's safe to accept payments using it and it'll be an attractive alternative to the onchain transactions.
|
|
|
|
Each node receiving such "compressed" blocks has to "decompress" them first before verification which is a very cheap process. Eg. add 9 zeros in the hash above before searching for previous block header hash, add the input to coinbase tx.
I tested some ideas a while back and I believe the blocks could be compressed about 20% in some cases. I haven't had time to polish the idea though. A through research is needed to see what is the average amount of space saved to conclude whether this is worth it or not.
Wouldn't the process only work for values within the blockchain which has a certain fixed pattern, like first few bytes of block hashes. But that wouldn't be the case with signatures, UTXOs, TXID etc within the blockchain which doesn't necessarily have a fixed value? I would think 20% is quite hard to achieve and minuscule optimizations within the block hash and more fixed values within the blockchain could possibly be compressed. |
|
|
|
if I buy BTC, my balance will be charged with the current value of the BTC or with the one BTC will have whenever the transaction will be confirmed?
Current value. No exchange would want to lose money and risk having to wait for your BTC to confirm. Is electrum fees much lower than nano ledger s fees? A while back irecalled i could even make no fee with electrum. I no longer use electrum anymore.
Free transactions are not realistic any more. The main difference between different wallets is the way they handle the transactions. Electrum does offer features such as easy RBF, CPFP while giving the user the control over their fee with the native segwit. That's why it's often recommended because it's UI is easier to use than most. Fees wise, given the same conditions (address type, mempool, etc) , there shouldn't be any fee differential between wallets. |
|
|
|
I'm conflicted. Significant portions of my investments were cashed out pre 19K levels and I was hoping for a drop so I can buy it back but at the same time, a drop wouldn't be good for the rest of my Bitcoins as well. I've been expecting a correction since 22K but it never came. Oh well, HODL and hope Bitcoin goes to the moon.  |
|
|
|
|
Possibily mixers, or CoinJoin transactions. They are used to obfuscate the origin of the coins by intentionally adding hops to transfer the funds over many addresses and thus making it difficult to track the addresses. CoinJoin transactions typically has many outputs and inputs as well. Or exchange's addresses as mentioned.
Or, though unlikely could be someone trying to push up the mempool's fees by artificially inflating the number of transactions. Could you send a link to the address? It'll make it more evident.
|
|
|
|
You may ask how nodes validate the transaction without the private key.
When you sign a transaction, you generate a hash and a signature using your private key. For validating the transaction, nodes calculate the hash using your public key and your signature without any need to your private key.
If the hash calculated by nodes matches the hash already generated by you, your transaction is validated.
To be more specific, the signature is contained in the scriptsig, together with the public key. The validation is done then with the signature in the first ~70ish bytes and the public key at the end. There's no hash but the nodes will calculate the signature with your raw transaction and your private key. The signature encompasses the entire transaction and as with public key cryptography, you only need the public key to match the signature.
I don't think factory reset will necessarily cover all the malware there is, some malware can exploit the privilege escalation to plant itself into the firmware and factory reset won't remove it. It seems pretty hard for the malware to really transfer information anyways so it's not that big of a deal even with malware. I think using Tails on a USB would be quite convenient as well. |
|
|
|
|
Depends on whether you want to trade storage space for CPU and/or IO. In addition, the main bulk of the data doesn't come from the block headers but the transaction. Trying to save on block header wouldn't provide any size savings in the first place.
More often than not, the bottleneck doesn't lie in the storage space nor the bandwidth, those has gotten relatively cheaper throughout the years. IO speed and CPU are usually the main concern for most. Compression won't help in this way and it's a hassle to decompress the entire blockchain when synchronizing and/or rescanning.
|
|
|
|
I understand you, and you are right. In some cases, a source code could take time before some bugs will even be fixed. But, I was trying to make it clear in a way it would be understandable, in a way of comparing between close source and open source that open source is available to more people than close source in which two heads are better than one in removing bugs and vulnerabilities from source codes.
It doesn't really matter all that much in this aspect. Giving more people access to the source code does not automatically mean that more competent people would be available and willing to audit the code completely given that they "likely" lack the financial incentive to do so and close source projects are more likely to consists of certain proprietary aspect and it would be to their advantage to get more competent people to dedicate their time completely to work on it. I bet most of the major tech companies has more people working full time on their projects with more experience, and obviously more funding to operate bug bounty programs. Obviously, an attacker can better see the codes and see if there's any bugs or exploit within the code and use it to their own advantage instead of working to fix it. ShellShock was undetected for more than a decade. Not to say that open source projects are bad at all, there are certainly valid points that I would get behind, especially the point whereby transparency can be ensured. An open source project is not necessarily more "free" of vulnerabilities and bugs than a close sourced one.
I think one of the main benefits of open source projects, other than it's transparency is it's ability to allow people to modify the codes to suit their own needs. If you don't like certain features, want to add some features but the repo maintainers don't like it, go ahead and fork it. |
|
|
|
Today, the main danger for hacking comes from artificial intelligence. And it is no longer theory, it is practice. There are already break-ins based on this technology. Keys and passwords are being compromised again. It was reported this month that more than one billion accounts could be hacked using artificial intelligence. Why? Because there's something to steal...
How do you think AI would affect ECDSA or more specifically public key cryptography? AI (or rather machine learning) does analysis based on certain trends and using passwords/dictionary attacks usually results in the algorithm being fed with big data and finding association and possible passwords based on the targets. If you want to bruteforce using this method, you could find success with leaked database but most likely not with sites that are designed to deter such attempts. Now, back to the topic. Public key cryptography uses randomness generated from sources to generate the private key. Since the generation methods involves large amount of entropy, if given a public key, how would you use AI to tackle the algorithm and solve for the appropriate private key? |
|
|
|
|
Show Posts
