|
EVERY country in the world has (and/or will) bomb civilians if need to. You think Americans didn't? Google the Yokohama air raid in WW2. They bombed an entire city with no military nor industrial targets, mostly built on bamboo and rice paper, with INCENDIARY (mostly Napalm and white phosphorus) BOMBS. Does that sound like a country that respects civilians to you? How about the firebombings of Tokio, Osaka, a,d many other Japanese cities? Or what about Dresden, Hamburg (again, both entirely civilian cities), and the virtual leveling of Berlin? Are German civilians somehow "less human" than others?
And finally, what about Hiroshima and Nagasaki? Have you heard about them?
But that was in WW2, and people like you have a tendency to believe (or try to make others believe) that the dead are less dead if they were murdered a long time ago. What about Viet Nam? Or Afghanistan? There are countless reports about bombings of entire villages by American troops.
Wake up. Being an idiot is bad enough, you don't need to broadcast it.
|
|
|
|
@BernyJB
Based on what you have written, I am pretty sure that you are getting the gist of what "short selling is".
Thank you. You think? I feel like I don't have the first clue about it.  I would assume that you are talking about shorting in Spot Trading and not in Futures/Margin Trading here.
You should assume I don't know what the hell I'm talking about.  Every time I learn something new, a new gazillion of things I don't know open up. I followed 5 courses on crypto already, and I feel I'm just getting started. This whole thing is humongous... |
|
|
|
Thank you all for the replies.  Now I know shorting is a much wider term than I thought, and I definitely have to learn a whole lot more on it. Thanks Rhomelmabini for that link, I'm gonna keep reading on it. |
|
|
|
Hope this will help.
Nope. I'm starting to think I know even less than I thought I knew. Does that mean you can trade with no money at all? |
|
|
|
I haven't posted on this board so far, so for those that don't know me, I'm a newbie, and as green as can be expected. I've been trying to learn as much as I can, watching videos, and reading anything I can get my hands on. As of late, I watched a video on short selling a gazillion times, but I just can't wrap my mind around it. It just doesn't make any sense to me. So here's what I know (or I think I know): Short selling is betting that an asset is gonna go down in price. You have the certainty a given asset is gonna drop, so you borrow that asset, sell it high, wait for it to drop, and then buy it back low and give it back. Great. Except it doesn't make any sense. Let's see. For example, BTC is now scraping 45K. You got tipped that's gonna go down to 30K tomorrow. So... Scenario #1 You borrow 1 BTC. Both the lender and the exchange charge you a fee for it. You do your thing, and you get a good chunk of money in return. But what if BTC doesn't go down? You need to have enough money in your account, so as to pay the BTC back, plus the fees, plus some extra cash in case BTC goes up. If it gets yo the point that you're not gonna be able to cover your obligation, you'll get margin called. Scenario #2 You do have the money already in your account, so you liquidate your BTC if you have it, and wait. When BTC does go down, you buy it cheap, and get the same profit you got on scenario #1, plus the fees you don't have to pay. Scenario # 3 This is the only scenario that would make any sense to me: The lender agrees to share the risk (meaning he agrees to get less money than he lent you, in case things go south). That's the only way I can see this would work (not for the lender, though), and only if the top price the borrower has to pay (including fees) is less than the value of the BTC he starts with. So, how does it work? The way I see it, scenario #1 doesn't make any sense, scenario #2 is not short selling, and the only one that makes sense (to a point) is scenario #3. That is, if the lender is willing to share the risk with you (I personally wouldn't consider it). Now, I'm pretty sure I'm missing something, and I'm pretty sure itś dangling right in front of my nose, and I'm gonna feel like an idiot when yoou guys tell me. But, How does it work? Thank you all in advance. |
|
|
|
Sorry, no matter how good or bad your method is, you should not use that.
That's a different animal. Security is the enemy of convenience, we all know that. And an advice: it may be better to put that .. key... into a code tag, since now it strangely shows (at least to me) a space character that doesn't actually exist
Thank you, I just did. there's no spaces whatsoever in the whole string. |
|
|
|
Ok, so I commented on another thread that I was working on a method to secure seed words, and soon enough I got some replies telling me about a gazillion times this had been attempted before, which always ended on somebody losing their funds because they couldn't remember their "encryption method". That was to be expected, and I appreciate them saving me the time to post something useless for the benefit of... well, nobody. But on the other hand that got a different set of gears turning. The benefits of encrypting your seed words are undeniable, yet you should do so in a way that's hard for others but easy for you. That's the real challenge. So here's a bit of a challenge for you guys: I did come up with a way to encrypt (kinda) my seed words, that is indeed very easy for me, I want to know how easy (or hard, hopefully) it is for people knowing a whole lot more than I do (doesn't take much) on the matter. I don't want to end up calling it "unhackable", and have a 12 year old make me look like an idiot... So here it is: anqouiimmaecpaosnagcodaacdarnetvasraarlecmolmappaasddaerltanveisgaugelluapqauzenazluhgormebvraesqeumeoldoidneossvoerlraouhncaapceanhaceisftardaiobredbi That's the seed phrase. Here's a few hints: - 12 words. All in English.
- None of them are capitalized.
- Each word is 5 characters long.
- No encryption algorithm has been used.
So there it is, what do you guys say? Can you crack it? I will post the actual words when you guys are ready. |
|
|
|
I do not know what to say about this. I am not sure Manjaro would even be a better choice over Windows. As far as I know, it is like switching from Google Pixel to a Xiaomi phone. You just move from United States spying on you to China. I can however just not deny how slick and attractive Manjaro's user interface is.
Anything is a better choice than Windows (though I might come through as a Windows hater for saying this, which I am  ). First, as said before, any Linux distro is open source, which automatically makes it better than Windows. The bests phrase I read about it is: "With Windows you can work on your PC. With Linux you own it". Also I'm not sure about the Xiaomi parallel. Manjaro is German... Does anyone here only use linux as their main pc though? Wouldn't that limit them from programs that require windows?
I do, and have been using Linux as my ONLY OS since 2009. I wouldn't touch Windows with a stick. About limits, sometimes it does, but most times it's quite the opposite. There are a lot of Linux apps to replace those found in Windows, in some cases even better than the Windows apps. And, contrarily to Windows, they're all free, which is never a bad thing. You just have to get used to a different method, that's it. For example, if I want a given Linux app, I do a search for best *** for linux, and I usually get dozens of apps to choose from. 5. As a rule of thumb, Linux based distros are much less demanding on hardware than Windows, which allows you to run them on older PC's without a problem (the one I'm using now is 6 years old, and works beautifully). Yeah, if you're using legacy hardware then Linux will likely run out of box more than say Windows 10 would. Windows 10 needs additional work such as drivers etc, whereas Linux already has some decent coverage on the already implemented ones. In addition to that, one of the main problems with running an OS on an old PC is lack of resources (low CPU clock, ancient GPU, low RAM). Almost all of these issues are addressed by changing the GUI. For example you could face slowness running Ubuntu but you could run Lubuntu on the same old PC very easily simply because the UI framework is different and is light. True. And on Linux you have options. If you have a super-duper PC and you like the bling, you can run KDE, and it'll work great. I have an old one with a celeron, and don't like bling at all, so I run Openbox, and love it. Does anyone here only use linux as their main pc though? Wouldn't that limit them from programs that require windows?
For Windows programs to work in Linux, you can install a VirtualBox on which the Windows system will be installed. Having allocated more than 4 gigabytes of RAM to Windows in VirtualBox, all programs should work correctly. You can also install wine for Linux, which contains a set of libraries and various programs that allow you to run programs from Windows without using virtualization. Yep. And you have the advantage (at least with VirtualBox) that you can limit the resources available to your guest OS, so you can protect your hardware. And some people claim (I haven't benchmarked it, nor would I know how to do it) that running it in seamless mode it runs even faster than natively. I have tried it many times before and I was able to get it working with just that installed. For the computers I could not get the Wireless card working with it, I just used Ethernet.
Now about the GPU, I just did not install the drivers and ran Debian with whatever I get as default. It surely slows down the system overall and has bugs or glitches every now and then, you also get stuck with a low display resolution and all that, but I take it as the price I pay for not accepting non-free stuff. Anyway, say you need a non-free package to get your WiFi card working. I would imagine this is still so much better than running a distro that comes with non-free packages by default.
You might accept the trade-off, but most people wouldn't. I wouldn't. That's why I switched to Fedora. The best feature Linux has is it has plenty of choices. Some have drivers problems. Most don't. |
|
|
|
I was having a relationship with a lady who claim to be a Bitcoin broker analyst for a year, she told me much about crypto currency exchange and I got enlightened along the line she told me about a challenge in the crypto company and she wants to take the lead and she needed an investment of about $50,000.
well believing all she has said I did my best to invest and see her take the lead and I was to get 50% of my investment but at the end of my investment it was clear to me I was scammed and she kept requesting for more money.
Lessons
Always learn to exclude business from relationship.
always do background check before getting to invest on any business.
try to get a knowledge at list 70% and risk management of any business.
nerve get emotionally attached when it comes to business.
No, you didn't do your best to invest, you did your best to get in her panties. The real lessons: Keep it in your pants while investing in crypto. That's not the "head" you should be using. Don't invest on "trust", invest on "research". |
|
|
|
2. Some Linux based distributions (or "distros", as they're called in the community) strive to be as close to Windows as possible, and some don't. At that, if you choose to use Ubuntu, or Linux Mint, or MX Linux, your experience is gonna be arguably much better than if you try to start using Arch, or LFS. Worth noting, that complexity doesn't mean more secure. Though, a distro which allows advanced configuration can be made to be more secure, or depending on the knowledge of the user editing it, could actually make it less secure. Absolutely! More complexity usually means better efficiency for a given task or number of tasks, or, more often than not, just a way for the developers to show off their "neck-beards". I haven't come up to a distro specifically designed with crypto in mind (or else I'd be all over it), but short of it, security and complexity are two completely different things. 3. Linux is, as a rule, way safer than windows. Then, as it was pointed above, your OS will be as safe as you make it. A whole lot of people move BILLIONS of dollars a day on Windows without a problem. It's true that Linux based distros get no viruses, but it's also true, if you do get one, there is also no antivirus software for it (other than ClamAV, as far as I know), so it's a double edged sword. I'm not a fan of saying that as a general rule of thumb Linux is safer, it wildly differs on how the user uses the computer, which can definitely range wildly among users. For example, if you're downloading from unverified, and untrustworthy sources, while probably not equally at risk (due to the attack surface that Windows has), however it should be assumed that you're at equal risk. Although, Linux viruses definitely do exist, and even if we assume the possibility of a Linux virus gaining elevated permissions, there's still issues with exploiting programs that have vulnerabilities themselves. For example, your web browser which could potentially be a security risk. I would say that Linux is more hardened, due to some of the implementations of root, as well as the attack surface being much less than Windows. Although, bare in mind that there's definitely a legitimate risk for viruses etc, as Linux is still targetted by malicious users, since most servers are running on Linux. Most banks use Linux etc. 4. It's also true there are very few viruses meant to work on Linux, but the real reason (again, as far as I know) is that Linux has a very strong admin policy, and nobody can act as an admin without a password. So, ultimately, Linux based distros are as safe as the password you use on them. Right, partially correct I'd say, but ultimately security comes down to how you use the operating system, the credentials used, how you store those credentials etc. Yeah, I should've said "all else (or "the user") being equal". Sorry. True, the user is always the biggest variable in a computer system. You can't expect your system to be "secure" if you're not. 5. As a rule of thumb, Linux based distros are much less demanding on hardware than Windows, which allows you to run them on older PC's without a problem (the one I'm using now is 6 years old, and works beautifully). Yeah, if you're using legacy hardware then Linux will likely run out of box more than say Windows 10 would. Windows 10 needs additional work such as drivers etc, whereas Linux already has some decent coverage on the already implemented ones. Let me tell you my experience: I had a 17" Hewlett-Packard laptop. Quad core, 16 gigs of ram, back in 2014. It wasn't an old computer. In fact, it was so new that I got mad at Debian because they still didn't have free versions for its drivers, but they didn't allow the use of non-free drivers. Used it on Fedora without issue for a couple of years. Not once I saw CPU usage go over 3% (I always run conky on my computers), even when I was running 12 virtual workspaces. Then I switched to Windows 8.1 because I needed to run Solidworks on it. Whithin a month it blew 2 hard drives.  6. As beginner friendly as they may be, all Linux based distros have a learning curve, and you have to be willing to learn how to use them. Which, if you aren't an advanced user is becoming simpler, and simpler as time goes on. Ubuntu, and the closer to Windows experience distros have come leaps, and bounds in recent years in terms of simplicity. Yeah, I've seen that, and to be honest, I have mixed feelings about it. Some distros (like Manjaro, for example) made strides to become friendlier to newbie users, yet still can't get rid of some of Arch's quirks, like their repo lists getting corrupted all the time, while others have become so bloated they're a nightmare to use (still better than Windows though). I was first introduced to Fedora (then "Fedora Core"), I think in 2002 or 2003. Just couldn't use it at all. Then I started on Ubuntu (with Gnome, WITHOUT Unity) and loved it. Sure, it was different from Windows, but in no way was "difficult" to use. |
|
|
|
I've been a Linux user for a bit more than a decade. I can tell you this: 1. Linux is not an OS, it's a kernel. There are, as of today, over 1000 OS's (distributions) based on the Linux kernel. 2. Some Linux based distributions (or "distros", as they're called in the community) strive to be as close to Windows as possible, and some don't. At that, if you choose to use Ubuntu, or Linux Mint, or MX Linux, your experience is gonna be arguably much better than if you try to start using Arch, or LFS. 3. Linux is, as a rule, way safer than windows. Then, as it was pointed above, your OS will be as safe as you make it. A whole lot of people move BILLIONS of dollars a day on Windows without a problem. It's true that Linux based distros get no viruses, but it's also true, if you do get one, there is also no antivirus software for it (other than ClamAV, as far as I know), so it's a double edged sword. 4. It's also true there are very few viruses meant to work on Linux, but the real reason (again, as far as I know) is that Linux has a very strong admin policy, and nobody can act as an admin without a password. So, ultimately, Linux based distros are as safe as the password you use on them. 5. As a rule of thumb, Linux based distros are much less demanding on hardware than Windows, which allows you to run them on older PC's without a problem (the one I'm using now is 6 years old, and works beautifully). 6. As beginner friendly as they may be, all Linux based distros have a learning curve, and you have to be willing to learn how to use them. 7. Finally, as far as I know, there are no rehab programs for Linux, so if you get addicted (and chances are you will) you're on your own. |
|
|
|
But I'm not starting a thread on it. You should anyway. More discussion regarding security is never a bad thing. Plus you'll get more opinions rather than just listening to me. Well, I won't, but I will... kinda. I'm thinking of a different approach. Stay tuned... Either way, "just listening to you" (and many others) has been great so far. |
|
|
|
I meanth searching for the term "extension word" in the page i posted a link to: https://en.bitcoin.it/wiki/Seed_phraseThe idear behind bitcoin is being your own bank. You're free to do whatever you want to do, it's your money after all. We're not going to stop you, but we still want to give you some advice... It's up to you wether you take it or not (i, for one, won't be offended if you decide not to follow any advice i give you). Oops, sorry, I'll try it out.  I understand, and I do appreciate (honestly) the input. There's no telling how much I have learned from you guys since I joined. Right now I'm not disagreeing with you: I'm just brainstorming. This being said, i really don't know which aspect of an extension word would be harder than a complete self-invented encoding scheme. It would be best if you used a unique, long, random passphrase (from a security point of view), but you might aswell pick a password you use quite often since the only function of the extension word (or passphrase, both terms are used as a synonym quite often) is to slow a brute force attack down for a couple of days untill you moved your funds out of your wallet. The upside of using a password like that is that you probably don't have to write it down, it's already commited to your long term memory.
The big difference is: an extension word is supported and described by the community, by (hardware) wallet vendors, by software wallets.... If you forget about bitcoin and stumble upon your seed phrase in 10 years, odds are you'll still be able to remember the password you use all the time compared to remembering what kind of shennanigans you did in order to encode your seed phrase.
But like i said: the only we can offer is advice. It's up to you wether you take it or not!
Good luck!
I'll get back to you on Monday on that one. |
|
|
|
--snip--
You keep pounding on multi-sig. I've been looking everywhere since last October, and couldn't find anything on how to use multi-sig. In any case, if you know multi-sig, chances are would be robbers also know about it, and sooner or later they will figure a way to crack it.
--snip--
If you create a 2 out of 3 multisig wallet, create 2 copy's of each seed phrase and hide them in 6 completely different houses (or banksafes), there is nothing a robber can do... He would need to rob 2 completely different houses in order to "crack" it. Kinda expensive... You just have to buy 6 houses to protect your seeds...  I think I can do much better than that with just a few camping tricks combined. You take your seed words and write them backwards, combine them (letter by letter) with a known phrase, encode them in base 64 and write them in a grid, going vertically from bottom to top and from right to left. That's definitely gonna delay them a minute or two. I did search "extension word". Got a bunch of links about Windows file extensions, and one from Merriam-Webster...  The function of the password is delaying the thiefs just long enough so you can move your funds out.... Sure, they can brute force an extension word, but as long as they cannot brute force it in the timeframe you'll need to empty out your wallet, it's fine.
Hopefully, the function of any security measure is to make an attack so difficult it's not worth the effort. A password would be the bare minimum in terms of security, and it implies you know you're being attacked, and you're in a position to transfer your funds elsewhere. In any case it's much better than hiding your plain seed words under the mattress, but it's far from efficient. |
|
|
|
O_e_l_e_o: alright, I'll drop it! No extra security for seed words. I'm just gonna reply to the points you made, because they picked my interest. But I'm not starting a thread on it. The fact is writing them down (on paper, metal, whatever) offers no security at all. It's not supposed to. The security comes from keeping it physically secure, just as you do with important documents, cash, precious metals, jewelry, electronic devices, etc. That's the problem. The security of your whole system ultimately relies on the physical security of your seed words. Now, 99% of robberies are crimes of opportunity. Does it make sense to only rely on physical security when you have other options, especially when you can add those options to it? If the would be robber knows about crypto and seed words and he's looking for them, what do you think he'd be looking for, when he opens your safe, or when he finds the list, wherever you may have hidden it? Then hide it better. There are 100 places I could hide a piece of paper in my house where a thief would never find without demolishing the entire house, even one who was specifically looking for said piece of paper. Drill a hole in your wall, slot it inside, and then cover the hole and paint over it, for example. Inside a piece of furniture. Under your floor boards. Yeah, I watched that one, in a "Burn Notice" episode. He hid a credit card under a door hinge. Everybody knows it now. The floorboards thing has been shown in a gazillion movies and series, same with the "inside the walls" thing. Security is not about hiding something and hoping nobody will find it: it's about making it impossible (or as hard as you can) for them to use it. Then use multi-sig or passphrases. You keep pounding on multi-sig. I've been looking everywhere since last October, and couldn't find anything on how to use multi-sig. In any case, if you know multi-sig, chances are would be robbers also know about it, and sooner or later they will figure a way to crack it. O_e_l_e_o: my point is I don't know those algorithms, and I don't know how to encrypt the words with them. There are open source standards and open source software to do this for you. You also don't know how to turn your seed phrase in to private keys and rely on software to do this for you. Yeah, I'm sure there are plenty of them, but I don't know them. That's the problem. In any case, if they're there is because somebody else knows about them. The best I can do (which I use for my passwords) is to encode the phrase in base 64, but that's about it, and I'm aware it's not encryption. So if I can use a way to somehow obfuscate those words (let's say, pig latin, to put a stupid example), it's not gonna be as secure as it could be, but it will still be more secure than leaving my words laying in a safe for anybody to find them. An attacker who is specifically looking for your seed phrase will not be fooled by base 64 or pig latin. Maybe. Maybe 999999 out of a million won't, and one will. In any case, the idea was to use something like base 64 together with another method. Anyways, I'm not doing the thread. One of the reasons I posted is because I wanted feedback from guys like you, that know a whole lot about this stuff than me. Thank you for taking the time.
|
|
|
|
For me i think if it is not as secured as writing it down and securing it which has to be the best way if you have followed our discussion from the beginning of this thread and just as o_e_l_e_o has reiterated in his last post, then don't you think it is better not to try it in the first place?
The fact is writing them down (on paper, metal, whatever) offers no security at all. If the would be robber knows about crypto and seed words and he's looking for them, what do you think he'd be looking for, when he opens your safe, or when he finds the list, wherever you may have hidden it? Security is not about hiding something and hoping nobody will find it: it's about making it impossible (or as hard as you can) for them to use it. Then you hide it in your safe, and put it in other places, in case your place goes up in smoke. But the real security should be in your head, not in a safe. O_e_l_e_o: my point is I don't know those algorithms, and I don't know how to encrypt the words with them. The best I can do (which I use for my passwords) is to encode the phrase in base 64, but that's about it, and I'm aware it's not encryption. So if I can use a way to somehow obfuscate those words (let's say, pig latin, to put a stupid example), it's not gonna be as secure as it could be, but it will still be more secure than leaving my words laying in a safe for anybody to find them. |
|
|
|
But then I'm not a cryptographer, and many of us aren't, so I'm trying to come up with a method anybody can use. Hopefully I will have it finished soon. I don't mean to discourage you, but we already have a method anybody can use: Write down your seed phrase by hand and store it somewhere secret and secure. If you want additional protection so the compromise of your seed phrase will not lead to loss of your coins, then use one of the standardized and tried and tested methods such as an additional passphrase or multi-sig. I know you don't. In any case, additional information is always welcomed.  My problem with seed words is if they're found, all you need to do is read them. I'm sure there are other methods we (newbies) don't know about. I'm just trying to come up with a method to encrypt your seed words that doesn't require one to be an expert, that may not be as secure as other methods are, but it's more accessible to those of us who don't know what we're talking about. Every single time I have seen people try to come up with their own solution on these forums they either overlook something and leave their coins vulnerable, or they come up with something too complex to remember and lock themselves out of their own wallets.
That's what's keeping me. You can go as complex and convoluted as you want, but afterwards you have to remember what you did. |
|
|
|
I've been working on a way to protect the seed phrase, as I see it as the weakest link in the practice of crypto investing. I will start a thread on it, as soon as I can. I am excited to hear you are working on ways of protecting seed phrases, i would love to read your thread on it, and i hope it will help a lot of us. Thank you. I hope so. A few days ago, I got the news in the Coinmarketcap newsletter that a kid had drugged his stepdad, got his seed words, and stole his crypto. Almost killed him in the process. That got me thinking that in the land of "encrypted", the seed words are there, just waiting for somebody to steal them. But then I'm not a cryptographer, and many of us aren't, so I'm trying to come up with a method anybody can use. Hopefully I will have it finished soon. |
|
|
|
A great suggestion to use Linux systems. Many systems are suitable for beginners, such as MX Linux. User-friendly interface, very reminiscent of the Windows system. I do not agree that the absence of antivirus is better than its presence. There are many paid antivirus that updates their signatures daily. But it is necessary to test them and learn as much as possible about these antiviruses. If you are aware of several antiviruses, they already know how to mine cryptocurrencies today, which the owner may not like at all.\ Antiviruses Norton 360 and AviraTherefore, of course, setting up your system must undergo thorough preparation. Separation of finance and entertainment, as well as travel on the Internet. Everything related to finance must be strictly separated from everything else. Hell YEAH, Linux FTW!!! Right now I'm using MX Linux, and I CHALLENGE you to make a mess with it. It's stable, easy to use, very forgiving. If not, I suggest Ubuntu or Linux mint. Finally, about Norton... Let me tell you my experience with it. This was back in 2005, so it's bound to have changed. I accidentally opened an email instead of deleting it (on Windows XP) and got overrun with viruses, to a point I couldn't even turn the pc off. Finally used the power button, rebooted and ran Norton. It didn't find "anything". I booted up again in safe mode and ran Norton again. Same result. So I searched online, and at the time the best free antivirus was Spybot S&D, so I got it. Ran it, and it found a bit over 1800 viruses. Disinfected, and ran it again in safe mode, and found another 200+ viruses. Disinfected them again, and never again had a single virus in the 4 years I kept using XP, even when I routinely checked it, not only with Spybot, but also with Ad Aware, Avast, and later on Kaspersky. Then I switched to Linux in 2009. I ran ClamAV twice since. I wouldn't go back to Windows if they paid me to. |
|
|
|
I've been working on a way to protect the seed phrase, as I see it as the weakest link in the practice of crypto investing. I will start a thread on it, as soon as I can. |
|
|
|
|
Show Posts
