bitpop
Legendary
 Offline
Activity: 2912
Merit: 1060
|
 |
August 04, 2014, 05:45:42 AM |
|
I think the brain wallet site was just compromised because it used weak JavaScript rng and no mouse xor like bitaddress
|
|
|
|
Anon136
Legendary
Offline
Activity: 1722
Merit: 1217
|
|
August 04, 2014, 05:52:15 AM |
|
I guess it doesn't hurt but dont hardware rng's use background radiation to produce entropy? I mean its hard to imagine how that could be exploited. Unless the manufacturers are lying about what is inside their chips. These days anything is possible though i suppose.
|
Rep Thread: https://bitcointalk.org/index.php?topic=381041If one can not confer upon another a right which he does not himself first possess, by what means does the state derive the right to engage in behaviors from which the public is prohibited? |
|
|
bitpop
Legendary
Offline
Activity: 2912
Merit: 1060
|
|
August 04, 2014, 05:54:01 AM |
|
I guess it doesn't hurt but dont hardware rng's use background radiation to produce entropy? I mean its hard to imagine how that could be exploited. Unless the manufacturers are lying about what is inside their chips. These days anything is possible though i suppose.
No the Intel implementation uses analog transistors to digital. They can be completely fake too. |
|
|
|
Anon136
Legendary
Offline
Activity: 1722
Merit: 1217
|
|
August 04, 2014, 05:55:47 AM |
|
I guess it doesn't hurt but dont hardware rng's use background radiation to produce entropy? I mean its hard to imagine how that could be exploited. Unless the manufacturers are lying about what is inside their chips. These days anything is possible though i suppose.
No the Intel implementation uses analog transistors to digital. They can be completely fake too. Could put a gyroscope inside the trezor and let people dance around with them around to add entropy  |
Rep Thread: https://bitcointalk.org/index.php?topic=381041If one can not confer upon another a right which he does not himself first possess, by what means does the state derive the right to engage in behaviors from which the public is prohibited? |
|
|
|
kkurtmann
|
|
August 04, 2014, 06:06:41 AM |
|
that brainmouse looks painful, count me out
|
|
|
|
|
klokan
|
|
August 04, 2014, 06:13:39 AM |
|
I guess it doesn't hurt but dont hardware rng's use background radiation to produce entropy? I mean its hard to imagine how that could be exploited. Unless the manufacturers are lying about what is inside their chips. These days anything is possible though i suppose.
No the Intel implementation uses analog transistors to digital. They can be completely fake too. I can imagine a way to fake radiation. I can even imagine a way (using external magnets) to fake analog-to-digital transistor conversions. It's difficult but it can be done. It's better to not having to trust it. |
|
|
|
|
|
Coiner.de
|
|
August 04, 2014, 08:23:09 AM |
|
Did you, TREZOR devs, forget to increase the version number? The new firmware still reports as 1.2.0 after a successful update.
Are you sure? If it is "1.2.0" on display in bootloader, then it is a version of a bootloader not flashed firmware. I mean what is displayed when plugged in with both buttons pressed. The serial number and a version number. BLv.1.2.0 So it's Boot Loader and the number is only equal to the firmware version we had before by chance. Okay. |
|
|
|
|
bitpop
Legendary
Offline
Activity: 2912
Merit: 1060
|
|
August 04, 2014, 08:42:23 AM |
|
The boot loader can never be changed safely, it should be locked like phones
|
|
|
|
|
Hawkix
|
|
August 04, 2014, 08:43:51 AM |
|
The boot loader can never be changed safely, it should be locked like phones
So, is SatoshiLabs signed firmware update capable of updating boot loader? |
|
|
|
bitpop
Legendary
Offline
Activity: 2912
Merit: 1060
|
|
August 04, 2014, 08:45:08 AM |
|
The boot loader can never be changed safely, it should be locked like phones
So, is SatoshiLabs signed firmware update capable of updating boot loader? No the boot loader doesn't need to be updated and shouldn't be |
|
|
|
|
btchip
|
|
August 04, 2014, 09:30:49 AM |
|
The boot loader can never be changed safely, it should be locked like phones
So, is SatoshiLabs signed firmware update capable of updating boot loader? No the boot loader doesn't need to be updated and shouldn't be Depends if it's ROM based, how many bootloader stages you have, it's definitely not that simple  |
|
|
|
intron
Sr. Member
Offline
Activity: 427
Merit: 251
- electronics design|embedded software|verilog -
|
|
August 04, 2014, 09:37:19 AM |
|
Anyone know if there's epoxy inside to destroy it if opened?
Tried to open it, but the plastic is rather soft and will get damaged in the process. Sacrificing a 'First Edition' only to have look at a MCU + OLED display is a bit too much;) |
|
|
|
|
bitpop
Legendary
Offline
Activity: 2912
Merit: 1060
|
|
August 04, 2014, 09:46:56 AM |
|
Anyone know if there's epoxy inside to destroy it if opened?
Tried to open it, but the plastic is rather soft and will get damaged in the process. Sacrificing a 'First Edition' only to have look at a MCU + OLED display is a bit too much;) I hear it's sonically welded |
|
|
|
intron
Sr. Member
Offline
Activity: 427
Merit: 251
- electronics design|embedded software|verilog -
|
|
August 04, 2014, 09:52:07 AM |
|
Anyone know if there's epoxy inside to destroy it if opened?
Tried to open it, but the plastic is rather soft and will get damaged in the process. Sacrificing a 'First Edition' only to have look at a MCU + OLED display is a bit too much;) I hear it's sonically welded Just ordered another one... |
|
|
|
|
|
stick
|
|
August 04, 2014, 09:59:36 AM |
|
So, is SatoshiLabs signed firmware update capable of updating boot loader?
No. Bootloader is locked. Only firmware parts can be changed. |
|
|
|
slush (OP)
Legendary
Offline
Activity: 1386
Merit: 1097
|
|
August 04, 2014, 10:08:09 AM |
|
Thats pretty shame the affilate program is supposed to work only for someone who already bought the trezor... I cant think who else doing this kind of restrictions, maybe some MLM We don't want just people spamming TREZOR links everywhere. We do prefer people with hand on experience, who actually understand (at least on user level) how this stuff works, write about TREZOR on their blogs, doing howto videos etc. There're already people spreading word about TREZOR advantages, willing to explaining things to beginners, and they deserve some reward. |
|
|
|
bitpop
Legendary
Offline
Activity: 2912
Merit: 1060
|
|
August 04, 2014, 10:15:43 AM |
|
So epoxy or not?
|
|
|
|
slush (OP)
Legendary
Offline
Activity: 1386
Merit: 1097
|
|
August 04, 2014, 10:19:14 AM |
|
|
|
|
|
|
klokan
|
|
August 04, 2014, 10:24:53 AM |
|
Anyone know if there's epoxy inside to destroy it if opened?
Tried to open it, but the plastic is rather soft and will get damaged in the process. Sacrificing a 'First Edition' only to have look at a MCU + OLED display is a bit too much;) One picyure for you:  |
|
|
|
|
intron
Sr. Member
Offline
Activity: 427
Merit: 251
- electronics design|embedded software|verilog -
|
|
August 04, 2014, 10:41:12 AM |
|
Nice:) - USB connector + with decoupling to GND - USB ESD protection - power reversal protection diode - resetable fuse - 5V to 3V3 (?) regulator - STM32F205 ARM with USB + LCD interface - 8Mc (?) xtal - two push buttons - OLED screen - some passives It's all firmware...  |
|
|
|
|
|
