Bitcoin Forum
December 12, 2019, 09:43:48 PM *
News: Latest Bitcoin Core release: 0.19.0.1 [Torrent]
 
   Home   Help Search Login Register More  
Pages: « 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 [25] 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 ... 127 »
  Print  
Author Topic: HOWTO: create a 100% secure wallet  (Read 275354 times)
clone4501
Newbie
*
Offline Offline

Activity: 58
Merit: 0


View Profile
September 06, 2011, 05:17:56 PM
 #481

The main theme behind creating a secure wallet is to encrypt it to a strong passphrase and then to shred (rather than delete) the unecrypted wallet.  Next, back up the encrypted wallet ot a number of different physical and virtual locations.  There are risks to this strategy.  The two biggeet are 1) forgetting your passphrase, 2) the encryption software being able to properly decrypt later on, 3) the bitcon client being able to properly read the decrypted wallet.

Also, the above is all for nothing if you are not operating behind a secure firewall that keeps out malware.

To all you newbies, don't trust the software.  Stress test it, before you store a large amount of bitcoins.  Even commerically available encryption software including the bitcoin client does not work 100% on every system configuration.

Stress testing should include:

1) complete removal and reinstall of the bitcoin client,
2) complete removal and reinstall of the encryption software,
3) decrypting a formerly encrypted wallet and allow it to update all the block chains
4) sending and receiving small amount of bitcoin
5) repeating steps 1 to 4 again a week, month, two months later.
6) think of other worst case scenarios for your system and test with the small amounts of bitcoin

Good luck,
1576187028
Hero Member
*
Offline Offline

Posts: 1576187028

View Profile Personal Message (Offline)

Ignore
1576187028
Reply with quote  #2

1576187028
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1576187028
Hero Member
*
Offline Offline

Posts: 1576187028

View Profile Personal Message (Offline)

Ignore
1576187028
Reply with quote  #2

1576187028
Report to moderator
1576187028
Hero Member
*
Offline Offline

Posts: 1576187028

View Profile Personal Message (Offline)

Ignore
1576187028
Reply with quote  #2

1576187028
Report to moderator
1576187028
Hero Member
*
Offline Offline

Posts: 1576187028

View Profile Personal Message (Offline)

Ignore
1576187028
Reply with quote  #2

1576187028
Report to moderator
infiniblank
Newbie
*
Offline Offline

Activity: 5
Merit: 0


View Profile
September 07, 2011, 10:07:56 AM
 #482

Thanks for the great info everyone. This helps a lot of people, including myself.
bitcoinhead
Newbie
*
Offline Offline

Activity: 15
Merit: 0


View Profile
September 07, 2011, 10:28:27 PM
 #483

A yubikey or similar one-time-password (or even out-of-band authentication like an SMS code to your phone) only protects against rudimentary keylogging malware or phishing.  And it only protects the online account where you store bitcoins (clearly doesn't protect a locally stored wallet on your PC).

The problems with this for an online wallet include:
 - man-in-the-middle can get your OTP and password and take over your online wallet
 - man-in-the-browser malware can get your OTP and password and take over your online wallet
 - a hacker can still break into the online wallet service and steal/copy your coins (there are mitigations to this that online wallet services can and slowly are implementing)
 - bitcoin-specific malware can wait until you log into your online wallet and then do a session hijack to allow an attacker to basically become you and be logged in.

For protecting a local wallet, the bootable Linux approach (either on a USB stick or CD) is the most secure.  Store your wallet in an encrypted file partition on a flash drive (you could use a hardware encrypted drive like IronKey or MXI), and inside there, use TrueCrypt to double encrypt your filesystem which contains your wallet.  This is a highly secure approach using both physical crypto, software crypto and a clean OS that is reset every time (because you boot from a CD image).

Not sure how practical this is unless you have LOTs of bitcoins to protect!  And in that case, you should split them up into multiple wallets on different storage devices.
clone4501
Newbie
*
Offline Offline

Activity: 58
Merit: 0


View Profile
September 12, 2011, 02:49:14 AM
 #484

In securing a wallet, there are some things that you need to do that are applicable to any secure computer.  First and foremast, you need a state-of-the-are firewall!  This will keep away 99.9% percent of the hackers, their trojans and key loggers.  Next, don't download shit unless it is from a reputable source that you can resonably trust. For example, I thought I would be a savy techie and download Kazaan to get free MP3 downloads.  It was not until much later on that I realized that I had downloaded a key logger that most likey was able to read all my PGP passphrases.  Lesson learned here, if you are going to deal with software pirates, remember that age-old adage, "there is no honor among theives."  Also, don't be cheap on your firewall.  Symantec, McAfee, Force 7, Avira, and any of their true competitors is what you should be running.

So lets say 1) you have a secure firewall, 2) you have not downloaded any shit from dubious sources, and 3) done a complete full system scan for viruses and trojans from the above mentioned antiviral programs listed above, and 4) after all that are reasonably confident you have a malware-computer.  Then you are ready to download the Bitcoin client.  If you think you are ready, then you are probably not and should download, let's say another anti-virus client, like Avira, and do a full-system scan again!

Once you download the Bitcoin client, get the hell offline.  Disable your wireless, unplug your usb/ethernet cable.

Now run the client and create your wallet.

TrueCrypt, PGP, or GPG are three good ways to encrypt your wallet.dat file.  Of course, you should have downloaded these earlier, only after you believe (not think) you have a secure firewall and a malware-free computer.

Refer to my earlier post about letting the wallet read all the current block chains.

Then go offline again!

Encrypt the wallet and then shred (rather delete) the unencrypted wallet.dat file.

Read my earlier post about what to do next.

In closing, many have compared Bitcoin to the Wild West of the Internet.  This is true.  So if you are going to be a player in the Bitcoin world, you need to learn a lot about data security and encryption.  It is these two elements that are the real instrinsic value in Bitcoin.

P.S. to all you fucking hackers--I know this site has been compromised, so I have to change my fucking passwords again becuase the host of this forums can't even follow the most basic security... ah fuck off!
 

Cosbycoin
Hero Member
*****
Offline Offline

Activity: 980
Merit: 506



View Profile
September 12, 2011, 08:12:13 PM
 #485

Is this process once finished idiot proof?
Thralen
Full Member
***
Offline Offline

Activity: 123
Merit: 100


View Profile
September 13, 2011, 03:35:35 PM
 #486

Is this process once finished idiot proof?

Regardless of what anyone might claim, nothing is idiot-proof. The world has this sick habit of constantly making better idiots.

Thralen

Supporting bitcoin as best I can with 1. mining, 2. buying with bitcoin, 3. selling (or trying to) for bitcoin. If you make a donation to:  1MahzUUEYJrZ4VbPRm2h5itGZKEguGVZK1  I'll get it into circulation.
Portnoy
Legendary
*
Offline Offline

Activity: 2030
Merit: 1000

My money; Our Bitcoin.


View Profile
September 18, 2011, 03:42:33 PM
 #487

Is there a good tutorial for using TrueCrypt to protect ones wallet?
penix
Newbie
*
Offline Offline

Activity: 22
Merit: 0



View Profile
September 20, 2011, 03:51:35 PM
 #488

I like the idea of securing a second wallet with Truecrypt. If I ever get enough coins to matter, I'm definitely doing this.
gutschilla
Newbie
*
Offline Offline

Activity: 19
Merit: 0



View Profile
September 21, 2011, 01:18:13 AM
 #489

In securing a wallet, there are some things that you need to do that are applicable to any secure computer.  First and foremast, you need a state-of-the-are firewall!  This will keep away 99.9% percent of the hackers, their trojans and key loggers.  Next, don't download shit unless it is from a reputable source that you can resonably trust.

I cannot emphasize on your last sentence. Better even: Don't download and install anything on the machine you're going to do serious Bitcoin trading with. Of course, you'll need the bitcoin client and a browser. But I've seen too many (both linux and windows, but mostly windows) PCs with tons of crap installed. Oh and refrain from visiting your favourite porn site. Don't install Adobe Flash. Don't open PDFs.

At best, use a dedicated PC. A shiny new 300EUR netbook or your 5yr. old Pentium-M laptop should do.
CJM1682
Member
**
Offline Offline

Activity: 86
Merit: 10


View Profile
September 21, 2011, 01:39:03 AM
 #490

oops i forgot my pass-phrase now i am screwed!!!!

LTC: LcN9tjjcNyjgE7HnZHSC686fWuhUUCiWsn      BTC: 163MGvqd2mr7iHumVYSpEM9jpS7dfEEqkv
CHN: CY2tsr2JKmQa7tUgZW9SkRJyUNwHzvveT2   FTC: 6uH8iaXt23WPVcJHy8eGLtm5cst5kYQnhN
josecitox
Newbie
*
Offline Offline

Activity: 3
Merit: 0


View Profile
September 21, 2011, 03:00:32 PM
 #491

Great guide! Cheesy
snoopy
Newbie
*
Offline Offline

Activity: 7
Merit: 0


View Profile
September 21, 2011, 09:24:07 PM
 #492

Yep, this is a useful guide. Good stuff.
NeonLicht
Newbie
*
Offline Offline

Activity: 53
Merit: 0


View Profile
September 23, 2011, 08:35:03 AM
 #493

Interesting and entertaining.
nosuchthing
Newbie
*
Offline Offline

Activity: 7
Merit: 0


View Profile
September 27, 2011, 11:18:49 AM
 #494

very well written!
bigewok
Newbie
*
Offline Offline

Activity: 14
Merit: 0


View Profile
October 01, 2011, 06:18:04 AM
 #495

Thank you!
Acey168
Newbie
*
Offline Offline

Activity: 7
Merit: 0


View Profile
October 02, 2011, 03:35:58 AM
 #496

Thanks! You seem to have put a lot of effort into this guide. It was interesting. Smiley
MaxSan
Sr. Member
****
Offline Offline

Activity: 369
Merit: 250


View Profile
October 02, 2011, 04:59:05 PM
 #497

Yes very nice. I have to suggest though, it may have been said before...


... Ironkey from cheaper in bitcoins?

Sorted.  Cool
bronan
Hero Member
*****
Offline Offline

Activity: 775
Merit: 500


Lazy Lurker Reads Alot


View Profile
October 02, 2011, 09:00:16 PM
 #498

I laughed my ass off it was fun

But lol they may steal my wallet.dat as much as they want ..... my 0.0 cents on it will not make anyone rich

At this moment after several hours i made lets see 0.01356885 cents with this rate i can see getting 1 btc will take about what ? a month or so with my hardware
so if i calculate it to my currency would give me lets see 0,00000 in my wallet now and probably in a month i think 3.5 euro cause that the value given for 1 BTC Cheesy

I hear people talk about earning hundreds of bitcoins but lol i guess they own a complete datacenter or what?


 
ama
Member
**
Offline Offline

Activity: 112
Merit: 10


View Profile
October 02, 2011, 09:12:00 PM
 #499

But lol they may steal my wallet.dat as much as they want ..... my 0.0 cents on it will not make anyone rich

Today you might have 0.0, but perhaps tomorrow you have a few dozens, or hundreds, who knows.  If they still your wallet today they'll have access to your coins tomorrow.
bronan
Hero Member
*****
Offline Offline

Activity: 775
Merit: 500


Lazy Lurker Reads Alot


View Profile
October 02, 2011, 09:35:59 PM
 #500

Well i am using one of the most insecure operating systems on the planet .... what was it again .. oh yes windows Wink
But even though its leak like an open door on my house untill now i never ever had a problem with my security for lets see 12 years now.
So yes i take security not for granted and even though many have had issues with their os, i still can say never had an trojan or virus in these years take anything from me.
The most dangerous thing is using the cloud in a insecure way, like people trusting online storage and such or even gmail for that matter...
Nobody seems to see the risk in these and send files and very privacy related stuff to them just as easy as if its the most secure thing on the world
Hell on my wifes work for instance most people on the job still put stickers on the pc for the others so they can login.
They simply forget people walking in and out all the time ..
Pages: « 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 [25] 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 ... 127 »
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!