PirateHatForTea
|
|
September 06, 2012, 04:13:19 AM |
|
This is a great Howto, but I thought people might be interested in a sort of middle-path:
1. Install Linux inside a virtual machine, secure it, and lock it down using IPTables. Install bitcoin and create your 'íntermediate' wallet here. Use it for storing moderate amounts of bitcoins (more than hundreds of dollars worth say) that will involve frequent transactions. If you set things up well it will be more secure than running from inside your native OS for example.
2. Have a LiveCD image of TAILS (an anonynimity/security focused LiveCD distribution) available inside the virtual machine. Install a virtual machine within the virtual machine and use it to boot the TAILS liveCD. Apply the technique described in the OP using this tails distro. This wallet should end up being not only super secure, but relatively anonymous. For even more anonymity, configure the first linux VM (host for Tails) to use a VPN, with IPTables filtering all on-vpn traffic. Purchase the VPN using Bitcoin. This is the ultimate paranoia solution for both anonymity and security.
|
Unlevereged financial instruments acting as a store of value that fluctuate 50% within 10 minutes is perfectly acceptable. I think it should be offered in IRA form to soon to be retirees.
|
|
|
Monkey1
|
|
September 06, 2012, 07:28:03 PM |
|
This all sounds so complicated, especially running a different OS if you are on windows. Why not just use Armory? I am not trying to sell it, I just want someone to tell me if I have missed an obvious vulnerability and it is not as safe as I thought?
|
|
|
|
hairlesswook
Newbie
Offline
Activity: 5
Merit: 0
|
|
September 07, 2012, 12:02:57 AM |
|
great info thanks
|
|
|
|
techstrordinary
Newbie
Offline
Activity: 7
Merit: 0
|
|
September 07, 2012, 01:59:41 AM |
|
This is a great Howto, but I thought people might be interested in a sort of middle-path:
1. Install Linux inside a virtual machine, secure it, and lock it down using IPTables. Install bitcoin and create your 'íntermediate' wallet here. Use it for storing moderate amounts of bitcoins (more than hundreds of dollars worth say) that will involve frequent transactions. If you set things up well it will be more secure than running from inside your native OS for example.
2. Have a LiveCD image of TAILS (an anonynimity/security focused LiveCD distribution) available inside the virtual machine. Install a virtual machine within the virtual machine and use it to boot the TAILS liveCD. Apply the technique described in the OP using this tails distro. This wallet should end up being not only super secure, but relatively anonymous. For even more anonymity, configure the first linux VM (host for Tails) to use a VPN, with IPTables filtering all on-vpn traffic. Purchase the VPN using Bitcoin. This is the ultimate paranoia solution for both anonymity and security.
Or just make sure have a decent virus checker installed, and copy your wallet to removable device that you can copy to from your computer when you need it. Although that might be suggested in one of the other 50 000 posts on this topic!
|
|
|
|
oldschool
|
|
September 08, 2012, 12:22:47 AM |
|
blockchain.info has good security and a good record for an online wallet. But I still wouldn't trust them to store anything significant. As the old saying goes, if you want something done right - do it yourself.
Thanks for the input.... What do most people consider significant for bitcoin? Should I be tinfoil hat and transfer everything to a 100% secure wallet offline thats never touched a connected device before, or should I just keep anything greater than say $100 worth of bitcoin offline like that and anything less on easy to access convenient online formats like blockchain.info or possibly spread across things like 2BTC ewallet, 2BTC cellphone wallet, 2BTC computer wallet, 2BTC brain wallet and the rest on a secure offline wallet or something? How does everyone decide the difference between tinfoil hat security and actual usability and convenience with there bitcoins? Thanks!
|
|
|
|
Berend de Boer
Newbie
Offline
Activity: 12
Merit: 0
|
|
September 08, 2012, 01:30:57 AM |
|
As this has become a very large topic, was there any mention that a gpg encrypted wallet is as safe as it gets? Doesn't matter even if you post it on a hackersanonymous board. Unless quantum computers become a reality, no one can decrypt a gpg 4096-bit encrypted wallet.
Obviously to use the wallet you might have to decrypt it. But you can decrypt to a memory disk, transfer the money out/in, and encrypt it again.
I'm happy to create 100 BTC wallet and post that publicly to prove my point :-)
|
|
|
|
lyth0s
Legendary
Offline
Activity: 1260
Merit: 1000
World Class Cryptonaire
|
|
September 08, 2012, 09:14:05 PM |
|
Excellent information for a beginner thanks!
|
|
|
|
Monkey1
|
|
September 09, 2012, 08:16:45 PM |
|
blockchain.info has good security and a good record for an online wallet. But I still wouldn't trust them to store anything significant. As the old saying goes, if you want something done right - do it yourself.
Thanks for the input.... What do most people consider significant for bitcoin? Should I be tinfoil hat and transfer everything to a 100% secure wallet offline thats never touched a connected device before, or should I just keep anything greater than say $100 worth of bitcoin offline like that and anything less on easy to access convenient online formats like blockchain.info or possibly spread across things like 2BTC ewallet, 2BTC cellphone wallet, 2BTC computer wallet, 2BTC brain wallet and the rest on a secure offline wallet or something? How does everyone decide the difference between tinfoil hat security and actual usability and convenience with there bitcoins? Thanks! Thats really up to you. 3 BTC will be a lot for some but to others 1000 BTC is peanuts. Its no different to cash. Some people are happy walking around with $5000 in their pocket. Others wont carry more than $50! I would only keep enough to cover regular transactions on your connected device and store the rest in an offline wallet.
|
|
|
|
dotcom
|
|
September 10, 2012, 06:28:29 AM |
|
good tips, i might try a few in the coming days
|
|
|
|
MrLenin
Newbie
Offline
Activity: 14
Merit: 0
|
|
September 10, 2012, 01:16:46 PM |
|
thanks for the info. pretty useful stuff
|
|
|
|
jhill38
Newbie
Offline
Activity: 6
Merit: 0
|
|
September 10, 2012, 03:54:55 PM |
|
Thanks for the post. Seems a bit confusing though will have a try
|
|
|
|
Monkey1
|
|
September 10, 2012, 08:30:22 PM |
|
Give Armory a go. Pretty straight forward, good guide and very secure. Downside is you need standard client open to use it, but thats no biggy!
|
|
|
|
xblitz
Newbie
Offline
Activity: 32
Merit: 0
|
|
September 11, 2012, 01:15:41 AM |
|
great how-to!! thanks
|
|
|
|
secure_data
Newbie
Offline
Activity: 11
Merit: 0
|
|
September 12, 2012, 03:28:24 PM |
|
Good to know, thank you for info ! Useful for newbies
|
|
|
|
BlueCombWindow
Newbie
Offline
Activity: 33
Merit: 0
|
|
September 12, 2012, 08:23:30 PM |
|
Thanks for the tip!
|
|
|
|
Zack
Newbie
Offline
Activity: 14
Merit: 0
|
|
September 13, 2012, 09:29:13 PM |
|
Great guide, I was actually too lazy to do this when I first began Bitcoin, so one day I booted up my laptop that contained my wallet that had not been backed up and I ended up losing all of my coins, I know 12 isn't much but for a starter it sure felt like a huge loss.
|
|
|
|
Ssoftware
Newbie
Offline
Activity: 37
Merit: 0
|
|
September 14, 2012, 08:46:47 AM |
|
IS there any client for apple ipad ?
will it secure ?
is that possible to to backup wallet.dat from ipad ?
|
|
|
|
KimJongChill
Newbie
Offline
Activity: 6
Merit: 0
|
|
September 14, 2012, 06:55:11 PM |
|
Thanks for the guide, it was very informative.
|
|
|
|
Benatar
Newbie
Offline
Activity: 38
Merit: 0
|
|
September 15, 2012, 12:14:15 AM |
|
Thanks.
|
|
|
|
Akido
Newbie
Offline
Activity: 13
Merit: 0
|
|
September 15, 2012, 04:44:36 AM |
|
thanks for the info, will try
|
|
|
|
|