Wall Observer BTC/USD - Bitcoin price movement tracking & discussion

[El duderino_]

Observing 9977

But can anyone guess what i’m gonna observe later this evening 

[fillippone]

@jjg      I can imagine your passwords are 1000+ characters long lol

My op sec sucks, because in order to remember my passwords, I write them out in WO posts on a regular basis.. just so that I can remember them...

woops... .. did I say too much...



Fuck.

You guys are funny

Indeed.
Meriting for the LOLs, so wrong in the rest of the BitcoinTalk, but here, how couldn't you reward such gems?

[fillippone]

Observing 9977

But can anyone guess what i’m gonna observe later this evening 

Observing CCMF@9977



I'm getting better and better at this game.
(On meme mode, after a few good posts today, don't blame me)

[LFC_Bitcoin]

This is our house now Ke-mo sah-bee

[JayJuanGee]

There's still hope for sim-port-attack victims.
Read the article, most important the last paragraph.

https://www.zdnet.com/article/wave-of-sim-swapping-attacks-hit-us-cryptocurrency-users/

What dumb fuck still uses SMS 2FA?

IDK, but even 3rd party open source authentication software like GA isn't 100% safe.
Recently i reactivated an old coinbase account and switched from SMS2FA to GA2FA, but in the long run, i'll switch to a hardware-key based solution.
Maybe my ledger nano can be of some use there, but i don't like to rely on a single device for all crypto-related key storage.

Google authenticator BLOWS, that thing is a piece of shit and you don't have a recovery seed anymore.

I thought that you get 10 recovery seeds (or something like that when you sign up), and you can create more recovery seeds, as long as you still have access to GA.

So, sure you need to make sure that you have recovery seeds, otherwise, if you lose your device then you might have many difficulties regaining access to GA....

In other words, there has to be a way to recover your access to you GA in the even that you lose your device, AmiNOTrite?

IDK, but even 3rd party open source authentication software like GA isn't 100% safe.
Recently i reactivated an old coinbase account and switched from SMS2FA to GA2FA, but in the long run, i'll switch to a hardware-key based solution.
Maybe my ledger nano can be of some use there, but i don't like to rely on a single device for all crypto-related key storage.

Google authenticator BLOWS, that thing is a piece of shit and you don't have a recovery seed anymore.

I only use GA for 2FA, recovery keys (written down) for restore at the exchange if the (smartphone) device fails.
BTC are transferred to a cold wallet whenever it's more than 0.1 (or 0.01, 0.001 and so on in the future) and for selling small amounts (also future, only maybe)
But i'll sure move on to a better solution.

Yeah you can do backups for 10 times for the one issuer, I guess that's good for a device failing, it's a shitty setup though, I guess it's okay.

Probably better to use a freshly wiped or a fresh cheap phone with only Google Auth on it that stays in a safe place. That's what I'll do and have backups for security.

Like I mentioned above, I am pretty sure that you can get more of the 10 seed back up codes in the event that you lost the codes or used them up or whatever... that is so long as you still have access to GA.....   If you have lost access to GA and to the codes, then you are likely more screwed in that kind of situation. 

I have not done reissued new codes, but it seems like an obvious feature for those who still have access to GA or who may NOT remember where they put the codes that had already been issued to them at the time of signing-up.

You can request 10 back up single codes to a site. Say binance, but I swear GA used to have a private key that held the accounts you had. I guess the idea is you print your backup keys per site and if you lose your phone you enter every site, disable it and burn like 2 or 3 codes to disable it.

I guess that I am getting a little bit lost with the use of those 10 back up keys to be able to access secondary sites in which you have enabled GA.  What I was thinking is that the 10 codes are used to recover your GA account on your device in case you lose your device or you change devices.   Once you have access to GA on your device, the GA gives you whatever code is relevant at that time for accessing the secondary sites.    So, I am not sure about the other scenario in which you are using those 10 codes to access the secondary sites directly. 

My understanding is that if you request 10 more codes, then the earlier issued 10 codes become obsolete.

Maybe my whole brain (and thinking) on this topic is all screwed up, and perhaps I am going to need to read whatever it says on the Google Authenticator page?   

Seems that I have gotten new devices on a couple of occasions in the past couple of years; however, I cannot recall using any of those codes on that paper in order to change my device authorization.  I think that I still had access to my old device when I changed to the new device, so I did not need to use any of the 10 access codes from that paper.

Are we in concordance about anything?

I would like to be in concordance that it surely looks like we are imminently about to re-visit supra $10k.   The next hours seem to be critical.^tm

[HairyMaclairy]

It doesn’t work like that.

GA doesn’t have its own seed.  

Each site gives you a site specific seed.  You write the seed down somewhere safe.


If you lose the device, you re-enter the seed for that specific site into your new device.

The attack vector is the sites’ individual processes for manually turning off GA for the inevitable dumbasses that lose their seed.  

[JayJuanGee]

Observing 9977

But can anyone guess what i’m gonna observe later this evening 

A glass of gin, and an oyster

[LFC_Bitcoin]

Observing 9977

But can anyone guess what i’m gonna observe later this evening  

A glass of gin, and an oyster

mic will be observing his teams posting for the day. Isn’t that right, mic?



Kidding.

[Wilhelm]

Observing 9977

But can anyone guess what i’m gonna observe later this evening 

A glass of gin, and an oyster

Enough gin makes any oyster open  

[El duderino_]

Observing 9977

But can anyone guess what i’m gonna observe later this evening 

Observing CCMF@9977



I'm getting better and better at this game.
(On meme mode, after a few good posts today, don't blame me)

You Will understand the game when you’re on meme mode and make a good post after, thats when we don’t blame you....

[gentlemand]

https://www.youtube.com/watch?v=9-ZTkCNW0w8

More financial services committee fun. It's been a good watch so far. It's obviously Libra focused but plenty of sense being spoken about 'actual' cryptocurrency too.

We got a congressman questioning the difference between Bitcoin and shitcoins.

[JayJuanGee]

This is our house now Ke-mo sah-bee

That is pretty fucking crazy to hunt bears with a spear and to be able to be successful.

Of course, it would not be a preferred outcome to engage in a battle with a bear and merely injure the bear without actually killing it, yet I suppose in some of the cases, that kind of outcome would inevitably happen.  Overall, it seems to be a pretty open kind of way to try to accomplish the killing of a bear, and it appears that in the USA spear hunting of bears is only allowed in 4 states.

I'm not really against it, and surely those hunters attempting to hunt bear with a spear without decent talents and/or strength might be weeded out in their attempt to employ such practices, too.   

[Wilhelm]

Observing 9977

But can anyone guess what i’m gonna observe later this evening 

A glass of gin, and an oyster

Enough gin makes any oyster open  

champagne works on 13 years old female too... ask a(ny) jew... he knows... bcz he did.

Uhhhhh something in me thinks this is a racist statement 

[HairyMaclairy]

Poor bear.  He just wanted some hunny. 

[Wilhelm]

This is our house now Ke-mo sah-bee

That is pretty fucking crazy to hunt bears with a spear and to be able to be successful.

Of course, it would not be a preferred outcome to engage in a battle with a bear and merely injure the bear without actually killing it, yet I suppose in some of the cases, that kind of outcome would inevitably happen.  Overall, it seems to be a pretty open kind of way to try to accomplish the killing of a bear, and it appears that in the USA spear hunting of bears is only allowed in 4 states.

I'm not really against it, and surely those hunters attempting to hunt bear with a spear without decent talents and/or strength might be weeded out in their attempt to employ such practices, too.  

If a bear comes close it will stand on it's rear legs and try to grab you.
Wedge your spear between the ground and the bears chest or stomach at an angle.
When the bear comes down then he will do a hara-kiri and you win.

I personally prefer the Magnum Wildey method  

P.S. If you kill something you must eat it....

[JayJuanGee]

It doesn’t work like that.

GA doesn’t have its own seed.  

Each site gives you a site specific seed.  You write the seed down somewhere safe.


If you lose the device, you re-enter the seed for that specific site into your new device.

The attack vector is the sites’ individual processes for manually turning off GA for the inevitable dumbasses that lose their seed.  

I am sorry to be such a dumbass, but let's attempt to merely stick with the case of re-establishing a new device for google authenticator running.  That is merely getting google to recognize the new device that they are going to send the GA keys for the secondary sites.

So, if I still have the old device, that situation is easy because i can get the GA keys off of the old device when I am registering the new device.  Once I register the new device, then GA only sends GA codes to the new device.  It no longer sends codes to the old device.

Now if I lose my old device or it gets stolen or damaged or lost in a boating accident, or whatever causes me an inability to access my old device, then I thought that those 10 codes that google gives you at the time of creating your GA account were used for those kinds of situations in which you no longer have access to your old device.  If I am wrong, then I am confused about the whole situation, and it would be better to straighten this matter out before I lose or break my device that has my GA account assigned to it, no?

[serveria.com]

Observing 9977

But can anyone guess what i’m gonna observe later this evening 

A glass of gin, and an oyster

Enough gin makes any oyster open  

champagne works on 13 years old female too... ask a(ny) jew... he knows... bcz he did.

What's wrong with Buttunlocker?    Account hacked or another roach-wannabe?  

[JayJuanGee]

https://www.youtube.com/watch?v=9-ZTkCNW0w8

More financial services committee fun. It's been a good watch so far. It's obviously Libra focused but plenty of sense being spoken about 'actual' cryptocurrency too.

We got a congressman questioning the difference between Bitcoin and shitcoins.

Who would have ever thunk, just a year ago or less that regular normies are going to start to get some real ideas about how bitcoin is different from the 2,000 plus shit coins and ICO snake oil salesman bullshit, including all shit coins, libra, ether, the bcashes, ripple or whatever other phoney baloneys are out their in btc wannabe status or sometimes like eth saying that they offer something different from btc, which ends up rising to the level of crap at best and scam in a worse case scenario.

[makrospex]

It doesn’t work like that.

GA doesn’t have its own seed.  

Each site gives you a site specific seed.  You write the seed down somewhere safe.


If you lose the device, you re-enter the seed for that specific site into your new device.

The attack vector is the sites’ individual processes for manually turning off GA for the inevitable dumbasses that lose their seed.  

As far as i have read and understood the docs on GA now, it uses its own "key" for authentication against the google account used on the phone.
That is what the set of backup keys is for. You have 2FA enabled on your G account and lose your phone. Transfer procedure is quite similar to 3rd party GA2FA, just disable and re-enable after swapping phones and restore of GA.
3rd party (secondary) accounts must be restored via their seed providers (exchange) security key or disabled/re-enabled as usual, where the mentioned attack vector comes into play.
No convient way to restore all at once, if i didn't miss anything. Workaround would be running Android as root and backup the whole GA app via 3rdparty software. Least attractive to me. So always have your security keys written down a multiple times, and store them securely.

[El duderino_]

Observing 9977

But can anyone guess what i’m gonna observe later this evening  

A glass of gin, and an oyster

mic will be observing his teams posting for the day. Isn’t that right, mic?



Kidding.

I’ll be observing the Lion King in a few minutes 🤣