Bitcoin Forum
November 14, 2024, 05:03:46 AM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Poll
Question: Do you need an easy security solution for bitcoin? (described below)
yes - 243 (69.8%)
would be nice but not urgent - 81 (23.3%)
not at all - 24 (6.9%)
Total Voters: 348

Pages: [1] 2 3  All
  Print  
Author Topic: [POLL] Do you need an easy security HOWTO (+ operating system)?  (Read 8822 times)
aiwk171 (OP)
Jr. Member
*
Offline Offline

Activity: 134
Merit: 1


View Profile
June 19, 2011, 12:17:55 PM
Last edit: June 19, 2011, 08:25:06 PM by aiwk171
 #1

After writing the HOWTO on 100% security, a lot of you requested I do the same thing in a more comprehensible way, or that I provide a solution for absolute beginners.

So here's the deal: I have to know if you are serious enough, and if this is worth the trouble. Because if I do this, I'll do it properly, i.e I will test everything I write, there will be an easy guide for Linux, Mac and Windows and I will probably make a one-click solution, which will consist of a specific LiveCD, which already has bitcoin installed, and which will allow you to boot up a secure system and make transactions, without _any_ configuration necessary.

I did personalized LinuxCDs before, so this will definitely do-able. The result will be a solution for people with zero computer knowledge.

However, since this will take time and effort and since anybody can just click yes on the above poll, I'm asking for donations if you are _really_ serious about having an all-in-one solution. You don't have to send me anything at all, it's up to you.

Here's my hat: 16VD78R8nxqJGesE7E9KS6A8TikQQpKNm5

If you happen to find this proposal insulting (which is, that I don't want to spend a week making something that nobody uses), feel free to insult me in the comments below.

BitcoinPorn
Hero Member
*****
Offline Offline

Activity: 630
Merit: 500


Posts: 69


View Profile WWW
June 19, 2011, 01:34:17 PM
 #2

I have been "into" Bitcoin for a bit (lulz) however I have not obtained any Bitcoin (I don't want to put my number in my sig and ask for donations, I do not want to believe that will work based on just the number in the signature.. but whatever).   Point is, if I had something, I would throw it your way in support of this.  People better hope that you finish this out and/or it inspires someone to create one as well. Thanks.

jasonstx
Newbie
*
Offline Offline

Activity: 53
Merit: 0


View Profile
June 19, 2011, 01:39:11 PM
 #3

I was thinking more of a thinapp solution for windows.  Application isolation pretty much takes care of any trojan problems as anything outside the container can't see inside.  Not sure of the licensing implications though.
devrandom
Newbie
*
Offline Offline

Activity: 26
Merit: 0



View Profile WWW
June 19, 2011, 05:54:49 PM
 #4


I did personalized LinuxCDs before, so this will definitely do-able. The result will be a solution for people with zero computer knowledge.



Would you be open to using the Gitian (https://gitian.org/) build method for the live CD?  It would allow users to validate the distribution by having it built and signed by multiple developers.  I can help with this.
BouerBouer
Newbie
*
Offline Offline

Activity: 28
Merit: 0



View Profile WWW
June 19, 2011, 07:10:30 PM
 #5

The donation I'll be sending is pretty pathetic, but it's all I've got right now or I'd send more, sorry. Sad

Anyway yeah, please do, it'd be really appreciated. If you were to choose a Linux Distro I'd recommend BackTrack, as it's a distro designed spesifically for penetration testing, and therefore, security.
aiwk171 (OP)
Jr. Member
*
Offline Offline

Activity: 134
Merit: 1


View Profile
June 19, 2011, 08:15:47 PM
 #6

Would you be open to using the Gitian (https://gitian.org/) build method for the live CD?  It would allow users to validate the distribution by having it built and signed by multiple developers.  I can help with this.

Yes, I would be open to it. I didn't know about gitian, but I'm looking into it as we speak. If you want to help, my email is aiwk171@gmail.com, though I'm busy until Tuesday, so my apologies if my replies won't be as swift as they should be.

The donation I'll be sending is pretty pathetic, but it's all I've got right now or I'd send more, sorry. Sad

Anyway yeah, please do, it'd be really appreciated. If you were to choose a Linux Distro I'd recommend BackTrack, as it's a distro designed spesifically for penetration testing, and therefore, security.

Don't apologize, you have my thanks. And as they say, if 50 people contribute just a little, you still get a lot of stuff done by the end of the day.

I have to check how well BackTrack does hardware detection, since usability is more important than penetration resistance. It won't be meant as a day-to-day OS. I'll clarify when I have the time. Thanks to everybody so far.
BouerBouer
Newbie
*
Offline Offline

Activity: 28
Merit: 0



View Profile WWW
June 19, 2011, 08:36:04 PM
 #7

Don't apologize, you have my thanks. And as they say, if 50 people contribute just a little, you still get a lot of stuff done by the end of the day.

I have to check how well BackTrack does hardware detection, since usability is more important than penetration resistance. It won't be meant as a day-to-day OS. I'll clarify when I have the time. Thanks to everybody so far.

Well, that's the best part. The latest version of BackTrack, BT5, is based on Ubuntu 10.04, and so hardware detection and usability shouldn't be a problem. Smiley
aiwk171 (OP)
Jr. Member
*
Offline Offline

Activity: 134
Merit: 1


View Profile
June 19, 2011, 09:13:42 PM
 #8

Well, BackTrack it (probably) is then, since my first choice was Ubuntu anyway. This is nice, since it might save some hassle with the encryption tools.
EmilyClark
Newbie
*
Offline Offline

Activity: 14
Merit: 0


View Profile
June 21, 2011, 09:16:40 PM
 #9

Not sure what the need for a livecd is.. can't the client just encrypt your wallet?
b1tc01n_wh0r3
Newbie
*
Offline Offline

Activity: 17
Merit: 0



View Profile
June 21, 2011, 10:21:39 PM
 #10

Not sure what the need for a livecd is.. can't the client just encrypt your wallet?

Don't think client encryption would be enough though - there will always be a hole in the encryption somewhere.
aiwk171 (OP)
Jr. Member
*
Offline Offline

Activity: 134
Merit: 1


View Profile
June 21, 2011, 10:37:14 PM
 #11

Sigh, so I'll repeat myself: encryption won't do shit, since the file has to be stored decrypted in RAM in order to be actively used. So only a sterile system will guarantee safe interactions with your client.
b1tc01n_wh0r3
Newbie
*
Offline Offline

Activity: 17
Merit: 0



View Profile
June 21, 2011, 10:43:00 PM
 #12

Sigh, so I'll repeat myself: encryption won't do shit, since the file has to be stored decrypted in RAM in order to be actively used. So only a sterile system will guarantee safe interactions with your client.

+1

After my righ pays off, buying a small crappy netbook just for the client, plus wallet stored on other locations too.
Trader Steve
Hero Member
*****
Offline Offline

Activity: 836
Merit: 1007


"How do you eat an elephant? One bit at a time..."


View Profile
June 22, 2011, 12:28:18 AM
 #13

Count me in. I'm sending over a donation now. For what it's worth I'm using a Macbook Air with no CD drive so I'm not sure if this can help me. The more "dummy proof" we can make it the more people will adopt bitcoin and help us build a stronger market. Thanks!
aiwk171 (OP)
Jr. Member
*
Offline Offline

Activity: 134
Merit: 1


View Profile
June 22, 2011, 05:51:10 AM
 #14

Count me in. I'm sending over a donation now. For what it's worth I'm using a Macbook Air with no CD drive so I'm not sure if this can help me. The more "dummy proof" we can make it the more people will adopt bitcoin and help us build a stronger market. Thanks!

Wow, got your donation, didn't expect as much. Thanks!

It will be bootable from a USB-stick, in the meantime just make sure you don't install anything you don't trust. And you might want to use flashblock in your browser if you don't already.
SlipperySlope
Hero Member
*****
Offline Offline

Activity: 686
Merit: 501

Stephen Reed


View Profile
June 22, 2011, 05:55:33 AM
 #15

I would like the reference bitcoin client to strongly encrypt its wallet.dat file and make me enter a password to use the client application.  I would like computers and mobile devices hosting bitcoin clients to be compliant with Trusted Computing so that I do not have to worry about malware and keyloggers.
qualia8
Full Member
***
Offline Offline

Activity: 237
Merit: 100


View Profile
June 22, 2011, 06:12:48 AM
 #16

Donation sent.  This would do a world of good, spreading BTC.  Security worries are the #1 concern and most everyday currency users -- think about it, that is the target demographic! -- are not comfortable with current procedures.
aiwk171 (OP)
Jr. Member
*
Offline Offline

Activity: 134
Merit: 1


View Profile
June 22, 2011, 05:51:39 PM
 #17

Donation sent.  This would do a world of good, spreading BTC.  Security worries are the #1 concern and most everyday currency users -- think about it, that is the target demographic! -- are not comfortable with current procedures.

Received, thanks a lot for the big sum! I'm happy to see this gaining a little momentum

I would like computers and mobile devices hosting bitcoin clients to be compliant with Trusted Computing so that I do not have to worry about malware and keyloggers.

So would I, but that's fairyland at the moment. Well, OSX and Linux are trustworthy enough if you take a little care.
BitcoinPorn
Hero Member
*****
Offline Offline

Activity: 630
Merit: 500


Posts: 69


View Profile WWW
June 22, 2011, 08:05:12 PM
 #18

Sir, you should start a little Youtipit page for this project.   That way you have a little landing page without having to create a full site just yet, and something to put in your sig that would have a little graphic or something.   I did one for my site ( http://www.youtipit.org/t/J3470 ), but here is an example of one that might be more toward what you are going for ( http://www.youtipit.org/t/J2960 )

Your project actually fits the whole site/theme/usage of Youtipit and Bitcoin that I think could benefit yourself and the program.

Glad to see this progress in a positive way, I never get any donations because I love boobs lol

cothoms
Newbie
*
Offline Offline

Activity: 14
Merit: 0


View Profile
June 22, 2011, 08:20:42 PM
 #19

You should actually do this and sell it as a product.  No doubt several people would be willing to pay for this, and it would help the community a great deal.
aiwk171 (OP)
Jr. Member
*
Offline Offline

Activity: 134
Merit: 1


View Profile
June 22, 2011, 10:06:10 PM
 #20

You should actually do this and sell it as a product.  No doubt several people would be willing to pay for this, and it would help the community a great deal.

I had this idea as well. We'll see, I'd prefer to release everything for free though. Maybe I'll sell preconfigured USBsticks.
Pages: [1] 2 3  All
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!