Bitcoin Forum
November 17, 2024, 06:10:52 PM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: Protecting wallet with Access Protection rules  (Read 1238 times)
Niloo92 (OP)
Newbie
*
Offline Offline

Activity: 4
Merit: 0


View Profile
June 23, 2011, 02:03:36 PM
Last edit: June 23, 2011, 03:35:59 PM by Niloo92
 #1

Hi,
I'm new to this community & bitcoins and so far I love it Smiley
Now, I started mining with a 270Mhash miner
The 270Mhash miner is running 24/7 on my network.
I'm pooling with slush's pool and a payout is comming soon ...
So i'm looking at my security to be sure,

On my server I have McAfee Enterprise 8.8 running to catch the bad things in general, but I'm concerned about a physical theft, or a undetected steal thing (eg; Trojan)

In my McAfee options I have a thing called : Security access protection rules, And I made a new rule that only allows the bitcoin.exe (located with path, so not a random bitcoin.exe can access it ...)has access to the wallet.dat file, I tried the rule by trying to edit, copy delete the wallet.dat and it seems to work. (I hope)
http://img840.imageshack.us/img840/6528/securityh.png
 

the only way a program can still steal my wallet.dat is by copying itself into the program files\bitcoin\ folder to imitate the bitcoin.exe,by deleting the original bitcoin.exe and placing itself in there ...
so here is when the 2nd protection comes in ... all access to the programfiles\bitcoin is denied, only executing is possible (windows startup) & read access
http://img804.imageshack.us/img804/6167/shield2.png

so, the question now is...
Is this safe for a wallet.dat theft  ?
- The Physical computer is not accessible, so you cant boot from a seperate OS to copy it Smiley
- I do trust McAfee's suite, it has a build in security so it can't be disabled on startup etc... so first you would need a trojan that fights the McAfee Suite and disables the whole thing & then copy the wallet.dat
- I think the security rules work, so a trojan had no access to the protected folders/files...
- Also, to disable the rules you need a password ... so even when an evil person has access to the computer, it cant disable the protection...

So the basic question is now, i'm I safe for a wallet.bat theft ?
spare me Smiley i'm a newb for a reason Tongue
Please comment !
Thank you !

Edit: the focus is the safety of my wallet.dat
JoelKatz
Legendary
*
Offline Offline

Activity: 1596
Merit: 1012


Democracy is vulnerable to a 51% attack.


View Profile WWW
June 23, 2011, 02:20:14 PM
 #2

Take your wallet offline. There is no reason for it to be running. Your client doesn't need to do anything to receive a payment.

I am an employee of Ripple. Follow me on Twitter @JoelKatz
1Joe1Katzci1rFcsr9HH7SLuHVnDy2aihZ BM-NBM3FRExVJSJJamV9ccgyWvQfratUHgN
Niloo92 (OP)
Newbie
*
Offline Offline

Activity: 4
Merit: 0


View Profile
June 23, 2011, 02:21:57 PM
 #3

Oh, so the wallet can be offline for months ? and come online to receive all the payments ? (1 month old payments .. ? ) , i'm new Tongue so forgive me !

If Ill take it offline, is the setup a safe one ?
X68N
Hero Member
*****
Offline Offline

Activity: 672
Merit: 500


View Profile
June 23, 2011, 02:37:13 PM
 #4

You dont need the Wallet/Client on the mining PC.

The Pool send it to your Adress, and the best is to earn your Bitcoins with an seperate PC wich is only online when recive or Send Bitcoin.

YOBIT IS SCAM , YOBIT IS SCAM , YOBIT IS SCAM meine Steuerdatei:
https://bitcointalk.org/index.php?topic=612741.msg19244732#msg19244732
Niloo92 (OP)
Newbie
*
Offline Offline

Activity: 4
Merit: 0


View Profile
June 23, 2011, 04:10:45 PM
 #5

But would the security work ?
Thx.
tschaboo
Newbie
*
Offline Offline

Activity: 42
Merit: 0


View Profile
June 23, 2011, 04:39:00 PM
 #6

But would the security work ?

It's much better than nothing. I guess that most simple trojans (those, that don't have mechanisms to work around the McAfee protection) would not be able to get your wallet.dat.

But if you are targeted by someone who really wants your coins this doesn't help too much because if an attacker gets remote access to your machine he might be able to instruct your running bitcoin program to just send all coins to his addresses. So you keep your wallet.dat but it's empty.

Pages: [1]
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!