/biz/ - Business & Finance

>>50748761
>rose

hAHHAHAHZHAHAH YHAHHBAHAAHAHHAH

HAHAHAHAHAAHJAH AHAHHAAHHAAHBAHAHAHAHAHAAHAHBHAHAHAHAHAHHAHAHBAHA


>He fell for obvious 4chan scams

GHAGHAHAHAHAHAHHAAHAHAHHAAH

dont tell me you bought ftm too

>>50748774
pls no bully T-T

>>50748774
so whats good bitch?

What stops them for putting a clandestine Wi-Fi transceiver in it, connecting to any nearby open hotspot, that will trigger in 2033 August 24 10:48 onwards to transfer all funds to the maker?

>>50748761
The new Nano S+ just came out a few months ago and I love mine. Feels safe and secure, more than I can say for Coinbase these days.

>>50748882
Coinbase just made a deal with Blackrock. It won't go away anytime soon.

>>50748761
Yeah, anyone who says otherwise is a poorfag. They aren't expensive and the sooner you get it the better. Just be sure to never enter the seed phrase fucking anywhere and don't get too comfortable with blindly signing every fucking transaction because it can't save you from user stupidity.

>hurr just make a paper wallet

ok faggot just buy and hold your crypto instead of actually fucking using it.

>>50749821
>Just be sure to never enter the seed phrase fucking anywhere
What do you mean exactly? Can you explain please? I am autismo maximus

>>50749846
When you get your hardware wallet, it will generate a new seed phrase for you (if it doesn't you got fucked). Don't import this phrase into metamask or whatever the fuck, use your ledger connected to metamask if you wanna transact with it. Don't store in a fucking text file on a flash drive or some shit, the moment your seed phrase touches a keyboard you should just consider it burned. Copy it down somewhere physically. The point of the hardware wallet is that the seed phrase is locked down and secured from ever being leaked from the device. The only time it should be used is for restoring access on another hardware wallet or keeping a backup Ledger.

>>50749821
>>50749947
thanks anon, sounds pretty smart tech

>>50748761
Wanted to swap my rose in yuzuswap but couldn't connect ledger with oasis to metamask

A question for the other paranoidbros:
If I was going to store my seed phrase broken up across multiple physical locations, how much of the seed phrase can I allow to be compromised without opening me up to brute force attacks?

Let's say I break the phrase up into 3 locations, with each location having 2/3rds (16 words) of the phrase. That way I can access my seed phrase with any two of those fragments, meaning if one of them is stolen or burns down I won't lose everything.
Can a wallet be brute forced with 16 words?

Is there anything else I can do to make it more secure? For example keeping the words in a random order, and each location having a key that translates the order for the other two.

I have a Trezor and a ledger. Bought my ledger last year. The downside is the limited space. Only has memory for 3-4 apps.
The new version fixed that apparently.

Try to use my trezor as much as possible but some chains/wallet only work with ledger.

Overall I prefer the Trezor because it’s Open source and has better ui.

>>50750224
Look up shamshir secret sharing sharing. It’s a better way to distribute the phrase over Several locations.

Bruteforcing the remaining 8 words is borderline impossible if you don’t have Access to the world’s biggest bothers 24/7, it’s 2048^8 possible combinations. There are resources to check how long it takes.

>>50750320
Thanks, I do remember hearing about Shamir secret sharing from the second whitepaper, but I hadn't thought of it for this.
I'm going to keep it all completely offline though, because I'm willing to take a hit to usability for the increased security. But if there's a way to do Shamir secret sharing with paper (i.e. writing down encrypted values or something) then I'll consider it.

>>50750320
best way to implement shamir?

>>50750224
Just copy down the seed phrase except one word, and memorize that word.

>>50750404
That last word would be extremely easy to brute force.

>>50750360
The Vitalik way is pretty easy to implement on paper: decrypt dot co/7104/vitalik-buterin-secret-store-seed-phrase-key-recovery

>>50750419
Do you have 7 figs? If not, no one would bother to brute force your wallet.

>>50750445
I have 18k LINK, so I will soon.

>>50750460
lets not make this a schizzo bread

I prefer the tangem wallet. Anyone else use these? I use it to store my most valuable assets, like XRP and 0xMR. There are no seeds so there is no risk of theft. You just have to keep the cards safe.

>>50750224
why not just add a passphrase that you can just remember and never write down? that way even if someone has your seed they dont have your funds and a seedphrase is easier to remember since you set it up yourself

>>50750445
dude there are only 2048 possiblities if the last word is missing
thats not even hard to crack you could literally do this shit by hand

>>50748761
I'd rather keep it on the exchange than risk losing or breaking that fucking thing

>>50748825
Becoming a bear and shorting everything.

>>50749947
I want a hardware wallet because I'm planning on buying $10k worth of BTC, but the idea of losing it terrifies me.
Is there a good youtube tutorial for using these? What about house fires?

>>50750953
talk to me like im an idiot??
lets just pretend

>>50748861
A Faraday cage

>>50751740
what stops them from telling you they made a faraday cage, when it would dissolve at said date.

you put too much trust in black box designs bro.

>>50748958
I literally made a coinbase account recently because of some bullshit with verification on binance and they announce this shit. What exchange should I use?

>>50750953
>t. euphoric bear

My ledger nano s+ arrived today. It's going to be nice sending crypto to it later knowing it will be stored securely by me

>>50748861
real schizo hours

>>50749947
This is the most important advice you will get OP. Als don't store it as a photo or in an email or note etc. Literally have it nowhere any digital device that isn't your hardware wallet itself. Ledger and Trezor both seem good. Ledger has the secure chip but comes with a certain extent of trusting proprietary technology and third party verifiers which I think will be fine but honestly has me a bit worried. The wallets that add a physical custody element seem legit but I would worry about damage, say like a legitimately Carrington Event level solar flare, or just breakage from a fire etc. It would be good to have several types which you spread out across. If you have enough money, it makes sense to spend an additional 200 to secure it even if just for peace of mind. No matter what you do, order it directly from the company, not from some reseller on Amazon or craigslist. With Ledger you should be fine either way in terms of firmware but there could be an unknown exploit people selling on third party sites are exploiting. The Ledger Ledger.fr and Ledger.com I believe and Trezor is Trezor.io.

>>50750445
How would the person in possession of any key that didn't (somehow) seek a rich wallet specifically even know how much you have? Literally any even basic computer could break the last word in less than 5 minutes. You're telling me someone sophisticated enough to exploit your wallet wouldn't spend 10 seconds to run a program in the background of their computer for 5 minutes even if it only made them a few hundred dollars (assuming people with hardware wallets store more than the wallet's retail price on it)? That is stupid beyond measure.

>>50751740
If you keep it in a Faraday cage it becomes completel unusable for yourself if we are talking about a Nano X. The second you go to use it it would make the time you kept it in there meaningless and all you would have done is wasted money on a Faraday cage. So you would effectively be using it to generate the seed and nothing else.

or: You seem to have mistyped the CAPTCHA. Please try again.

4chan Pass users can bypass this CAPTCHA.

>>50751420
it doesnt matter if you lose the hardware wallet, there are no coins in there. the seed phrase (private key) is what matters. think of it as a cloud email password, if your computer burns you can still access your emails from anywhere in the world where there is internet if you have your password, same with your private key.

encrypt the private key and put the file on different usb keys is different places.

When ledger db leaked I was able to locate the home address of every ledger owner in my city.

>>50748761
Yes, I recommend the Nano S plus. It does everything you need, is compatible with most cryptos and has more storage space so you can install more than 3 apps at once, unlike the Nano S non plus where you have to always install/uninstall drivers if you want to use it for more than 3 chains.
I got mine recently and it feels good and stable.
The Nano X is just more expensive for useless features, so I wouldn't recommend that.

Posting my ledger pasta:
1. Don't buy from 3rd parties to avoid tampered devices. Look for signs of tampering when unboxing.
2. When setting up make sure you get the seed words from the device, not from a prepared paper. If the words are premade, someone else has access to every crypto you send to the ledger.
3. Write down the keywords on paper and store it safe from theft (a safe), elements (fire and water proof) and effects of time (corrosion, bad ink/paper). Treat it like gold.
4. NEVER share these words to anyone EVER. If any customer service, email, update, dapp, website, etc.etc. asks for them, they are trying to scam you. Access to these words = access to all crypto.
5. Never type the words on a computer, take photos of the words or store them digitally in any form. Don't use printers/scanners, they have memory.
6. Don't overcomplicate the security by adding your own cryptography or passwords you might (will) forget. There is no customer service to recover passwords.
7. Be prepared for memory loss, amnesia and death. Consider writing instructions to accessing funds, either to your future self or to your family.
8. Be careful who you talk to about your crypto portfolio/storage. Words spread.
9. When updating firmware make sure the seed words are safe (as they should always be). There have been cases where data gets erased in an update.
10. Three wrong password tries erase all data from the device.
11. If your ledger's data gets erased, you can recover from the seed words. If your ledger device gets lost, you can recover from the seed words to a new device.
12. If you lose your seed words, all your crypto are at risk. Move them to other addresses, not controlled by the seed phrase you lost. You can later generate new seed words from the ledger and store them there.
13. Read from ledger website about security.
14: Purchase the ledger to a PO box. Using temporary emails and phone numbers might also be nice in case of DB breach. Ledger has a history with this.

>>50748761
That depends in you anon and I just prefer private wallets like trust wallet and meta mask. So far, all my assets like xpress, vet, uni, atom, icx are safe on my wallets. Just keeping my 12phrase ofc.

>>50748958
I heard it.

>>50754292
Your assets are poor.

>>50748761
I've got the NGRAVE ZERO, a bit expensive but there is nothing as safe at this. 100% offline

>>50755478
You just don't know what you're talking around anon. I did my personal research before investing that. Don't be a stupid goat.

>>50750445
3 wrong guesses and it locks your ledger

>>50753628
I sent my ledger to my workplace and used a fake name for ordering

>>50751914
It just arrived and I set it up. Comfy

snake oil, not needed
just use a password manager
i am not running an exchange or w/e

>>50750224
If you were going to do this I would get a Keystone One wallet or Trezor instead of a Ledger. When generating your wallet you can create backups with it using Shamir's Secret Sharing instead of a Seed Phrase. (typing this on a Trezor is a pain in the ass so get a Keystone if you go this route imo).

https://en.wikipedia.org/wiki/Shamir%27s_Secret_Sharing

You'll have a LOT more words to store but you can configure it any way you want to satisfy paranoia. You can make your 3 copies of entirely different phrases (20 each) and require 2/3 for recovery. Don't split your seed phrase, it'd still be unlikely that someone can brute force the other half if you split it but you're creating complexity that will potentially backfire with the setup you're planning.

>>50750404
Don't do this. If you want something similar to this but not moronic as shit, use the Passphrase function on your hardware wallet. It allows you to generate an entirely new set of wallets from the same seed phrase with whatever the fuck password you want. So in order to access those wallets they need to have your entire seed phrase AND know/brute force your passphrase as well. It's easier to brute force a single word in a seed phrase than ilovemymom42069

>>50750946
if it breaks you just get a new one, the seed phrase is what is important

trezor for bitfucks
ledger for altcoins
metamask for shitcoins
ignore any free coin that may appear on it
safety is your best investment *tips fedora*
/thread

>>50750946
>2022
>thinks the cryptos are stored in the device

>>50751420
go DYOR on these very simple aspects of how blockchains work
the answers are readily available
before you spend a significant amount of money (to you) on anything in this area you should understand your investment and how security surrounding it works

Get a keystone wallet or coldcard

>>50750445
Why not just have multiple paper wallets to offset the 7 figures in one wallet and not become a target?

>>50748761
Ledger is based and secure. I'm anticipating Railgun's hardware wallet support for it to turn the privacy level up a notch.

>>50749947
>Don't store in a fucking text file on a flash drive or some shit, the moment your seed phrase touches a keyboard you should just consider it burned.
>Copy it down somewhere physically.
Hard disagree, and I'm a very security-minded software dev.

A veracrypt USB with your seed phrase on it is fine. The chances of some super-secret Russian keylogger malware stealing your seed when you enter it is likely much lower than someone getting access to the physical seed phrase you wrote down.
And if you're really paranoid about it, just use a bootable Linux USB to do your business.

>>50754292
Based. I store my assets like ORE, UNI, NEAR, and ETH on my ledger though. It's safer that way.

>>50756466
It doesn’t “””lock”””, it resets. It’s entirely different

>>50761626
Hard disagree, and I'm a very paranoid schizo.

There are so many attack vectors here. Everything from a malicious keyboard to a keylogger on your computer, to your OS keeping some kind of buffer/log. Never put anything sensitive into a computer that doesn't need to be there, and that's doubly true for computers that are connected to the Internet.

Safety deposit boxes really aren't that expensive. Everyone here has over 6 figs in crypto, it's a small expense. If you want to keep it at home, there are pretty damn good safes available for not much money too.

>>50763917
>safety deposit box
>trusting a physical third party

>>50763947
See my other posts for my proposed solution to that. The next step is to try to figure out how to get Shamir secret sharing working with words rather than numbers.

On your computer, you're trusting the developers of every single piece of software and hardware that interacts with your seed phrase. And I guarantee that none of those underpaid wageets give a shit about your security to the extent that the bank cares about your deposit box.

>>50763917
just buy a very cheap laptop and never connect it to internet. install v.crypt from a usb key. encrypt from there. then keep the laptop in faraday box. problem solved. even if there is a keylogger it will be never be able to connect to internet to transmit it.

>>50748761
Pro tip: don’t buy a used one.

>>50765554
Or instead of a "very cheap laptop", you could buy an even cheaper hardware wallet. And instead of a faraday cage, you could use a safe. Genius idea anon.

>>50763917
See I'm much more paranoid about a physical copy of my seed phrase. I don't own an uncrackable, indestructible safe and I don't trust 3rd parties with my stuff.

You can mitigate pretty much any risk of software snooping with a fresh bootable Linux USB and no connection to the internet.

>Ledger
Reminder that their incompetence led to 250k customers' names and addresses being leaked and they tried to cover it up for half a year

At least get a Trezor

>>50767530
Don't be disingenuous. Trevor also had user info leak which lead to a widespread phishing campaign for anyone who had their addresses registered with them. Trevor is slow as balls to update and leads to a fuckin of incompatibility issues sometimes for months (see how long they took to update for EIP1559) while Ledger is faster. That being said they're both good devices but shitting in one for a database leak and not the other is just silly.

That being said I prefer the Keystone to both because I like actually seeing what the fuck I'm signing and not typing my password with single button presses like I'm using a fucking beeper. I own several hardware wallets and Keystone is the most user friendly and convincing imo. Wanna get a Grid+ Lattice at some point soon.

>>50767629
Pic related.

>>50765554
Cool, now connect your wallet to a DEX.

>>50748761
Just be aware that you are connecting to ledgers servers. So you have no privacy.

>>50753628
Nice for nig-, Norwegians, to kill in Minecraft for the monies. Also, the tax maggots.

>>50768853
How are they connecting to ledger servers? You can use them offline no?

>>50769293
You have to use ledgers servers. They have your addresses and IP. Also there is no coin control. You have security but no privacy.

>>50769387
Wtf thats nogo, apparantly they store ips for five fucking years lmao

And i just wanted to order a nano s+, no thanks

>>50750953
>Becoming a bear and shorting everything.
they never post shorts

>>50767530
>Ledger leaked data of customer due to Ledger fault
How many fucking times will this lie be made? Ledger uses Shopify. Shopify gives permissions to every store on its platform to all of its employees. This is how two employees in the Philippines sold all customer data from Ledger. Nothing about that was the fault of Ledger since Shopify doesn't tell their merchants this. Yes, when I worked at Shopify I could log into any Shopify store and see everything about it from the internal dashboard without restriction.

Also Trumps Shopify store was banned because someone at the Trump rally wore a "Camp Auschwitz" T-shirt to the rally. The lead Jew, literally named Finklestein was crying in a townhall about his family dying in Auschwitz saying "that's why we had to ban Trump"

t. former Shopify employee laid off in the recent bullshit cuts.

Honestly my bags of ETH and MATIC are going to make me incredibly filthy rich this next bull run. If Ledger is not safe then I'm fucked anon

>>50750953
you've never shorted a thing in your life

>>50748825
Projects that delivered*
(*) Does not apply to copy & paste pajeetery

>>50754292
>>50761757
>holding UNI, a farming token
you guys are retards

>>50751819
>Made a CB account because of binance KYC
You will soon work at KFC (Kentucky Fried Costumers)