/biz/ - Business & Finance

>>14051323
I put all my coins on binance as they have an insurance fund

>>14051323
i have it tattooed on my foreskin with ink only visible under uv light.

>>14051323
>open Ledger Live
>freezes and crashes
I think they are extremely safe, cant even get to em.

>There are niggers on /biz/ who don't have a safe at home
I'd like to see them get through 6mm of hardened steel.

>>14051323
Safely on shady exchanges

>>14051323
>buy overpriced trendy hardware
>hardware breaks
>ohfugg
>wat do

>>14051631
>What is recovery seed.

How fucking stupid are some of you people on here ?

>>14051770
>buy overpriced trendy hardware
>has same features as paper wallet

>>14051323

Mine are in a MEW wallet with Keystore file inside a VeraCrypt container on 3 separate USB drives at separate locations with extremely verbose passwords as well as my private key written on paper in a place only I know.

I don't trade with that wallet so don't need a meme $50 USB stick with a Chink backdoor in it.

>>14051614
that would take about 10 minutes with an angle grinder

>>14051614
It would take like half an hour with a 1mm cut off disc.
Plus its a big target

>>14051795
>$100 is so much for the convinience to store my coins in cold storage.

Fucking kill yourself faggot.
Still doesnt explain your retarded brains thought all funds are gone should the ledger fail. Kek. Gp learn some more kn reddit and then come back.

>>14051880
>>14051889
hivemind

>>14051770
I really don't get how people cannot understand the most basic concepts of this. The hardware device itself is virtually unimportant in the grand scheme of things. It's the seed phrase that's of the highest importance. The hardware device is replaceable. What part of this concept are these faggots not getting. I mean it's really not rocket science. Are these reddit fags or something.

>>14051889
it wouldn't take that long if it's just steel
there are these boxes that use steel cement and plastic sandwiched now that will fuck up the grinder it will fuck up diamond saw blades and most drills.

>>14051932
>The hardware device itself is virtually unimportant in the grand scheme of things
that is why i say again and again and again. why buy it? it's just a liability.

>>14051932
Stop selling your fancy USB stick Jew

>>14051932
Its because they literally think the coins are stored on the ledger.

>>14051910
>”cold storage”
Lol what babble. It’s no more cold than a piece of paper. And now you have a lifetime subscription to the merchants who memesold you your trendy piece of plastic kek, oof good luck

>>14051614
That safe should be your decoy. Your real stash should be somewhere nobody would ever look.

>>14051981
True desu. That would also work well if you ever got robbed and were forced to open the safe

>>14051937
Its hardened steel like 4140 or similar, 6mm will take a while. Plus it probably bolted down, and a burglar probably wouldnt bring in optimal tools

>>14051973
Imagine being this fucking retarded.

Care to stop changing subjects and explain what you meant by implying all funds are lost once the hardware fails you absolute stupid fucking cunt.

>>14051949
>>14051956
Go ahead and keep your private key on your computer. If you don't get by now what benefit a hardware wallet provides you, there's nothing else to say. Don't buy one.

>>14052013
> Imagine being unable to encrypt private keys using gpg on a clean laptop

>>14052002
Woah calm down m8 don’t worry I’m sure when your trendy piece of plastic breaks you can always get a new one at the goy store

>>14051973
>coin is stashed safely on paper wallet
>great! No one can gain access to my private key but me
>better never move my coin and potentially have the security of my private key compromised

What are paper wallets again besides garbage waiting to burn in a fire?

>>14051910
This dude is coping so hard his brain is melting

>>14052013
>Imagine being unable to encrypt your private keys using gpg on a clean machine then save it on 3 copies of durable dvdrom

>>14052022
Well I mean, yeah, of course you can. But there's still a remote chance your laptop is not 100% secure. Can you be 100% certain your laptop is "clean"?

>>14051910
You're either trolling or you're a complete dumbass. In the case of the latter, the Ledger or any other hardware device is irrelevant, you stupid faggot. It's the seed phrase that's all important. The device can die in a fire and it wouldn't matter as long as you have the seed phrase. All it is is a vessel that holds your seed phrase. You're too stupid to be in crypto. Sell all your coins and go back to r eddit.

>>14052057
You can't be so sure there isn't some hardware backdoor injected in your fancy USB disk in chink factory either

>>14051910
Oops. Directed to the wrong person. That was meant for the retard.

>>14052022
>make fun of a $70 usb wallet
>generate muh keys on a safe offline laptop (costs more than $70)

The absolute state of you paper wallet brainlets.

>>14052030
Lol retard hardware wallets offer zero extra private key security

>>14052075
Right. So then what is 100% sure? Nothing really, right. We can only try to be more secure. Is your clean laptop idea with encryption a good idea? Yeah. Is a hardware wallet a good idea? Yeah.

>>14052091
Enjoy getting your unencrypted recovery words stolen then

>>14052073
You’re literally agreeing with me you fucking ape. Anon paid 100 shekels for a piece of plastic

>>14052097
I am sure there's no one targeting random laptop manufacturers for stealing private keys
While it's very likely there are already bunch of hackers trying to exploit the manufacturer of your fancy USB stick

>>14051323
"reseller"?
that's not smart.

I know these things ain't cheap, but why take a chance?

>>14052013
>>14052057
So this is the market for hardware wallets.

>>14052091
You can always dualboot linux from an encrypted partition.

Its almost 2020 if you niggas cant keep your shit secure, crypto or no crypto, theres no hope for you in the near future.

>>14052115
Yeah I know. I replied to you by mistake, that's why I deleted it. That was meant for the retard. Sorry.

>>14052116
So what is your solution then? How do you keep your key as secure as possible?

>>14052150
remember it in your brain my dude
or engrave it on a bit of metal, vacuum sealed box, go bury it in your dads backyard

>>14052158
Good point.
Actually did the engrave to metal part.

>>14052013
i guess there are some people that are too stupid for crypto

I think the point is: Not everyone buying crypto is a Linux security savvy expert like you are. A lot of these faggots are probably on their shitty unpatched Windows home computers doing this. Of course this raises a second question whether these people should even be in crypto, so...

>>14051323
you can hack it, but only if you to physical access to it. remember to keep the seed somewhere safe just in case

>>14052000
i have used angle grinders on 6mm spring steel the hardening goes away the moment it gets red hot then it gets yellow how and practically melts. in the end it's just mild steel.

I thought one of the points of crypto was rhat you no longer had to physically carry your money and blacks couldn't rob you anymore

>>14052222
fucking checkem

>>14052188
Everyone should be in crypto and everyone should have basic knowledge of security. Its really as simple as spending an hour watching youtube videos.

>>14051349
And get hacked every month

>>14052252
There's no one going to compensate your losses from a hack event except for Binance is there? If you have large amount of crypto like a billion you shouldn't rely on third parties including the manufacturer of hardware wallet anyway.

>>14051614
lmfao what an idiot
just write your seed into a basket weaving tutorial book and leave it on your coffee table

>>14052293
that is what i try to tell all safe fags.
they are buying hours at best.
if you use proper protocol with crypto you got quintillion years of security. no safe ever made can even give you more than a day.

>>14052022
The problem with this is you need to take a heap of precautions every time you want to access your coins, you make a mistake once and your wallet could become Compromise. With a hardwallet you do need to worry about shit like this, I could literally use my hardwallet on a infected computer and still be safe.

>>14052364
Low end users like will become a victim of massive hardwallet hack event coming in the next bull run.

>>14052364
>I could literally use my hardwallet on a infected computer and still be safe.
not exactly true. i have found a few possible attack vectors easily exploited in the client code if your pc is compromised you are not safe at all.

why dont yall just use exodus mobile?


seriously.

or load em up on your coinbase account.

they accept all erc 20 tokens


better than keeping on binance

i keep about 5k link on exodus mobile
5k link on coinbase
5k link on binance

>>14052433

>>14052433
t. nopants

>>14052448

>>14052397
You talk shit, if this was true why would you not report it to ledger and receive a huge Bounty award.

>>14052489
*reward

>>14052096
They do you fucking brainlet. That's the whole point. You could plug it into a computer filled to the brim with malware and other shit and still have peace of mind.

>>14052397
Seriously can’t stand faggots like you, here is a easy safe way to use your crypto to help with Adoption and here are faggots like you being a fucking grandpa about it and spreading fuckingn lies
>oh my paper wallet works just as good as this shit, and Muh muh I could fucking hack this
Fuck off brainlets

What's the deal with this daily hardwallet shills?
Don't tell me the Jew actually paid for the campaign lmao

>>14052489
>>14052556
alright here is a few without the effort to make it a complete list...
1) the device itself is a physical attack vector the tamper resistant chip is easily disassembled in practice using fuming nitric acid and acetone and the eeprom an be read revealing the private keys completely bypassing the soft protection of any retarded pin.
2) the client sends the transaction for signing to the device but does not actually check if it gets it back unmodified.
3) the change address is not shown on the device upon signing and while normally would be a hierarchically derived public key it can actually be replaced by the compromised pc client or a malware injected to the driver level to the attackers.

>>14052580
dunno but the actual fucking retards are hell bent on misusing hw-s. the best use case for one is to use it as hot wallet with your monthly spending budget. it's possibly the most retarded costly and insecure solution for a cold storage.

>>14052622
The changed address would show on the device, that’s why it’s important to always check the address on the device before confirming.
And the best fucking shit you can give me is if someone physically steals the device. Same shit could happen to a shit paper wallet but just a lot more convenient to take the coins once it’s stolen. The absolute state of you Autistic cunts

>>14052504
it's literally a glorified usb drive. since when would sticking it in a compromised computer be the only possible option you coping hipster faggot. and still it offers no more security than paper.

>>14052857
so you gonna know by look if the change address generated by your client is legit or fraudulent. just by a glance?

face it if you machine is compromised you can't be 100% safe.

>>14052857
change address motherfucker not changed address. you dont see it from what i seen of the operation but even if hou do you cant tell if its yours or not.
>And the best fucking shit you can give me is if someone physically steals the device.
big fucking problem if some retard buys the snake oil security and uses it for cold storeage.

>>14053103
do you dumb cunt actually believe you've solved the hardware wallet ? the fuck are you doing posting on an indonesian music forum then ? go write a paper on it and make money consulting for trezor/nano. but no. youre just a brainlet faggot.

>>14052900
Could you explain what you mean by the pic attached mate.

>>14051393
Based.

>>14051795
With my paper wallet all you need is the private address on it. With my Ledger you can't transfer my funds without my Ledger.

>>14052096
You can't see the private address except on the device itself. Stop being such a cheap faggot and get a goddamn hardware wallet already.

if paper wallets are the most secure option how are marines supposed to stake their linkies, given that staked links need to be in a wallet accessible my metamask?

>>14053206
hardware wallets fill a temporary void and not nearly as secure as claimed that is all im saying hal finneý was workibg on a system that uses the tpm chip on a pc to create a safe environment for a wallet that can not be hijacked by malicious code same will eventually be possible on phones these trinkets are a sideshow and a marketing gimmick.

*firmware update required*

>>14056045
and lastly crypto relies on the practical impossiblity of solving calculations within any reasonable timeframe. that is what makes crypto secure. the moment you start relying on safe boxes and hardware wallets to secure it you have to know are doing it wrong. the beauty of crypto that it is billion trillion quadrillion times more secure than your home safe and it doesnt cost you amything.

Im all in ZIL, and it still has no Ledger app, so I keep it on Binance. Bery safu

What with the ledger shills here?

>>14056099
Based purist

>>14056160
There was a legit discussion where the ledger was decried as a useless piece of metal for people who want to pose as "sirius criptoe investors". Those threads are the result of pure butthurt over those threads.
Paper wallet > hardware wallet

The absolute state of nu/biz/

The entire point of a hardware wallet is THE DEVICE ITSELF IS SIGNING THE TRANSACTIONS INSIDE THE SECURE ENCLAVE.

the only thing the client software gets is the completed signed transaction. THIS IS VASTLY DIFFERENT THAN A SOFTWARE WALLET OR A DUMB FUCKING PIECE OF PAPER. A software wallet is decrypting the private keys and using them in the same user environment that everything else on your computer is running on. The encrypted wallet file is sitting on your hard drive and accessible from. Your low end user account. With a hardware wallet, they keys are never exposed because the transaction is signed INSIDE the hardware wallet. The client is sending the destination address and amount to the secure enclave for signature, and gets a completed and signed transaction back.

Let me break this down even further for you assholes in remedial summer classes.

Imagine your wallet is a checkbook, and your private keys are your personal banker who signs all your checks for you. With a hardware wallet, you are putting your banker inside a cage inside your basement and he can't get out, and nobody can get to him. When you want to make a transaction, you fill out a check with the amount and person you're paying. Then you slide that check to the banker inside the secure cage for them to sign off on. The banker gives you the signed check back through the cage. The banker never left the cage, your transaction is signed, and your banker is still in the cage in your basement.

That's the difference you absolute degenerates. Stop needing to be spoonfed everything. And for fuck sake use Trezor they're open source.

Screencap this for the next spoon feeding session.

>>14056293
>T cool kid hw user

>The absolute STATE of biz
Imagine wasting money for a glorified USB stick when you can just use a paper wallet and have a safer cold wallet

>>14056293
Pearls before swine.

>>14056312
yeah

>>14056312
Wrong. Your paper wallet generator has fucked you over.

https://www.coindesk.com/researcher-discovers-serious-vulnerability-in-paper-crypto-wallet-website

The core of the analysis hinges on WalletGenerator’s original open-source code, available here. Until August 17, 2018 the online code matched the open-source code and the entire project generated wallets using a client-side technique that took in real random entropy and produced a unique wallet. But sometime after that date the two sets of code stopped matching.

The result? The very real possibility that WalletGenerator is giving the same keys to multiple users. To test this, MyCrypto’s researcher ran the generator in bulk and got some odd results.

>>14056346
>using some javascript wallet generator
OpenSSL user here

$50 FREE COINBASE STELLAR LUMENS (XLM) AIRDROP

Claim your free $50 Stellar Lumens (XLM) airdrop here:

coinbase.com
/earn
/xlm
/invite
/p0x8hzwv

Watch the video and take the test.

>>14056346
>WalletGenerator
Lmaooooooooo

>>14056346
>using a website to generate a private key
lel

>>14056387
yeah get it from github use it offline niggers

>>14056293
>THIS IS VASTLY DIFFERENT THAN A SOFTWARE WALLET OR A DUMB FUCKING PIECE OF PAPER
its different alright a pk protected by a strong password is cryptographically secure unlike your hw

>>14056293
While you're not wrong, someone more experienced can enjoy a higher level of security, more options, and not having an order for a crypto holding device under their name and address stored on a shop's database.

>>14052188
> whether these people should even be in crypto
Reddit moonboys I swear, neck yourself.

>>14056312
Imagine being so ignorant you don't know there is a 25th word on HW

the only way to make a proper paper wallet is to use OpenSSL

which only 0.00001% of the world can ever use

if there were no hardware wallet, the crypto industry could never progress

>>14057410
Imagine that is not a retard-tier option

>>14051393
Did you kill the tattooist afterwards?

>>14057452
>>14056387
>>14056376
What is most secure method of creating an eth paper wallet? Mew? Linux? Veracrypt?

>>14057845
I use this on my ubuntu terminal:
openssl ecparam -name secp256k1 -genkey -noout | openssl ec -text -noout 2> /dev/null | grep priv -A 3 | tail -n -3 | tr -d '\n[:space:]:' | sed 's/^00//'

>>14057872
ok, but if im a brainlet can i just open mew on an airgapped craptop, make the wallets, save keystore + pk written down? is that secure enough? im a brainlet when it comes to this

>>14057898
probably but you should always do it on a fresh boot of live os with no writable media attached and reboot after you generated your shit.

>>14057898
as long as it's airgapped - the key is never on a computer connected to the internet - it seems rather secure.

>>14057926
it is but, you should have a recent computer (post 2015), with both quantum based real random instruction set and also make sure copious user input is incorporated to the random pool.

>>14057872
download mew github repo and use it offline during a demo session of a bootable usb, on an air-gaped computer

>>14057926
>>14057919
is taking out the wifi card and any communications peice in a craptop and smashing it to bits, generating everything and then smashing the laptop and melting it into an acid vat secure enough?

>>14057950
it's enough if you never give your live os the wifi password really.

Not sure how could one go about staking links on LP from cold storage though... If metamask is the only way to access LP then your stack can never be cold

>>14051796
You call that safe? I have mine split to 12 different locations across two countries and 3 mediums (paper, usb and rocks). My usb is encrypted with decryption key written on two parts on three different papers. For other papers some of them have parts of my private key written in code I invented and only I understand hopefully, others just have key written in plain text. Good luck guessing which one is which, and in which order they go. For my parts number 7 and 9 i use rocks (plain rocks) on 2 different physical locations. Number of rocks, as well as their shape, color and weight combined with a mnemonic I created based on my second pet's name when I was a child tell me the exact private key part. What If I lose one/some parts, you ask? I have the same thing in a different country, but the code is all different, I'm not stupid lol. Any suggestions how to further increase security? My exgf found one of my papers in my closet when she suspected I was cheating on her for being on my phone all the time (I was checking crypto prices) so I had to dump her and do the whole thing from scratch again because I couldn't deal with such security risk.

>>14057950
Getting rid of your wifi card is considered a good idea frankly. wouldn't smash my computer

>>14057965
i fucking hate my self that i never took an interest in computers as a hobby or even in school.

>>14057975
>he didn't kill his gf
It's like you aren't even trying

>>14051323
these seem completely fucking pointless. In a few years these are going to be a thing we laugh looking back at.
>be late teens crypto trader
>"hold your horses, guys, let me take out my gigantic cyberpunk USB thumb drive and put these shitcoins into cold storage"
>puts on sunglasses and trance music starts playing

>>14057978
you can but it's overly paranoid imo.
i got my entire hardrive encrypted (which i can only recommend as general practice) so even if the live os wanted to mount it, it can't. check if there is internet connectivity (accidents can happen just fucking check it) before starting the wallet generation.
so to me this is just 2 reboots.

>>14053289
he can't.

>>14051323
What do you guys think of using stuff like "shamir secret sharing" or threshold cryptography to split private keys? Loosing a single split wouldn't be disastrous if some scheme like 3 out 5 would be applied.
>https://github.com/iancoleman/shamir

>>14057988
Hahaha noob. You thought fucking roasties was the better choice? Who’s the retard now FAGGOT?

I saved all my private keys into a .txt
then archived it into a .rar with >20 symbols password. Saved it on multiple devises and send via a couple of e-mails. Feel comfy

>>14052433
>use exodus mobile

You know that your privite keys would be exposed to the devs?

>>14051323
Two SD cards, main and backup, lubricated, safely in my urethra. One usb drive in my anus. 5 additional sd cards implanted under my skin. Another sd card in my eardrum.
>imagine not taking care of your data.

>>14051910
All funds are not gone if you break or lose the ledger. You are a fucking retard and should kill yourself.

>>14058270
if you lose it you can pretty easily find all of it gone. same if you get robbed and they take it. even if it stops functioning it can possibly be a security hole.

>>14058249
Also before anyone asks how I piss and shit : I got two tubes connected directly to my organs, they are hanging outside my belly. I just direct them to toilet and do what I gotta do.

>>14051323
anyone that thinks that piece of shit is safer than a cd-r is retarded. literally just burn the wallet and keys to a cd and put the disc in your attic and forget about it. it's read only media. can't be erasd by accident.

>>14051981
Based and red herring pilled.
Pic not related

>>14051323

any hardware is a weak link. It can be lost, stolen or broken. If I used that shit, it would be multiple devises strored in different places.

>>14058289
if you're using LP to stake links, a hardware wallet seems like the safest way

>>14057504

killing is not safe enough
he turned him gay by fucking him and later on married

>>14052188
>whether these people should even be in crypto
if you ever want to make money then this will all have to be simplified for the normans you describe

>>14051973
You need to email ledger and have them explain to you the concept of seed words. You seem to think the coins are actually on the ledger.

>>14056138
Same. I do wish that I could get control of my ZIL again, but I don't trust the new wallets that have come out for Zilliqa mainnet, so I'm keeping them on Binance until I can put them back on my Ledger.

>>14052101
memorize them. It's easy to do that.

>>14058397
doesn't the node have to be active like with ln, i don't know much about link aside fro the idiotic memes.

>>14057988
>i fucking hate my self that i never took an interest in computers as a hobby or even in school.
At least you are not an autistic incel like most of those computer nerds

>>14058954
>memorize them. It's easy to do that.
You will regret this, moron

In another thread on this one anon suggested generating two sets of seed words
Seed phrase 1: this is your main wallet with your main stash.
Seed phrase 2: this is your decoy wallet

1. Set up wallet with seed phrase 1. Move 90% of stash onto that address.
2. If you want to be super cautious, doublecheck that seed phrase 1 is working by using it on a different hardware wallet
3. Wipe wallet with seed phrase number 1 and then re-initiate it with seed phrase number 2. Then move 5% (or whatever) onto it.
4. Secure seed phrase number 1 somewhere offsite
Now you have basically a decoy wallet. Someone steals it and electron microscopes it or whatever, or — and you anons need to fucking take this seriously — comes in an holds gun to your head, or gf’s head or kid’s head or Whatever — you can just unlock decoy wallet and transfer funds while most of funds are safu.

GET THE FUCK IN HERE LEDGER SO! BOYS

>>14059945
>>14059982

>>14056712
>higher level of security, more options, and not having an order for a crypto holding device under their name and address stored on a shop's database

All while having to care about an airgapped untouched hidden personal laptop, and will have to spend time to sign every single transaction off-chain.

>wew you're not programming by using an electron gun to physically flip bits on your hd?
Thanks but no thanks, there is a convenience threshold.

>>14051323
paper monero wallets are the only way.
safe as can be. generate with moneromoos JS generator and you don't even need a machine that ever has to connect to the internet, making compromise nearly impossible if you know what you're doing.
but what do i know, right?

>>14060542
>oh hey anon what's that laptop over there?
>it's just my old laptop, I keep it in case my pc breaks

>oh hey anon is that a ledger?? I didn't know you invest in crypto, brb I gotta get my electrical drill to fix your functioning kneecaps until you tell me the pin code

A "hidden" laptop is a lot less conspicuous, but I will agree that it'll be harder to use, regardless, hardware wallet shills think they're secure, when they're really not. 4-8 digits are not going to protect anything, and the device itself screams "steal me" (and kidnap my owner until he squeals) much louder than a random shitty laptop.

>>14060717
Agree that these “rubber hose” attacks are scary. Again, this is why one possibility is to keep a little bit on the hardware wallet so you can make the transmission, cough up the pin, whatever.

Then have second (or 3rd or 4rth or nth) seedphrase in a safety deposit box, or maybe spread across a few.

Inb4 “why not just use a paper wallet” Yes that is an option, but seems to have its own headaches, e.g. keeping an airgapped laptop just for that purpose.

BTW obviously any security is a tradeoff. Seems to me that another possibility, which doesn’t get discussed enough, is to break your stack up and store different pieces using different tools. Argent wallet looks interesting where they do security through smart contract. Coinbase vault also looks interesting. Both of those put something in where you have 48 hours to unwind a transaction. So, maybe some is in one of those, some in hardware wallet, some in a paper wallet. Don’t put all eggs in one basket and all that.

>>14058001
i just want to reply to this cuck not to worry op has nothing to do with that wallet and the funds are safu on coinbase

>>14061848
also pic related and >>14056169 if you want to check for yourself

>>14051795
I won't lie I thought this until I first played with one of these and honestly it's pretty nice. Software was shit chink stuff, but it worked well enough. My reason for never buying one was because I was fixing one for a customer after firmware almost bricked it.

Hardware wallets are for pussies.
Real chads keep all their coins on binance

>>14052057
It's offline and wouldn't matter even if it was infected.

>>14062195
>I was fixing one for a customer after firmware almost bricked it.
Sorry but who gives a shit if the specific device gets bricked? They are about $70. As long as you have your seed phrase you can just get another and reinitiate it (or wtf its called) with the seed phrase.

>>14062202
Fuck off CZ.

>>14062202
real chads keep it all on bitmex and go 100x long all day every day

Imagine being so retarded to spend $100 for a glorified USB stick that will invite everyone to torture you to get your coins