Post 1939122 by torinemard@bitcoinhackers.org
(DIR) More posts by torinemard@bitcoinhackers.org
(DIR) Post #1938782 by 402PaymentRequired@bitcoinhackers.org
2018-12-12T20:08:20Z
0 likes, 0 repeats
This piece of shit that you need to connect to a fuckin' web app to generate private keys costs 600€ (crappy metal bullshit edition)Upgrading the firmware of the Trezor One is also fun. You first need to unlock the device into their web-app. They needlessly retrieve your public key, and proceed to spamming the internet with your balances ... and THEN you update the firmware.Buy a couple of Coldcards and destroy your Trezors and Ledgers!We can do that every Jan 3rd !
(DIR) Post #1939002 by torinemard@bitcoinhackers.org
2018-12-12T20:17:39Z
0 likes, 0 repeats
@402PaymentRequired I'm about to buy one and am considering two to have a backup device. Trying to learn as much as I can about them so I can jump in.
(DIR) Post #1939122 by torinemard@bitcoinhackers.org
2018-12-12T20:18:49Z
0 likes, 0 repeats
@402PaymentRequired Coldcards that is 😂
(DIR) Post #1939123 by 402PaymentRequired@bitcoinhackers.org
2018-12-12T20:23:34Z
0 likes, 0 repeats
@torinemard I have a video about it. You can check it out.
(DIR) Post #1939141 by torinemard@bitcoinhackers.org
2018-12-12T20:24:10Z
0 likes, 0 repeats
@402PaymentRequired Already did! Thanks for that by the way.
(DIR) Post #1939256 by btcFUD@bitcoinhackers.org
2018-12-12T20:28:54Z
0 likes, 0 repeats
@402PaymentRequired That metal Trezor will go great with $1500+ 2 core Purism laptop.
(DIR) Post #1939405 by 402PaymentRequired@bitcoinhackers.org
2018-12-12T20:34:00Z
0 likes, 0 repeats
@btcFUD Well, I've heard some horror stories about Purism recently...In the Glacier protocol they recommend one crappy 200$ Acer and one crappy 200$ Dell, which is more than enough for paranoid security if follow that thing.So yeah... Purism, Trezors and the Coinkite Clock to check the price....
(DIR) Post #1940662 by BitcoinBelle@bitcoinhackers.org
2018-12-12T21:37:24Z
0 likes, 0 repeats
@402PaymentRequired This is the limited edition metallic one?
(DIR) Post #1940674 by 402PaymentRequired@bitcoinhackers.org
2018-12-12T21:37:58Z
0 likes, 0 repeats
@BitcoinBelle yep. 300 I think...
(DIR) Post #1940701 by BitcoinBelle@bitcoinhackers.org
2018-12-12T21:39:09Z
0 likes, 0 repeats
@402PaymentRequired I have the upmost respect for Alana. And I've had no problems with my devices. I am looking forward to trying out the coldcard though.
(DIR) Post #1940728 by 402PaymentRequired@bitcoinhackers.org
2018-12-12T21:40:42Z
0 likes, 0 repeats
@BitcoinBelle I get that they've made it easy for non technical users, but there are things that are incomprehensible.I hope they get their shit together in terms of privacy...
(DIR) Post #1940763 by BitcoinBelle@bitcoinhackers.org
2018-12-12T21:42:21Z
0 likes, 0 repeats
@402PaymentRequired :) 3 of my very favorite people in security tech in bitcoin since 2012 got me set up with Trezors and they use them as well. But sure, I guess for us non-techie types . . .
(DIR) Post #1940872 by 402PaymentRequired@bitcoinhackers.org
2018-12-12T21:47:27Z
0 likes, 0 repeats
@BitcoinBelle also... it's not 2012 anymore :)I'm new here, but I've done my homework and the chain analytics horror show is nuts!!!If I was a user of a Trezor I'd assume that every single time I connect to their server, the traffic is being registered by someone. If you're lucky perhaps your IP is not tied to your identity, but your PubKey and therefore all your past a future transactions will be known.If one single tx can be associated to you (past or future), you're doxed.
(DIR) Post #1940911 by 402PaymentRequired@bitcoinhackers.org
2018-12-12T21:49:19Z
0 likes, 0 repeats
@BitcoinBelle I'm a wretched newb and I find myself being one of the few people that are extremely alarmed by these facts... ¯\_(ツ)_/¯
(DIR) Post #1942776 by waxwing@mastodon.social
2018-12-12T23:24:56Z
0 likes, 0 repeats
@402PaymentRequired @BitcoinBelle I also don't find trezor's webwallet based usage acceptable. There are other ways to use it.But tbh even if that is avoided, I still wouldn't use devices like this for cold storage, or for say "large savings".It's very tricky. Clearly these devices offer something (to me it's spending/warm wallets). But for non-trivial use, you have to know how to use them without the privacy failure of pinging remote servers.
(DIR) Post #1944138 by BTCHODL@bitcoinhackers.org
2018-12-13T00:53:07Z
0 likes, 0 repeats
@402PaymentRequired @btcFUD What are the Purism horror stories?!
(DIR) Post #1947105 by Rejekts@bitcoinhackers.org
2018-12-13T03:51:58Z
0 likes, 0 repeats
@402PaymentRequired and your take on ledger🤔
(DIR) Post #1950510 by 402PaymentRequired@bitcoinhackers.org
2018-12-13T07:09:26Z
0 likes, 0 repeats
@BTCHODL @btcFUD When you make 8.99$ Taiwanese humidifiers you’ll spend a third of your money in quality controls. Given these extreme low prices and the huge amount of units that you’ll see, if 8% of the units come back to you because of issues... you’re literally rekt.The economic calculation and quality controls with “exclusive” boutique small product lines is different, no matter if you’re selling watches, PCs or guitars.
(DIR) Post #1950857 by 402PaymentRequired@bitcoinhackers.org
2018-12-13T07:26:05Z
0 likes, 0 repeats
@waxwing @BitcoinBelle Even if you use it with the Personal Server... the upgrade procedure AFAIK is only possible through their web-app, and you have to unlock your wallet first (why?!). Perhaps the model T fixes this (I didn’t bother with it), but I ditched my Trezor One as soon as I educated myself and realized what I had been doing.
(DIR) Post #1951061 by 402PaymentRequired@bitcoinhackers.org
2018-12-13T07:36:46Z
0 likes, 0 repeats
@RejektsYou can get a taste of it on my “hardware wallets” video. For a year I’ve been watching the BTChip guys make a fool of themselves in Twitter. I even trolled them a little bit when I was really newb. The app they had before the Live Ledger shitcoin-Zoo show was terrible and buggy as fuck, and when they released the Live shit (by then I’d already ditched Ledger) one of my Ledgers got rekt because of it.So, no! I’m not touching Trezor or Ledger.
(DIR) Post #1953687 by ott0disk@mastodon.social
2018-12-13T10:14:45Z
0 likes, 0 repeats
@402PaymentRequired you can generate yours keys offline and use the restore functionality, also you can use the trezor with other wallet than their web (i.e electrum) although yeah I think you'd still need to use their crap webapp to update the firmware
(DIR) Post #1953762 by 402PaymentRequired@bitcoinhackers.org
2018-12-13T10:21:31Z
0 likes, 0 repeats
@ott0disk which makes it unusable from a privacy perspective...There's not doxing you PubKey "a little bit" or "for a little while".Once you create a wallet in a Trezor, you either never updgrade or assume that you'll be giving your balances away at some point.
(DIR) Post #1953806 by waxwing@mastodon.social
2018-12-13T10:25:48Z
0 likes, 0 repeats
@402PaymentRequired @BitcoinBelle Ah, for upgrade, interesting; I vaguely remember having this experience (hardly ever use my trezor).It's really sad that ordinary users have fallen for HW wallet = safe way to store BTC. I know gmax shares my disdain for the idea of these being appropriate for high security storage, although I think his reasoning is different from mine or yours, on the details.
(DIR) Post #1954340 by 402PaymentRequired@bitcoinhackers.org
2018-12-13T11:16:56Z
0 likes, 0 repeats
@waxwing @BitcoinBelle Yes, you upgrade Trezor ...and you’re fucked.Ledger needs to be connected to their app (after having created a wallet) to install a “Bitcoin app” among the hundred shitcoin-apps that they offer, so I’m not trusting it either.* At least the Ledger can generate the private keys, backup and all the rest just connected to a battery pack. The Trezor One needs to be connected to their web-app to get the seed :)
(DIR) Post #1954672 by Rejekts@bitcoinhackers.org
2018-12-13T11:42:38Z
0 likes, 0 repeats
@402PaymentRequired this is the one problem that seems to be a problem.....secure and easy hardware wallets. It is my biggest fear of being my own 🏦.... and what would you improve on with the coldcard...no flaws🤔
(DIR) Post #1954830 by 402PaymentRequired@bitcoinhackers.org
2018-12-13T11:53:32Z
0 likes, 0 repeats
@Rejekts Trezor an Ledger have been around for a long time and they've proved their reliability in terms of manufacturing and physical endurance.That's the only issue I have with Coldcard. It's a new product, limited run. I've had 5 of them, two of which (for now) had to be replaced. So to any of you who are hoarding Coldcards and not burning and testing them everyday... beware!Other than that, I love the Coldcard. I'd like to a see a more reliable v2.
(DIR) Post #1955210 by Rejekts@bitcoinhackers.org
2018-12-13T12:12:36Z
0 likes, 0 repeats
@402PaymentRequired this is one reason why I am grateful to live in the U.S. With lack of general privacy in this space, at least we have potential recourse if government comes for our bitcoin with force. Bitcoin is a threat to all mismanaged governments. It may appear more valuable in 3rd world countries, but what protects the people who hold them when there is a knock at the door?
(DIR) Post #1955456 by 402PaymentRequired@bitcoinhackers.org
2018-12-13T12:25:10Z
0 likes, 0 repeats
@Rejekts Only shithole countries would be so stupid to go door to door asking for bitcoin. It would be an endless drain of time, resources, credibility, capital and a shit-show of corruption and mismanagement. But thugs, thieves and scammers... that's something I take very seriously.It's not intuitive to secure digital assets.. you have to watch yourself constantly.Then there's the seed and backups... which I still haven't figured it out.
(DIR) Post #1957796 by Rejekts@bitcoinhackers.org
2018-12-13T14:26:44Z
0 likes, 0 repeats
@402PaymentRequired my point was if governments had access to digital trails and who the owners of bitcoin are...they could use force/torture to encourage owners into giving them up.
(DIR) Post #1957918 by 402PaymentRequired@bitcoinhackers.org
2018-12-13T14:31:13Z
0 likes, 0 repeats
@Rejekts as I said... good luck with that in terms of resources, credibility, capital flight and corruption.Remember when Brezhnev made it ilegal to use American Dollars in the Soviet Union? The USD turned into the de facto currency in which party members and industrialists bought and sell favours from each other
(DIR) Post #1968072 by BitcoinBelle@bitcoinhackers.org
2018-12-13T23:18:36Z
0 likes, 0 repeats
@402PaymentRequired How new is new? You definitely don't fit in with early adopters as far as your style so I am assuming since 2016?You are concerned about a public key being known? Really?As for doxxed, bitcoin has never been anonymous. It's private. Big difference.
(DIR) Post #1968116 by BitcoinBelle@bitcoinhackers.org
2018-12-13T23:21:28Z
0 likes, 0 repeats
@402PaymentRequired @waxwing Have you tried a Keep Key?
(DIR) Post #1968118 by 402PaymentRequired@bitcoinhackers.org
2018-12-13T23:21:42Z
0 likes, 0 repeats
@BitcoinBelle - late 2017- not in bitcoin to dox the contents of my wallet, bank account, pocket change, etc. (AKA PubKeys)- you're right. It's private... if you can keep it. Not easy...
(DIR) Post #1968220 by 402PaymentRequired@bitcoinhackers.org
2018-12-13T23:26:10Z
0 likes, 0 repeats
@BitcoinBelle @waxwing No, I haven't, but I'm done with USB interfaces. We all have seen enough zero-days exploits and hardware horror stories in 2018 alone to justify being a little paranoid.My risk tolerance is a little low. That's all. 😄
(DIR) Post #1968222 by BitcoinBelle@bitcoinhackers.org
2018-12-13T23:26:17Z
0 likes, 0 repeats
@402PaymentRequired Let me help you out a bit. Everyone is much smarter than you think and you are not nearly as smart as you think. That is a good place to start in this space. And you're right, it's not 2012. But those same people are at the top of security and programming still. I was very lucky to be at the front of the pack and be surrounded by people smarter than I since early 2011, and involved with people I've known and worked with since 2007. Your hubris is a bit off-putting.
(DIR) Post #1968270 by BitcoinBelle@bitcoinhackers.org
2018-12-13T23:28:26Z
0 likes, 0 repeats
@402PaymentRequired @waxwing Wait until 3 of your peers get kidnapped and 2 others commit suicide. Your risk tolerance is that of a 13 year old boy. It's common for nerdy noobs with little or no life experience. I'm a mother so my tolerance of childish behavior is pretty high. 😝
(DIR) Post #1968292 by 402PaymentRequired@bitcoinhackers.org
2018-12-13T23:29:51Z
0 likes, 0 repeats
@BitcoinBelle You took the words out of my mouth.
(DIR) Post #1977389 by liberliver@mastodon.social
2018-12-14T08:32:42Z
0 likes, 0 repeats
@402PaymentRequired holy crap. 600 euro is too much. I’m not so critical about Trezors but about Ledgers I completely agree.
(DIR) Post #1977578 by BitcoinBelle@bitcoinhackers.org
2018-12-14T08:46:26Z
0 likes, 0 repeats
@402PaymentRequired smh
(DIR) Post #1977589 by BitcoinBelle@bitcoinhackers.org
2018-12-14T08:47:18Z
0 likes, 0 repeats
@402PaymentRequired Oh. Self-described as autistic and lacking a social life. I understand now.