I'm stupid I guess.I have a paperwallet but I don't really get this. With a paperwallet (for eth). You can access the paperwallet online with just using the private key. SO how is this safe from hacking? If someone installs a keylogger on your system for example, they could access your wallet and steal everything right?
also general cryptocash thread
Other urls found in this thread:
en.m.wikipedia.org
wiki.installgentoo.com
twitter.com
Just google how this shit works
I literally can't find an answer for this.
fuck off to your containment board, you fucktard troglodyte
Brain wallet is vulnerable to key loggers and can be attacked by guessing your password that is way less secure than a private key.
Paper wallet doesn't use a password but are still vulnerable to keyloggers.
Software wallet are vulnerable to simply reading the private key on the hard drive if your computer get compromised.
Safest way to store cryptocoins is a hardware wallet. The hardware wallet do all cryptographic computing itself and the private key is write only you can't steal a private key from suck a device. Even your computer is fully compromised you won't get your private key stolen. If you have to press a physical button on the device to confirm a transaction, the attacker can't fake start a transaction without your consent either.
Physical device is the way to go.
wiki.installgentoo.com
>You can either have your entire computer as your "bitcoin wallet" (not recommended), or you can use an online bitcoin bank
what did he mean by this?
unless you're moving literally millions of dollars at a time investing in a stupid hardware wallet is so much dumber than having a paper wallet with proper backups and good opsec
>Software wallet are vulnerable to simply reading the private key on the hard drive if your computer get compromised.
What is encryption?
It depends on the threat model.
OP said he's afraid of keyloggers, which means a fully compromised computer. Paper wallet are vulnerable to keyloggers and the only secure solution against that is a hardware device.
Okay how do you store securely a private key on a fully compromised computer, I'm listening.
You can read the file, you can log keys. How the fuck do you protect against that ?
Store it in your brain or write it down
Okay. How do you make a transaction now ?
The computer is still vulnerable and has a keylogger.
>make transaction
>enter your password/wallet address
>keylogger register every key strokes
You can't win. Not if you can't trust your own OS.
There is only two scenario, either your computer is considered safe or not.
If your OS is secure
>Brain wallet is overkill
>Paper wallet is overkill
>hw wallet is overkill
Just use a software wallet
If your OS is not 100% secure and can be compromised
>Software wallet is insecure
>Brain wallet is insecure
>Paper wallet is insecure
HW wallet is the only safe way to store your wallet.
get rid of the keylogger you scrub
How would you even know if your are infected with a keylogger or not?
AV are easy to bypass.
look at what's using your precious cpu resources
I rich guy I worked for years ago kept his banking laptop in a safe.
Didn't use it for anything other than payroll and banking. Never had a problem.
Interesting.
Banking online requires loading and executing Javascript from unknown sources though, how did he sort that?
AHAHAHAH You're joking ? You're joking, right ?
If your keylogger shows in the process manager, you can consider that it is not even trying to be stealthy.
Just one word: dll-injection.
It all comes down to this:
Do you trust your computer. Yes or No?
Install gentoo, no keyloggers
>Linux is secureā¢
On a side note, this meme needs to die.
But, that just just means that you trust your OS.
What I'm saying is that if you don't, HW is the only viable solution.
What if your hardware wallet is backdoored by the chink manufacturer?
Same problem. Do you trust your hardware wallet or not?
You can choose to not trust a hw wallet from china or US and by one produced in EU. But once you have established in your threat model that it is a reliable device you are 100% depending on it.
>Ethereum thread on Sup Forums
>Ctrl+F "solidity"
>0 results
wew
How far has the world fallen that /biz/ is 90% altcoin shitposting?
/by/buy/g
what happens if the hardware wallet dies? also, they don't support all currencies
>unknown sources
Such as?
In my experience, banking online requires you to load the banks javascript.
Portable qt wallet in a virtualized environment.
Linux host, windows guest virtualized
Encrypt the wallet
>unknown sources
Eh, not exactly. As this guy says:
>banking online requires you to load the banks javascript
So usually it's just code curated in realtime through NSA/Bullrun (or as I have recently taken to calling it, NSA plus Bullrun)
Use linux
i just started and use electrum, should i use something else?
Reminder that if xeyes works you are just as vulnerable