Pages:
Author

Topic: [ANN] bitaddress.org Safe JavaScript Bitcoin address/private key - page 11. (Read 153371 times)

sr. member
Activity: 437
Merit: 415
1ninja
v3.0.1
https://www.bitaddress.org/bitaddress.org-v3.0.1-SHA256-24d2d7f047a9aa217bf69f3ef344c972c151b1e3f6a8aa86ceb9a3be62884bc0.html
- fix for session log not keeping track of keys from "Wallet Details" tab before entropy is collected.
Thanks dooglus.

sr. member
Activity: 437
Merit: 415
1ninja
v3.0.0
https://www.bitaddress.org/bitaddress.org-v3.0.0-SHA256-4781574ca09c07f65d1966619f37a762aac6decd8732cacc85b2f2f972f82751.html
 - add session log icon that shows all the key pairs generated during the current session.

While the log does appear to record the address I make using B6 (99 dice), it only starts recording once entropy collection is complete. Any I generate before that are lost.

I don't see any way of encrypting the private keys I generate using B6 (99 dice), and don't feel safe storing unencrypted private keys. Could the option of encrypting paper wallets be extended to the 'wallet details' tab as well, for people who don't want to trust the in-browser RNG and prefer to provide their own by rolling dice?

I have a fix coming for the issue above regarding when the recording of the session log begins. Thanks for the feedback now and over the past years!

I will add BIP38 encryption on the wallet details tabs. It will be a checkbox beside the View Details button. When checked it will make the passphrase visible so you can then encrypt your key.
sr. member
Activity: 437
Merit: 415
1ninja
Hi guys.

What is the best method of sweeping the paper wallet?

I don't want to use blockchains android app, what other ways can I withdraw from my bitaddress paper?

I use the  Android "Bitcoin Wallet" by "Bitcoin Wallet developers":
https://play.google.com/store/apps/details?id=de.schildbach.wallet

I'm going to try Mycelium Android app because you can spend part of a paper wallet balance without sweeping it. This has the security risk that your private key is exposed temporarily in memory of your Android and then you are leaving a balance connected to that private key. But I think that's an acceptable risk for low amounts.
sr. member
Activity: 437
Merit: 415
1ninja
20 btc reward for anyone that can assist me here;

I created an offline BTC wallet using a saved version of bitaddress.org html (version 2.76) on an offline macbook air using google chrome version 32.0.1700.77

I did the randomization it generated a new address I saved the public address and sent some coins to that public address, in the  next minute or so I hit "generate new address" by accident and it created a new wallet. I didn't save the private address but already sent the coins to that wallet. Is there any way to retrieve the previous address data? Is it saved in RAM anywhere or perhaps in the java?

Whoever can assist me in this will have 20 btc shipped to them immediately.

Regards



I do not know of anything you can do.

To prevent this happening to others in the future versions 3.0.0+ now have a session log icon that can be pressed to view all the keypairs generated during the current session.
sr. member
Activity: 437
Merit: 415
1ninja
Could you paste your pgp signature here at bitcointalk instead? Copy paste it into the opening message for example. It doesn't make much sense get it from the same website which authenticity I am trying to verify, specially over plain http.

Yes, done.

Thank you. sorry I didn't suggest this at first, but in adition to posting the key here (which greatly improves security) you could also upload it to a key server and update the tutorial to retrieve the key from a key server instead of from bitaddress.org.

It is fairly simple to do:
https://www.gnupg.org/gph/en/manual/x457.html

Anyway. Great work, been using it even more frequently as of lately. It is my favourite way of generating addresses as I can manually enter randomness, while many other wallets and address generators rely simply on RNGs which have been attacked repeatedly. All has been great using Bitaddress+mycelium.

I have another feature request if you're up to it:
in the wallet details tab, if the entered private key is bip38 encrypted, you could show the encrypted private key in HEX format too.

Either way, big thanks and keep up.

I plan to improve the instructions for verifying the signature.

Regarding your request "show the encrypted private key in HEX format too". Can you describe the use case?

For example a use case for "Base 64" is to hide the private key data in plain sight. There might be circumstances
1) using an insecure channel
2) holding media that can be confiscated
where data could be hidden in base 64 noise. An example is putting the private key base64 encoded data into a JPEG. Then you just have to remember the beginning byte and ending byte of the private key data within the JPEG. There is plausible deniability at play here because you are not using the Bitcoin specific base 58 encoding.
legendary
Activity: 2940
Merit: 1333
v3.0.0
https://www.bitaddress.org/bitaddress.org-v3.0.0-SHA256-4781574ca09c07f65d1966619f37a762aac6decd8732cacc85b2f2f972f82751.html
 - add session log icon that shows all the key pairs generated during the current session.

While the log does appear to record the address I make using B6 (99 dice), it only starts recording once entropy collection is complete. Any I generate before that are lost.

I don't see any way of encrypting the private keys I generate using B6 (99 dice), and don't feel safe storing unencrypted private keys. Could the option of encrypting paper wallets be extended to the 'wallet details' tab as well, for people who don't want to trust the in-browser RNG and prefer to provide their own by rolling dice?
sr. member
Activity: 437
Merit: 415
1ninja
member
Activity: 66
Merit: 10
The shasum is not calculated from the zip, but the file bitaddress.org.html contained inside.

I wondered the same thing and found the answer here: http://bitcoin.stackexchange.com/questions/9112/how-can-i-verify-the-the-pgp-signature-of-bitaddress-org
sr. member
Activity: 419
Merit: 250
Hi guys.

What is the best method of sweeping the paper wallet?

I don't want to use blockchains android app, what other ways can I withdraw from my bitaddress paper?

https://play.google.com/store/apps/details?id=com.mycelium.wallet&hl=en
https://play.google.com/store/apps/details?id=de.schildbach.wallet

I've used mycelium a looong time ago, how is it nowadays? Which do you recommend?

Schildbach "bitcoin wallet" is nice because it connects directly to the bitcoin network.
hero member
Activity: 714
Merit: 500
Hi guys.

What is the best method of sweeping the paper wallet?

I don't want to use blockchains android app, what other ways can I withdraw from my bitaddress paper?

https://play.google.com/store/apps/details?id=com.mycelium.wallet&hl=en
https://play.google.com/store/apps/details?id=de.schildbach.wallet

I've used mycelium a looong time ago, how is it nowadays? Which do you recommend?
legendary
Activity: 3038
Merit: 1032
RIP Mommy
Hi guys.

What is the best method of sweeping the paper wallet?

I don't want to use blockchains android app, what other ways can I withdraw from my bitaddress paper?

https://play.google.com/store/apps/details?id=com.mycelium.wallet&hl=en
https://play.google.com/store/apps/details?id=de.schildbach.wallet
hero member
Activity: 640
Merit: 771
BTC⇆⚡⇄BTC
Hi guys.

What is the best method of sweeping the paper wallet?

I don't want to use blockchains android app, what other ways can I withdraw from my bitaddress paper?
Do you mean you want to do a offline transaction?

If so, there are some alternatives to sign tx offline but they tend to be buggy sometimes. They're more tech oriented features.

I still recomend you use Electrum, import priv key, transfer to new addresses and NEVER reuse a previous address.
hero member
Activity: 714
Merit: 500
Hi guys.

What is the best method of sweeping the paper wallet?

I don't want to use blockchains android app, what other ways can I withdraw from my bitaddress paper?
hero member
Activity: 640
Merit: 771
BTC⇆⚡⇄BTC
Did you (at least) saved the QR code corresponding to the priv key?
newbie
Activity: 3
Merit: 0
It was a mistake obviously.
legendary
Activity: 3038
Merit: 1032
RIP Mommy
20 btc reward for anyone that can assist me here;

I created an offline BTC wallet using a saved version of bitaddress.org html (version 2.76) on an offline macbook air using google chrome version 32.0.1700.77

I did the randomization it generated a new address I saved the public address and sent some coins to that public address, in the  next minute or so I hit "generate new address" by accident and it created a new wallet. I didn't save the private address but already sent the coins to that wallet. Is there any way to retrieve the previous address data? Is it saved in RAM anywhere or perhaps in the java?

Whoever can assist me in this will have 20 btc shipped to them immediately.

Regards

The very first thing you have to do is save the private key in non-volatile memory. Why would you not do that?
newbie
Activity: 3
Merit: 0
20 btc reward for anyone that can assist me here;

I created an offline BTC wallet using a saved version of bitaddress.org html (version 2.76) on an offline macbook air using google chrome version 32.0.1700.77

I did the randomization it generated a new address I saved the public address and sent some coins to that public address, in the  next minute or so I hit "generate new address" by accident and it created a new wallet. I didn't save the private address but already sent the coins to that wallet. Is there any way to retrieve the previous address data? Is it saved in RAM anywhere or perhaps in the java?

Whoever can assist me in this will have 20 btc shipped to them immediately.

Regards

hero member
Activity: 836
Merit: 1007
"How do you eat an elephant? One bit at a time..."
Thank you for keeping this project alive. A true asset to the bitcoin community. Sending over a few bits now...

sr. member
Activity: 437
Merit: 415
1ninja
v2.9.11
https://www.bitaddress.org/bitaddress.org-v2.9.11-SHA256-40376eddc790a63d9afcfb72c0a45002827da965f3bfe6ba8c330e697bf188b2.html
- add status icons for checking the URI protocol used, support for window.crypto.getRandomValues and run the synchronous unit tests after entropy collection. Thanks @cantonbecker for the ideas.
Pages:
Jump to: