Pages:
Author

Topic: Electrum Seed Phrase Reduce from 12 to 11. How Possible is it? (Read 348 times)

legendary
Activity: 2534
Merit: 6080
Self-proclaimed Genius
Thanks everyone. I will not use that wallet again. I will create new address.
The issue isn't the address, it's the whole wallet that's associated with the seed phrase that you've exposed.
What you need to do is to create another wallet using a newly generated seed phrase.

You may create a backup of that existing wallet where the said address belongs, then delete the original copy from "electrum/wallets" so you wont accidentally use it to receive bitcoins.
full member
Activity: 334
Merit: 121
Namely: hosseinimr93's findings about changing "staff" to "stuff" (SegWit) and separately, "teach" to "teacher" (Standard).
The correct seed phrase should be the one that works with changing the word "staff" to "stuff" and OP didn't use any passphrase.
The seed phrase containing the word "stuff" generates the address bc1q.........f0l6u which has already been posted by OP when applying for signature campaigns.
Thanks everyone. I will not use that wallet again. I will create new address.
legendary
Activity: 2380
Merit: 5213
Namely: hosseinimr93's findings about changing "staff" to "stuff" (SegWit) and separately, "teach" to "teacher" (Standard).
The correct seed phrase should be the one that works with changing the word "staff" to "stuff" and OP didn't use any passphrase.
The seed phrase containing the word "stuff" generates the address bc1q.........f0l6u which has already been posted by OP when applying for signature campaigns.
legendary
Activity: 2534
Merit: 6080
Self-proclaimed Genius
I have sent the seed phrase to some reputable members here and you can confirm it but yourself.
First of all, the explanation why 11 out of 12 of the words are valid isn't because your seed phrase has changed.
I already explained it in detail that it could happen if the computed version number is valid.

Secondly, sending it to multiple person was dangerous, you could've at least messaged each first so you can get a public key to encrypt your PM containing the seed phrase.

Thirdly, about the seed phrase; there are two iterations that can make it a valid Electrum seed but all are empty.
Namely: hosseinimr93's findings about changing "staff" to "stuff" (SegWit) and separately, "teach" to "teacher" (Standard).
If you're using a passphrase (if you ticked "Extension this seed with custom words"), try those two "corrected" seed phrases with your passphrase.
(do not share the passphrase to us)

I also tried to use "BIP39 seed" option in case you've used it to generate a wallet with different script type
as I've seen some reckless tutorials instructing users to do that to create nested-SegWit wallet.
But all options are empty as well.

Lastly, Electrum allows the creation of multiple wallets.
You might have created a wallet with that seed phrase first (created that paper backup) then created new wallets that you actually used but never backed up the seed.
staff
Activity: 3500
Merit: 6152
I received a message containing the seed phrase from OP.
I entered the seed phrase on electrum and it was invalid. I replaced the word "staff" with "stuff" and it became valid, but the wallet was empty and there was no transaction history.

uche6215, now you should consider your wallet compromised. Don't send any fund to that.

Same thing here. I have received a message from OP containing the seedphrase. I haven't tried replacing any words, and it was invalid.

As mentioned above @uche6215. A seedphrase is not something you should be sharing with anyone. Whether you manage to access the wallet or not, you should stop using it, and create a new one.
legendary
Activity: 2380
Merit: 5213
I received a message containing the seed phrase from OP.
I entered the seed phrase on electrum and it was invalid. I replaced the word "staff" with "stuff" and it became valid, but the wallet was empty and there was no transaction history.

uche6215, now you should consider your wallet compromised. Don't send any fund to that.
sr. member
Activity: 476
Merit: 299
Learning never stops!

So the gist is: if any jargon you type as seed phrase produced a valid reserve number when passed through HMAC-SHA512 with the string "Seed version" as key.
It's a valid Electrum seed. (it's not recommended to use it though)
Thank you for the detailed explanation along with the examples....
I did try to give it a trial on my own using online available tool
I got this using the seed that generated the SegWit wallet I said earlier


The hash in the screenshot is not complete.... but that's the first three bytes with the 0x100 rserved number making it a Segwit(Electrum seed type).
It was absolutely great learning something new Smiley
legendary
Activity: 1512
Merit: 4795
Leading Crypto Sports Betting & Casino Platform
I don't like too much argument. I will pm some reputable members here with the screenshot of the seed phrase to them so they can also confirm it from their end. That was a seed phrase I have been using for some time. And just fow me to realize this recently. I was also confused till now. And Electrum wallet address is not like the previous address again. Before you can login to the wallet and see the same address at anytime but now as the wallet updated last year, they have 10 minutes, 1 day, and 1 week address and the I address I was using is not found in the wallet again.
You have not being following this thread. Start reading from here: https://bitcointalksearch.org/topic/m.64303193

I have sent the seed phrase to some reputable members here and you can confirm it but yourself.
Know that if other people know about your seed phrase, the people can use that to spend your coins. I hope that seed phrase (that you sent us) do not have any addresses that are funded with bitcoin.

full member
Activity: 334
Merit: 121
I don't like too much argument. I will pm some reputable members here with the screenshot of the seed phrase to them so they can also confirm it from their end. That was a seed phrase I have been using for some time. And just fow me to realize this recently. I was also confused till now. And Electrum wallet address is not like the previous address again. Before you can login to the wallet and see the same address at anytime but now as the wallet updated last year, they have 10 minutes, 1 day, and 1 week address and the I address I was using is not found in the wallet again.

I have sent the seed phrase to some reputable members here and you can confirm it but yourself.
member
Activity: 97
Merit: 43
If OP still has access to the wallet on the old device, he can simply export the seed phrase and write it down again (this time, correctly).
There is no need to make a new wallet, if the only purpose is to have an electrum wallet that its seed phrase has been written down somewhere correctly.
I forgot about that step.

OP can click on the Wallet tab, then Seed, type a wallet password and get the wallet seed phrase. Then write it down correctly (this time) to use it as a back up for recovery in future.
legendary
Activity: 2534
Merit: 6080
Self-proclaimed Genius
(it's not recommended to use it though)
Why is it not recommended to make use of the custom generated seed like the example you gave.
Because it's not following any standards.
Even though it's a valid Electrum seed, it's generated manually, not generated from a random entropy.

It's security isn't particularly bad specially if it consists of more characters and words,
So it's up to the user to decide, that's why my note is just "not recommended" and not "absolutely" do not use it.
Because people aren't good at randomness.

Quote from: Mia Chloe
And would such a seed be considered as a custom electrum seed?
Hmm, Electrum's seed version system allows that but generates from a fixed word list by default.
So it's kind of a normal Electrum seed, but you can call it that if you want since there's no known term on Electrum seed generated from non-BIP39 word list.
legendary
Activity: 3374
Merit: 3095
Playbet.io - Crypto Casino and Sportsbook
Probably, for the same reason why people don't use brain wallets anymore and for the same reason why it's recommended to use long random passwords instead of ones you can easily remember.
You shouldn't do it because it's not safe.
A custom seed or password is easier to predict (if you can think of it then someone else can too) unlike randomly generated seeds/passwords.

How about you made a custom seedphrase and the seed phrase you generated on Electrum is the same as you just made?
What are these are safe the generated one or the custom seed you created?

For me, anyone can guess what you seed phrase is the only way to avoid someone to guess your seed phrase is to use extra word or adding passphrase to protect your wallet but wallets that generated only 12 words still not easy to guess however, it still possible that someone can guess it that is why they added other security option to protect your wallet and seed like multisig or extra word/passphrase.
legendary
Activity: 2702
Merit: 3045
Top Crypto Casino
Why is it not recommended to make use of the custom generated seed like the example you gave.
Probably, for the same reason why people don't use brain wallets anymore and for the same reason why it's recommended to use long random passwords instead of ones you can easily remember.
You shouldn't do it because it's not safe.
A custom seed or password is easier to predict (if you can think of it then someone else can too) unlike randomly generated seeds/passwords.
sr. member
Activity: 448
Merit: 560
Crypto Casino and Sportsbook
(it's not recommended to use it though)
This thread just gave me a clearer understanding of the whole seed phrase stuff though I still have a couple of questions like ; Why is it not recommended to make use of the custom generated seed like the example you gave.
And would such a seed be considered as a custom electrum seed?
legendary
Activity: 2380
Merit: 5213
If OP still has access to that wallet, I recommend to move bitcoin to a new wallet (create a new wallet, write down wallet seed carefully, test it for recovery to avoid similar problem with this current wallet,  move bitcoin to a new wallet).
If OP still has access to the wallet on the old device, he can simply export the seed phrase and write it down again (this time, correctly).
There is no need to make a new wallet, if the only purpose is to have an electrum wallet that its seed phrase has been written down somewhere correctly.
legendary
Activity: 2534
Merit: 6080
Self-proclaimed Genius
And no, that's not another person's wallet.
So it gets an existing random wallet(not owned by someone) or it gets
a new one  entirely??
With or without existing transaction, that's a new wallet.
Unless if the exact same seed phrase that you manually created is already used by someone else which is highly unlikely for 11 words + 1 "cdrwfehvsdw..".
If an existing wallet with a "normal" Electrum seed, that's only if the computed seed collides with your seed which has even lower chance of happening.

Although, I will not say that it's 100% a new wallet since seed phrase generation relies on the fact that the words or entropy used is unique which has finite number of combinations.
It's more of "almost impossible" that it would never happen.



I noticed something  too ,Segwit type of seed phrase has a seed combination format(or I'm just mistaken )on electrum, if it could probably  determine the segwit type without the complete seed phrase inserted then there're some particular combination  to show that the wallet is a segwit type the min-combination is what I don't seem to get....so with the minimum combination + random chars I should be able to generate a segwit type wallet.
It's about the reserved "version number" that I mentioned in my reply above which is the first 2~3Characters of HMAC-SHA512("Seed version",)
Link to code: github.com/spesmilo/electrum/blob/295ea97f1f94b916fe5304098bb005505e4f28ed/electrum/mnemonic.py#L243

I'll just provide some examples to explain it in detail:

For example; my example seed phrase above has a reserve number of 0x01 which is for standard wallet.
Code:
banana aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
Result HMAC-SHA512("Seed version",):
Code:
01853021fd65bee2583eaa7b255fc6f0e1b0a879abac59ed7b5169913a1e3ce0be2a8174298ad15ec8d668befa5097ddd313fcf4ebea5433a7beefb50af10012
First character is 0, so the length is 0+2 = 2 characters.
Version number (first 2 Characters of the above):
Code:
01
0x01 is the reserved number for "Standard" Electrum seed.

SegWit Example;
Code:
monkey yyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyy
Result HMAC-SHA512("Seed version",):
Code:
1004fea6c8adc0bd04517fca04b1333c4e36f873885dd2a4d054497fcd01fcbbc767b2fd8a535437e2d61e0f39d73cda9c77432d7ab51586d6ca51fc4bedcce7
First characters is 1, so the length is 1+2 = 3 characters.
Version number (first 3 Characters of the above):
Code:
100
0x100 is the reserved number for "SegWit" Electrum seed.


So the gist is: if any jargon you type as seed phrase produced a valid reserve number when passed through HMAC-SHA512 with the string "Seed version" as key.
It's a valid Electrum seed. (it's not recommended to use it though)
member
Activity: 97
Merit: 43
Opening the wallet with 11 words is impossible. You made mistake somewhere.
With Electrum wallet, when importing a wallet seed phrase for wallet recovery, with each word, when OP types a first character of a word, the wallet software will display a list of possible words start with that first character.

Assume I type 's' as a first character for a first word, the list will appear with some words to choose like
Code:
sad
saddle
sadness
safe
said
sail
salad
salmon
and so on

OP can try The FinderOuter, a bitcoin recovery tool offline.

If OP still has access to that wallet, I recommend to move bitcoin to a new wallet (create a new wallet, write down wallet seed carefully, test it for recovery to avoid similar problem with this current wallet,  move bitcoin to a new wallet). Then OP can try to use FinderOuter with the wallet in trouble.
sr. member
Activity: 476
Merit: 299
Learning never stops!

The version number is 0x01 for a legacy seed phrases, 0x100 for segwit seed phrases and 0x101 for 2FA seed phrases.
If you hash the seed phrase and it doesn't start with 01, 100 or 101, it's not valid.
Okay noted this.. Smiley
legendary
Activity: 2380
Merit: 5213
I noticed something  too ,Segwit type of seed phrase has a seed combination format(or I'm just mistaken )on electrum, if it could probably  determine the segwit type without the complete seed phrase inserted then there're some particular combination  to show that the wallet is a segwit type the min-combination is what I don't seem to get....so with the minimum combination + random chars I should be able to generate a segwit type wallet.
Wrong.

Each electrum seed phrase contains a version number.
The version number is the first 8 or 12 bits of the hash of the seed phrase and it determines the seed type.

To calculate the version number, the whole seed phrase is required and there is no way to know the seed type just with knowing a part of the seed phrase.

The version number is 0x01 for legacy seed phrases, 0x100 for segwit seed phrases and 0x101 for 2FA seed phrases.
If you hash the seed phrase and it doesn't start with 01, 100 or 101, it's not valid.
sr. member
Activity: 476
Merit: 299
Learning never stops!
If you entered 11 truely random words and now have a valid electrum seed phrase, your seed phrase provides 121 bits of entropy. That's secure enough and it's impossible that someone has generated the same wallet before or someone generate the same wallet in the future.
I noticed something  too ,Segwit type of seed phrase has a seed combination format(or I'm just mistaken )on electrum, if it could probably  determine the segwit type without the complete seed phrase inserted then there're some particular combination  to show that the wallet is a segwit type the min-combination is what I don't seem to get....so with the minimum combination + random chars I should be able to generate a segwit type wallet.
Pages:
Jump to: