Topic: [ESHOP launched] Trezor: Bitcoin hardware wallet - page 147. (Read 966173 times)

I just finished setting up my trezor wallet. While copying down the seed I noticed that one of my seed words came up twice in the seed of 24 words. Is this normal? should I wipe the trezor and make a new seed?

I sucessfully installed Electrum 1.9.8 release from the github repo following the MacOSX instructions here
https://electrum.org/download.html

As you already have xcode and brew installed I assume you are comfortable with the command line !

I haven't yet tried the latest master with the Trezor commits as I am still awaiting my classic first edition to reach me.
https://github.com/spesmilo/electrum/commits/master

This plugin
https://github.com/m0mchil/electrum/blob/master/plugins/trezor.py

clearly requires python-trezor
https://github.com/trezor/python-trezor/tree/master/trezorlib


The webbrowser plugin is completely different, you need it to setup your Trezor with myTrezor (unless you want to setup/restore your Trezor with the python tools)

I do have Xcode and Brew. What should I do then? BTW, I'm also seeing people pointing out to python-trezor so that's yet another thing I'm trying to make sense out of it in addition to the Electrum plug-in for OS X.
Thx for your help.

Another question:

I like the confirmation on the TREZOR when I am sending to an address to ensure that the myTREZOR site has not been compromised.  However, it does not appear that there is any confirmation of the addresses shown on myTREZOR for receiving funds.  When I see an address on myTREZOR (to provide to someone to send me money), how can I be sure that it is actually an address associated with my TREZOR (and not a rogue address on a malicious computer)?  I would hope to be able to see the selected address on the computer replicated on the TREZOR so that I can be sure it is legitimate.  Is this how it works, but just not in the documentation?

This is what I found out:

If you want to use passphrases, check the passphrases box when initializing. You can use it with no password, except the password dialog appears when you plug in, just click enter. To change from one passphrase to another, you have to issue the "forget device" function.

Just remember that the passwords are a part of the seed, so you need to safely write down both your 24 seed words and your passphrases.

I am not going to answer everything you wrote for two reasons, one I have addressed everything in your post. As well as I will not keep discussing this with someone that agrees being rude is professional, when I paid good money for this to work sorry but if this was free it be different. I am out 3BTCs and I had paid a fine on the transaction I was sending. So right now Trezor is costing me a lot of money to do nothing. Clearly it isn't stable if the web wallet can't handle p2sh transactions, it is a simple part of the bitcoin protocol.

Also trezor web wallet claims to be using bitcoinjs-lib which I have proven handles those p2sh transaction hex just fine... Stick and Slush are just being plan lazy or incompetent to fix the issue.

I don't have a trezor yet but keep in mind that only record one seed. The passwords you enter are just ways of adding to the seed. Inputing a trezor with no password will just display the default addresses. Using a password of "personal" will give another set. A password of "wife" will show another. The password allows using any number of seperate accounts. The only thing you have to remember is what the passwords are! So without the password you don't see the other group of addresses.

I expect my TREZOR to arrive some time this week! In the meantime, I have a few questions about the setup. I have read the online User Guide, but there are some details that are not clear to me:

1) At what point during the first time setup is it ok to unplug the TREZOR from the computer?  Do I have to wait for the full recovery seed recording to be completed?  Or is it safe to unplug the TREZOR, and still complete the initial setup?

2) If I want to set up a Multi-Passphrase Encryption, what are the exact sequence of actions.  The instructions are extremely vague, and I do not want to make a mistake.  (Does it only work right after the first time setup, or can I force a second setup after lots of use?  Is there a second set of recovery seeds that I need to record?)

3) Once there are more than one passphrase set up correctly, how do I access one when I plug it in?

4) Is there any detailed description or screenshots of how to use the multiple Accounts and their associated addresses?  (The user guide is sparse on details.)

Thanks

The password adds to the seed. So every password you use is like using a whole new seed. If you forget the password you can't re-create the seed.

The BIP32 node displayed in myTrezor wallet for account 0 is m/44'/0'/0'. Thus entering it in bip32.org and doing two more derivations /0/0 gives me my account addresses m/44'/0'/0'/0/0. I did not have to do fake screenshots. I have other things to do. All Trezor owners can do the same and see it just works. Your argument is invalid. It works.


That is why I mentioned you can use python-trezor to get seed from mnemonic. If' you don't like python, you can use gui from trezor-crypto. There are plenty of ways, but you are not going to use them.


This was not what was asked from you. Guys asked which transaction are you questioning. You never provided this information according to the screenshot you posted.


That is related to the above answer. You are concerned about a transaction that may get through, but you never provided any information about which transaction that is and what are the source and destination address of this transaction in question.


They released their product two weeks ago. I believe it is normal that not all tickets are answered on the same day. They acknowledged in this forum that they had some delay in answering all the tickets. This should be over soon. Be patient. (ouch, you can't do that)


Yes.


The device works fine. It is bitcoinj, third party library that does not work. This library is not part of the device and is not used by the device itself. It is used by the free web wallet you are using. Use some paid solution if you are not satisfied with it. According to my understanding, satoshilabs never wanted to create ANY wallet. They did it as a proof of concept, but you are using this web wallet for free.


python-trezor is for free, bip32.org is for free, trezor-crypto gui is for free. electrum might be unstable BUT you are confirming your transaction on Trezor. You see receiving address on display. Trezor is stable and it is designed to work with computer that is trying to steal your coins. Using it with unstable electrum build is safe as long as you verify your transaction on Trezor display.

For wallet32, you don't have to use your own android device. You can use friend's device (if you have a friend). If none of these workarounds work for you, then just wait. They will fix it eventually.

But you are using the path, m/0/0 which is not the path for trezor, so I am having a hard time to believe that this is actually worked. Also I just did this with my public key and didn't not get one single address from my trezor.

The correct path is...

m/44'/0'/0'/0/0

Which is currently only compatible with BIP 44 wallets, not BIP 32, they require different hashing.


Also bip32.org doesn't support BIP 39 which is required for the seed. BIP32 source code shows that it just 50,000 rounds of hashing that would be incompatible with BIP 39 seeds. Trust me I know what I talking about.



1) I provided the line number of the error, not once but twice, how is that not showing them what they need?

2) No my funds could be lost, as I tried to broadcast a transaction which is signed and could be broadcasted at any time, that was my concern, more than anything. So can you please read what I write, and understand it.

3) No they were rude to me in the helpdesk, as they are currently understaffed, plus this is like the forth issue with mytrezor, in the less than 3 months I had my trezor. So those things combined, deserve a negative feedback in my books.

Do you support the co-founder of the company doing this...


If this is how business is done and you support that business than, I feel sorry for you both of you. This extremely unprofessional and uncalled for, especially for someone that was an early support of this project. I helped make this a reality by pre-ordering and waiting a very long time for this device.


4) No I did my research, the only options available to me is to go buy a new device just to fix this (android to get wallet32) or use an unstable version of a wallet, that is still in testing that could hurt my bitcoins even more if their is a bug. Both these options are not viable working solutions to the problem of lazy coding.

Do you store those signing keys themselves on a Trezor?

Yes. Actually there are 5 and we use 3-of-5 scheme.

Do you store a copy of your public key on ROM inside of the devise which the devise then checks signatures against?

You can. But updates are signed and the signatures are checked so you cannot re-flash the device with malicious code only with a good one. :-)

Yeah, that would be nice. In the meantime, you can put gweedo on ignore.

 wish I could upvote this

The passphrase is added to the seed. Therefore you'll need it.

You could try https://github.com/spesmilo/electrum, but I'm not sure it's doable in your emotional state.

... that actually should be "code not signed by Satoshi labs".  A hacker who wants to load malicious code into your Trezor would have to get hold of their signing key, or trick them into signing his code, or trick you into ignoring the device's warning.