I want to tell you, how I manage my wallets. The purpose of this thread is to exchange ideas, and to analyse how well the ideas of others work.
Setup:My main computer is a laptop with a recent version Ubuntu Linux. In addition to my user account, I made a new account for bitcoin only with an encrypted home directory.
- The password is pretty strong (12 characters, including upper and lower letters, numbers and special characters).
- I don't run any programs with this special account except for bitcoin.
- The files of this special user are strongly protected by encryption, when he is not logged in.
Wallets:My regular user account and my bitcoin user account have a wallet each. My bitcoin user account stores the majority of coins, my regular account has a small amount.
When I want to receive a large amount of bitcoins, I use an address of the better protected wallet.
When I want to send a lot of coins, I login with the bitcoin account and send some. Then I log out again.
Backups:I make backups of the wallet by the following command:
tar -c ~/.bitcoin/wallet.dat | gpg -c > $BACKUP_FILENAME
The command asks for a password, and I enter a quite strong one, because I want to be save putting those backups anywhere.
I store those encrypted backups on USB disks and on university computers (which are backuped very systematically and well). It's easy because the wallet files are quite small.
Possible attacks:- cracking the strong password or the AES encryption keys
- cracking the whole machine with root access and stealing the wallet, while the bitcoin user account is logged in
- stealing my computer while the bitcoin user account is logged in
Do you see any flaws? How do you do it? What can I do better?
Do you see any attacks that I haven't thought of?
