Pages:
Author

Topic: How I manage and protect my wallets (Ubuntu Linux) - page 2. (Read 16218 times)

full member
Activity: 168
Merit: 103
I am using ubuntu 10.04. I am new to it. When you "create accounts" and strongly encrypt them you are referring to features that ubuntu provides? As opposed to using a third party product like truecrypt?

Yes, I am talking about the built in "encrypted home directory" feature of Ubuntu.

I typed:
Code:
sudo adduser --encrypt-home bitcoin

It asks for a password, and then you have an account "bitcoin".
member
Activity: 115
Merit: 11
I like long walks on the beach, shaving my head...
I am using ubuntu 10.04. I am new to it. When you "create accounts" and strongly encrypt them you are referring to features that ubuntu provides? As opposed to using a third party product like truecrypt?
full member
Activity: 168
Merit: 103
I want to tell you, how I manage my wallets. The purpose of this thread is to exchange ideas, and to analyse how well the ideas of others work.

Setup:
My main computer is a laptop with a recent version Ubuntu Linux. In addition to my user account, I made a new account for bitcoin only with an encrypted home directory.
- The password is pretty strong (12 characters, including upper and lower letters, numbers and special characters).
- I don't run any programs with this special account except for bitcoin.
- The files of this special user are strongly protected by encryption, when he is not logged in.

Wallets:
My regular user account and my bitcoin user account have a wallet each. My bitcoin user account stores the majority of coins, my regular account has a small amount.
When I want to receive a large amount of bitcoins, I use an address of the better protected wallet.
When I want to send a lot of coins, I login with the bitcoin account and send some. Then I log out again.

Backups:
I make backups of the wallet by the following command:
Code:
tar -c ~/.bitcoin/wallet.dat | gpg -c > $BACKUP_FILENAME
The command asks for a password, and I enter a quite strong one, because I want to be save putting those backups anywhere.

I store those encrypted backups on USB disks and on university computers (which are backuped very systematically and well). It's easy because the wallet files are quite small.

Possible attacks:
- cracking the strong password or the AES encryption keys
- cracking the whole machine with root access and stealing the wallet, while the bitcoin user account is logged in
- stealing my computer while the bitcoin user account is logged in

Do you see any flaws? How do you do it? What can I do better?

Do you see any attacks that I haven't thought of?
Pages:
Jump to: