Bitcoin Forum>Bitcoin>Bitcoin Discussion
Pages:
Author

Topic: Hur hur hur... Hope none of you used Dropbox to store your wallet! (Read 4363 times)

AbeSkray
member
Activity: 72
Merit: 10
Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 22, 2011, 08:13:13 AM
#26
Quote from: Rodyland on June 21, 2011, 11:43:33 PM
I was thinking about the issue of protecting bitcoin wallets recently.

My thought was it's not enough to "back up" our wallet.  You really need a "bank" (for want of a better word, it's one we all understand).

You want to be able to send your coins to a wallet that you KNOW can't be compromised.
The moment you assume a system can't be compromised is the moment you lose. Every system has weaknesses whether you know it or not. Anyone who needs to protect valuable information should have a healthy sense of paranoia. You can never assume any one system is perfect, so don't put all your eggs in one basket. Research different methods of keeping your bitcoins, spread your risk around, and never, ever trust your entire balance of bitcoins to a single point of failure.
gigitrix
hero member
Activity: 630
Merit: 500
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 22, 2011, 06:57:24 AM
#25
Quote from: ?? on ??
Quote from: interfect on June 22, 2011, 12:00:16 AM
Quote from: Chick on June 21, 2011, 09:42:01 PM
V O L U M E C E P T I O N

Reddit called. They want their meme back.

Reddit? Isn't that the site that gives you a virus.

The narwhal bacons at midnight.
FreeMoney
legendary
Activity: 1246
Merit: 1016
Strength in numbers
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 22, 2011, 04:34:38 AM
#24
Spider Oak seems good to me. They say it's all encrypted on your side, but I encrypted myself anyway.
Astro
sr. member
Activity: 284
Merit: 250
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 22, 2011, 03:42:43 AM
#23
dropbox has always been massively shitty.  Why anyone has ever used it is beyond me.. Oh wait, I know why, because they're fucking poors.  You get what you pay for.
JoelKatz
legendary
Activity: 1596
Merit: 1012
Democracy is vulnerable to a 51% attack.
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 22, 2011, 03:36:22 AM
#22
Quote from: showtime on June 22, 2011, 01:27:26 AM
While it's best to still use a tool like Truecrypt in conjunction with SugarSync, they do encrypt your data automatically upon upload.
That's meaningless and useless. There is no difference between SugarSync encrypting the data but keeping the keys and SugarSync not encrypting the data at all. In both cases, SugarSync and anyone they authorize, and only SugarSync and anyone they authorize, can access the data.
Chick
member
Activity: 70
Merit: 10
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 22, 2011, 01:27:51 AM
#21
Quote from: showtime on June 22, 2011, 01:27:26 AM
As an alternative to Dropbox, you should check out https://www.sugarsync.com/referral?rf=tetx5o7bz6i2.

Full disclosure, yes that is my referral link.  However, by signing up using my link, you and I both will get an extra 500 mb of free storage, on top of the free 5 GB.  Or, you can just go directly to their sign up page here https://www.sugarsync.com/free/.

While it's best to still use a tool like Truecrypt in conjunction with SugarSync, they do encrypt your data automatically upon upload.  That, combined with the 5 GB of free storage is hard to beat.

I use both already. Smiley
showtime
newbie
Activity: 9
Merit: 0
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 22, 2011, 01:27:26 AM
#20
As an alternative to Dropbox, you should check out https://www.sugarsync.com/referral?rf=tetx5o7bz6i2.

Full disclosure, yes that is my referral link.  However, by signing up using my link, you and I both will get an extra 500 mb of free storage, on top of the free 5 GB.  Or, you can just go directly to their sign up page here https://www.sugarsync.com/free/.

While it's best to still use a tool like Truecrypt in conjunction with SugarSync, they do encrypt your data automatically upon upload.  That, combined with the 5 GB of free storage is hard to beat.
interfect
full member
Activity: 141
Merit: 100
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 22, 2011, 12:00:16 AM
#19
Quote from: Chick on June 21, 2011, 09:42:01 PM
V O L U M E C E P T I O N

Reddit called. They want their meme back.
magik
newbie
Activity: 44
Merit: 0
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 21, 2011, 11:55:54 PM
#18
Quote from: elggawf on June 21, 2011, 08:17:01 PM
I saw this - makes MtGox look like Ft Knox!
fuck that, I totally respect dropbox for this.  Look at how much disclosure and information and updates they've posted about it.  They readily admitted their fuck up, because that's what it was - their fuck up - denying and lying and not informing users is the true fuck up.  As many have said all over these forums, there is no impenetrable wall of security you can use.

The only secure computer is one that's not hooked up to the network. ( and even then there's physical security issues there )
bitprotection
member
Activity: 103
Merit: 10
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 21, 2011, 11:50:04 PM
#17
Quote from: Rodyland on June 21, 2011, 11:43:33 PM
Quote from: ?? on ??
http://bitprotection.info    - 200 + sign ups obviously there is an interest  Grin

I was thinking about the issue of protecting bitcoin wallets recently.

My thought was it's not enough to "back up" our wallet.  You really need a "bank" (for want of a better word, it's one we all understand).

You want to be able to send your coins to a wallet that you KNOW can't be compromised.  You can send coins from your bank to your 'daily' wallet (much like you'd withdraw cash from an ATM).  

Depositing is easy.  It's the withdrawal that's hard, because any hole in the security would potentially allow someone to steal your coins.

You could create a client that can only send coins to a specified address or addresses.  But unless the wallet itself is secure you're still vulnerable.

I'm sure people that are smarter and have more experience than me in security have already mused this over, no doubt someone is cooking up a solution to this already.

You are right. Basically, if could encrypt all day long but the minute your wallet is gone - it is gone.  There should be someone fully monitoring these wallets / keeping them in a "bank vault"  to only be retrieved when there is a problem such as crashed hd/erased/lost wallet.  You realize you can spend coins all day long with the same two wallets ? one being on your computer the other being up on the service -  meaning if you lost your wallet you would pull it down from us and it would correct to show you the # of BTC you had at the time.  Obviously, trust is the big issue but hopefully "compensation" can negate any of this - or so that is the thinking!  Grin
Rodyland
hero member
Activity: 499
Merit: 500
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 21, 2011, 11:43:33 PM
#16
Quote from: ?? on ??
http://bitprotection.info    - 200 + sign ups obviously there is an interest  Grin

I was thinking about the issue of protecting bitcoin wallets recently.

My thought was it's not enough to "back up" our wallet.  You really need a "bank" (for want of a better word, it's one we all understand).

You want to be able to send your coins to a wallet that you KNOW can't be compromised.  You can send coins from your bank to your 'daily' wallet (much like you'd withdraw cash from an ATM). 

Depositing is easy.  It's the withdrawal that's hard, because any hole in the security would potentially allow someone to steal your coins.

You could create a client that can only send coins to a specified address or addresses.  But unless the wallet itself is secure you're still vulnerable.

I'm sure people that are smarter and have more experience than me in security have already mused this over, no doubt someone is cooking up a solution to this already.
Quantumplation
sr. member
Activity: 308
Merit: 250
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 21, 2011, 10:46:07 PM
#15
Quote from: TiagoTiago on June 21, 2011, 09:21:46 PM
Perhaps they got a hidden volume inside their hidden volume (as deep as you wanna go), now that hidden volumes are becoming a common practice having a decoy hidden volume can be healthy for the soles of your feet....

E N C R Y P T I O N
bbjansen
newbie
Activity: 14
Merit: 0
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 21, 2011, 10:44:08 PM
#14
Storing your wallet on Dropbox is not a dumb idea if you think about it Tongue.
TiagoTiago
hero member
Activity: 616
Merit: 500
Firstbits.com/1fg4i :)
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 21, 2011, 10:37:17 PM
#13
Just keep somthing most people would think would be an embarrassing secret, like "jailbait" bondage twincest gay porn for example, inside one of the deeper levels; somthing that would be plausible that you would wanna hide strongly but that wouldn't really get you in jail; i would expect that would help reduce quite a bit the odds they would suspect you got somthing else hiding there
Rodyland
hero member
Activity: 499
Merit: 500
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 21, 2011, 10:12:48 PM
#12
Firstly, LOL.

Quote from: TiagoTiago on June 21, 2011, 09:21:46 PM
Perhaps they got a hidden volume inside their hidden volume (as deep as you wanna go), now that hidden volumes are becoming a common practice having a decoy hidden volume can be healthy for the soles of your feet....

Secondly... Decoy hidden volume.

So two hidden volumes in your truecrypt container.  Or even "n" hidden volumes.  

Problem is, as you're tortured and reveal the passwords to the hidden volume and second hidden volume, you need to have more and more "sekrit" stuff in them to make it plausible when you say "that's the last one, I swear".

Oblig?

http://xkcd.com/538/
Jarredm
member
Activity: 63
Merit: 10
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 21, 2011, 10:11:26 PM
#11
Not affecting me!  Unlike MtGox...  I use Wuala to backup my wallet.  I started using them because they got the security right.  They do not store your password just pseudo-random blobs and you must know your password in order to decrypt.  If you lose the password they can't reset it for you, your data is gone.
Chick
member
Activity: 70
Merit: 10
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 21, 2011, 09:42:01 PM
#10
Quote from: TiagoTiago on June 21, 2011, 09:21:46 PM
Perhaps they got a hidden volume inside their hidden volume (as deep as you wanna go), now that hidden volumes are becoming a common practice having a decoy hidden volume can be healthy for the soles of your feet....

V O L U M E C E P T I O N
luv2drnkbr
hero member
Activity: 793
Merit: 1026
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 21, 2011, 09:40:26 PM
#9
Quote from: TiagoTiago on June 21, 2011, 09:21:46 PM
Perhaps they got a hidden volume inside their hidden volume (as deep as you wanna go), now that hidden volumes are becoming a common practice having a decoy hidden volume can be healthy for the soles of your feet....

Yo dawg I heard you like to..............
TiagoTiago
hero member
Activity: 616
Merit: 500
Firstbits.com/1fg4i :)
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 21, 2011, 09:21:46 PM
#8
Perhaps they got a hidden volume inside their hidden volume (as deep as you wanna go), now that hidden volumes are becoming a common practice having a decoy hidden volume can be healthy for the soles of your feet....
EricJ2190
full member
Activity: 134
Merit: 102
Re: Hur hur hur... Hope none of you used Dropbox to store your wallet!
June 21, 2011, 08:57:37 PM
#7
Quote from: Rodyland on June 21, 2011, 08:45:32 PM
Quote from: tito13kfm on June 21, 2011, 08:41:15 PM
I store my truecrypt container that contains a wallet backup on it... does that count?
I store my truecrypt container that contains a hidden volume that contains a wallet backup on it... does that count?

Rule #1 of hidden volumes: never admit you have a hidden volume.
Pages:
Bitcoin Forum>Bitcoin>Bitcoin Discussion
Jump to: