Pages:
Author

Topic: Is Dropbox a safe place keep my TrueCrypted BTC wallet backup? - page 2. (Read 5332 times)

legendary
Activity: 1764
Merit: 1000
How easy is it, really, to bruteforce a truecrypt file when the password is 35 characters long? Is bruteforce the only way? It seems like dropbox would be okay if your file is encrypted properly and doesn't stand out. If you name it something random like "charset.dll" or something, who would really spend that much time on it?

Better yet, hide it in a folder with some program that already has a bunch of .dll or .dat files, so it looks like it's just one of the require components  Cool

IIRC 8 chars take more than a life-time.
sr. member
Activity: 308
Merit: 250
Jack of oh so many trades.
How easy is it, really, to bruteforce a truecrypt file when the password is 35 characters long? Is bruteforce the only way? It seems like dropbox would be okay if your file is encrypted properly and doesn't stand out. If you name it something random like "charset.dll" or something, who would really spend that much time on it?

Better yet, hide it in a folder with some program that already has a bunch of .dll or .dat files, so it looks like it's just one of the require components  Cool
sr. member
Activity: 392
Merit: 250
Should be safe ...
newbie
Activity: 55
Merit: 0
As long as you have encrypted the wallet file using TrueCrypt (strong password + locally stored key file), you should be fine backing it up to the cloud (DropBox, GMail or any similar alternatives).

If anyone manage to get hold of the file (from the cloud), and they are prepared to bruteforce your password, they still need the key file (which is not stored anywhere near the cloud, and only you know its exact location).
newbie
Activity: 58
Merit: 0
You can try with Bitcasa, since the files are encrypted on your PC instead of their servers and then the encrypted data is uploaded to their servers.
newbie
Activity: 12
Merit: 0
I suggest you to keep your encrypted wallet on encrypted USB stick in the safe. It is the most secure way when nobody can get even your encrypted wallet.
newbie
Activity: 21
Merit: 0
why not keep it in a windows skydrive account?
legendary
Activity: 3472
Merit: 4801
I zip mine up and then rename the zip.  Most clowns don't know what they are doing when they try to steal.  They will do searches only.

Well, there's a wallet just begging to be stolen.
newbie
Activity: 18
Merit: 0
I zip mine up and then rename the zip.  Most clowns don't know what they are doing when they try to steal.  They will do searches only.
full member
Activity: 168
Merit: 100
I wouldn't keep it in dropbox, even encrypted.

Stick it on a USB key (encrypted) and keep it in a safety deposit box, or in a relative's safe.

Or for long term storage make a really good brain wallet involving a salt, a complex phrase, and a personal identification number (like drivers license). Salt should be at least 8 characters, dozen preferred.
cp1
hero member
Activity: 616
Merit: 500
Stop using branwallets
It's probably fine if you've already encrypted it, but it's better to just print a paper backup in my opinion.  Two people can keep a secret if one of them is dead.
legendary
Activity: 1764
Merit: 1000
As you wrote: Depends how paranoid you are.

Encrypt your wallet and you should be fine
hero member
Activity: 532
Merit: 500
I suggest you put your wallet on a USB as well on your computer. The more backups you have the safer.

Dropbox is safe, if you put a password on the file.
newbie
Activity: 2
Merit: 0
I think its not safe. I its safer on gmail  added with strong password.
legendary
Activity: 1017
Merit: 1003
VIS ET LIBERTAS
Better put it in a small truecrypt container before uploading.
That's the right way to go about it.
encrypt the wallet.dat - then encrypt the file with 3rd party encryption software and that can go to online storage.
For max. security you could scramble the file before uploading it: http://www.alldataright.com/file-scrambler/screenshots.html
full member
Activity: 322
Merit: 113
Sinbad Mixer: Mix Your BTC Quickly
In theory, BTSync would probably be a better solution. Less people with access to the files (i.e. decentralized). Same concept as Dropbox, just without the central server, and uses a passkey just to sync (extra layer never hurts). That said, I use both, but I wouldn't put anything sensitive on Dropbox.

http://labs.bittorrent.com/experiments/sync.html
sr. member
Activity: 420
Merit: 250
I personally wouldn't do it, but if you are uploading an encrypted wallet with not many coins you *should* be fine.
Better put it in a small truecrypt container before uploading.

That's the right way to go about it.

encrypt the wallet.dat - then encrypt the file with 3rd party encryption software and that can go to online storage.

legendary
Activity: 1017
Merit: 1003
VIS ET LIBERTAS
I personally wouldn't do it, but if you are uploading an encrypted wallet with not many coins you *should* be fine.
Better put it in a small truecrypt container before uploading.
b!z
legendary
Activity: 1582
Merit: 1010
I personally wouldn't do it, but if you are uploading an encrypted wallet with not many coins you *should* be fine.
newbie
Activity: 28
Merit: 0
Its safe if the download link is never gave to anyone
Pages:
Jump to: