Topic: No 'full node', my coins ? (Read 334 times)

The traffic over dVPN is encrypted similar to TOR  that is why   I see no difference with TOR regarding security and privacy, but there is a big difference in comparison with centralized  VPN or ISP providers. Both of them can keep logs while dVPN nodes don't keep them.   

Which is completely irrelevant to CoinJoin.
There is literally not a single reason to bring up that paper as a reason to "not use coinjoni".




I know that paper very well.
This is practically not easily doable anymore.

The network has grown significantly. While this still is possible in theory, practically it is irrelevant. Especially if you don't make huge blunder, like allowing to connect via clear net or connect via Tor and clear net from the same node.
This might have been a valid attack vector in 2014, but is negligible nowadays. Especially if you know what you are doing.

Yes. Which is why we don't enforce Bitcoin to be on Tor only! Running node on Tor doesn't single you out, I do not understand what you're trying to get here. Running a node on Tor will not allow anyone to identify your IP, conversely, running it on Tor will obfuscate your privacy sufficiently. Running a node on Tor would definitely be more secure than you running a node on the internet, running a node on Tor will not allow your ISP or whoever identify that you are running it, connections are encrypted from point to point.


Yes. So do you understand that the paper that you've linked is about MITM which is also relevant to dVPNs and poses a security risk, perhaps even more so than your VPN provider or ISP and arguably less security and privacy than Tor?

---

I don't think this is very productive, if at all and should be shifted to a separate thread if you'd like as any further discussions could be a little off topic. From the discussion, I've inferred these points:
1. Tainting whatever coins or UTXO you have doesn't matter. It shouldn't matter because you're using CoinJoin and it doesn't automatically make you culpable of any illicit activities that the funds are responsible for. Not a reason to avoid CoinJoin.
2. The research on breaking Tor's privacy is outdated and infeasible. The nature of Bitcoin onion nodes keeps it within the onion network, eliminating rogue exit nodes. Having Bitcoin onion nodes is NOT bad, it helps people to circumvent regional restrictions and to maintain their privacy. Tor does not make Sybil attack much easier or cheaper. The nature of Tor doesn't result in the privacy to be broken easily. It is the way to go if you have to preserve privacy.
3. Decentralized VPN is a rebranded Tor. It does not mean that it is better, just a less tried and tested way to essentially achieve the same thing.

As other said, you only need a private key or mnemonic seed (depends on wallet) of your wallet in order to control bitcoin in that wallet.

• https://notyourkeys.org/
• https://www.lopp.net/bitcoin-information/recommended-wallets.html
• Mastering Bitcoin - The Bitcoin network
• Miners and Nodes (see the explanation for nodes)
• What Is A Full Node? & Support the Bitcoin network by running your own full node

If you don't care much about your privacy, you can use Electrum wallet and use it as cold storage (you need 2 computers)

• TUTORIAL: How to use Electrum (for advanced users) (See point #4 for Cold storage)

No. The problem doesn't exist because we do not use exit nodes if you're using nodes with onion address. In the scenario that Wasabi wallet's Tor address fails, it's fallback server has enforced HSTS which prevents SSL stripping. Sybil attack are expensive to execute, at least for Bitcoin Core. You cannot continue the chain without sufficient valid POW and it would definitely be more profitable to just mine legitimately if you have that ability to mine a block.

Traffic has to go through an outpoint for that, unlike Tor which keeps the connection within the network.

DNS Seeds doesn't matter. You're connecting to, not from. Yes, clients prefer 8333 over nonstandard ones.

If you are using a mixer or using Bitcoin in general, most of your coins or addresses are already tainted, with the varying degree depending on the definition of "taint". If you're having issues trying to use tainted coins, then you're going in the direction of "Bitcoin is NOT fungible". If that's what you're thinking then it would be better for you to try to get some newly mined coins and avoid using any other Bitcoins. It is by no means a reason for people to stop using CoinJoin but it is a reason for people to stop using services that defines tainted coins.

The paper is quite outdated, 2014 and there are thousands of reachable onion Bitcoin nodes which ensures that the traffic are unaffected by any rogue exit nodes whatsoever. The paper basically described a Sybil attack over Tor, or at least that was what I understood from skimming through the paper. I assure you that Tor gives you as much privacy as you can expect. Your ISP or your VPN provider has a higher chance of doing whatever is described in the paper.

Wasabi wallet, when used without a Bitcoin Core instance still provides more than sufficient privacy, using BIP158 and to reduce the signature by selecting multiple Tor nodes to fetch relevant information. It also uses Onion nodes only, and taking the exit nodes out of the question.

Yes. But it doesn't change the fact that running a Bitcoin node without the default port will still help the network to be decentralized. The gossip protocol makes it such that port 8333 is not mandatory and it'll still be easy for people to connect to your node via some random port.

How is your conclusion to "stay away from coinjoin" ?
The authors don't even consider the case where coinjoin is used. Simply because their methods wouldn't work.

It only allows to know that the coins come from a coinjoin. And if there is 1 transaction in-between, you already can't be sure anymore whether they belong to the same entity.

From the paper:


and


I don't see why one would discourage from using coinjoin based on this.

 That is true.

coin control.

There are two wallet options the custodial and non-custodial wallets if you are going to use an online wallet mostly those wallets are custodial wallets that you don't have full control(Mostly exchange wallets).
Like o_e_l_e_o said it mostly says "Not your keys, not your coins" I never heard that someone said "No full node, not my coins".


If you want to own a bitcoin always use non-custodial wallets like Electrum or wasabi.

Read this "Blockchain Explained: Custodial vs Non-Custodial Wallets" and this "Custodial vs. Non Custodial Wallets - "Not your keys, not your coin" Explained."

Thank you both, that has put my mind at rest.

I'll check the address via a separate pc.

I think it should be more of having access your private keys or not. The benefits of having a full node mainly lies within the fact that you're validating the blocks yourself as compared to most SPV wallets which Ledger relies on. SPV wallets functions on trusting the longest chain difficulty-wise to be valid, while this doesn't guarantee that the blocks are exactly valid, it would prove that there is sufficiently high proof-of-work on that chain itself and would be probably valid. This shouldn't actually cause any issues or pose as a security risk in normal use. The privacy aspect would favour full nodes greatly though.

If you have to get a second source for the transaction, you can try querying the transaction ID or the addresses on the blockexplorers as an alternative source.

The common saying is "Not your keys, not your coins". You do not need to run a full node to know that the private keys within your Ledger device are storing the coins you think they are.

You can look up the addresses generated by your Ledger device on a block explorer such as blockchair.com. If you see yours coins present on the addresses, then the coins are effectively in cold storage. (Note that coins are never actually "in" your hardware wallet - all that is in your hardware wallet are the private keys which allow you to spend those coins. The coins never leave the blockchain.)

When looking up your own addresses on a block explorer, if you are concerned about privacy then you should do so via Tor, so as not to obviously link your IP address to your bitcoin addresses.

Hi.

Sorry, new here.

Got some coins from a variety of exchanges and withdrew to my Ledger Nano S.

Then read article saying 'no full node = might not be your coins'.

I don't have the knowledge (or computing space) to run a full node.

How much of an issue could this be for me and is there any way to verify the coins are legit and in my cold storage.

I'm not a trader, I intend to keep them as long as possible.

If this has been answered before, could someone point me as to where.

Thanks.