Topic: [REQUEST] Developing Bootable Bitcoin-QT - page 2. (Read 5376 times)
This is a pretty slick idea! Like others have mentioned, Linux from Scratch is a pretty fantastic framework.
Up
good idea.
Bump
@jubalix that would be interesting but since this would be a USB wallet with an "offline" OS it might be overkill / more of a pain. IF you only go online with that USB drive to send , then I'd say you should be almost 99% safe from someone stealing your wallet.
For that to happen, they would have to know when you boot up that system in the short timeframe that it takes you to send coins. And since this system would be firewalled from any incoming connections, it would be fairly hard to get into it.
Kosta
For that to happen, they would have to know when you boot up that system in the short timeframe that it takes you to send coins. And since this system would be firewalled from any incoming connections, it would be fairly hard to get into it.
Kosta
one point
if you build this a nice feature would be to have it work so transactions are done offline by signing, then transferred to another virtual running linux os inside, or other os that only happens when you hit send, an this is what accepts the signed instruction and connects, so it is auto air gapped. The primary os would have no internet driver or so it could not connect, or alternatively if the primary os had to have such this then the virtual os would be the one running you user gui client to make the signing.
This would be done behind the scene away from the user of course
if you build this a nice feature would be to have it work so transactions are done offline by signing, then transferred to another virtual running linux os inside, or other os that only happens when you hit send, an this is what accepts the signed instruction and connects, so it is auto air gapped. The primary os would have no internet driver or so it could not connect, or alternatively if the primary os had to have such this then the virtual os would be the one running you user gui client to make the signing.
This would be done behind the scene away from the user of course
I'm wondering why someone hasn't remixed ubuntu to do this yet. It would be doable in a day or so.
IMO, Ubuntu is a too complex distro.
We need some small linux distro (50-100mb), remove most of the packages preinstalled, add Bitcoin-QT (customized), full screen, no browser, no .deb files, no repos, no text editor, no impr pant command, no nothing.
Also, if developers want we can use Electrum wallet or similar.
Also, we could ask Electrum developers to develop this.
The main thing is that we need a trusted developer to build this OS. (And release the source).
Linux From Scratch - you don't get more barebones than that.
Seriously, you probably do want to use something that has either rpm or deb packages simply because you can build the packages in a clean chroot environment (like mock) to make sure they have dependency sanity and don't accidentally link against packages you don't want them to.
You probably also do want a text editor, vim is probably fine and does not need x11 libraries to build.
I would however recommend a minimalist X11 environment and a web browser (web browser is useful for pywallet) - midori is a good basic browser (gtk-webkit), but don't include flash/java plugins.
Not having a text editor isn't going to make it more secure, if a hacker gets a shell he'll just upload a kit that has busybox and whatever other tools he needs, including a text editor.
ID suggest either going all out and building a custom linux from scratch distro , and strip everything out as suggested above or DSL (or similar distro) with very fine customizations
kosta
kosta
I'm wondering why someone hasn't remixed ubuntu to do this yet. It would be doable in a day or so.
IMO, Ubuntu is a too complex distro.
We need some small linux distro (50-100mb), remove most of the packages preinstalled, add Bitcoin-QT (customized), full screen, no browser, no .deb files, no repos, no text editor, no impr pant command, no nothing.
Also, if developers want we can use Electrum wallet or similar.
Also, we could ask Electrum developers to develop this.
The main thing is that we need a trusted developer to build this OS. (And release the source).
this is almost 1/3 of the killer app for bitcoin because people just need a usb they can associate a wallet and a nice gui front end operates for them....they can copy it and use a password, feel and be secure
the other 1/3 is a distributed exchange
the final third is speed, as in near instant or chain, throw away chains, local chains etc
also you may need to use electrum if the block chain gets to big.....to quickly
the other 1/3 is a distributed exchange
the final third is speed, as in near instant or chain, throw away chains, local chains etc
also you may need to use electrum if the block chain gets to big.....to quickly
I'm wondering why someone hasn't remixed ubuntu to do this yet. It would be doable in a day or so.
Well you could easily script this which would be open for others to scrutinize.
I'd possibly be interested in putting time into this if there was interest, and a bounty wouldn't hurt.
Kosta
I'd possibly be interested in putting time into this if there was interest, and a bounty wouldn't hurt.
Kosta
If someone has physical access to the machine to install a hardware logger, getting the wallet.dat is probably not that difficult.
How about hardware trojan and hardware keylogger?
Actually you can buy a keyboard hardware keylogger but you can do nothing with the password, you need the wallet file.
That requires hardware that copys the USB when it is plugged, that is the reason that the usb is formated in a encrypted format.
Also you can just type the password with a virtual keyboard.
How about hardware trojan and hardware keylogger?
Use hardware built prior to 2009
How about hardware trojan and hardware keylogger?
That's a little on the over paranoid side. The user should be reasonable sure their hardware has not been compromised regardless of what type of financial transactions they are using their computer for. There's only so much software developers can reasonably be expected to accomodate for.
How about hardware trojan and hardware keylogger?
Don't use Bitcoin-QT - it will be a headache due to downloading the blockchain.
Use an alternate client that does not require the whole blockchain.
Electrum! Use an alternate client that does not require the whole blockchain.
Don't use Bitcoin-QT - it will be a headache due to downloading the blockchain.
Use an alternate client that does not require the whole blockchain.
Use an alternate client that does not require the whole blockchain.
It's a good idea, and one I have thought about previously as a stopgap for a hardware wallet.
One hurdle is to build trust, that it's not in itself loaded with some kind of mailware.
Thats why we need the Bitcoin Core developers to build this. One hurdle is to build trust, that it's not in itself loaded with some kind of mailware.
Jump to: