Pages:
Author

Topic: Stay safe. - page 2. (Read 15423 times)

hero member
Activity: 770
Merit: 502
April 22, 2014, 09:07:49 AM
I am very happy I have resigned. Thread is already improving. Great work.
legendary
Activity: 1274
Merit: 1004
April 22, 2014, 09:03:03 AM
legendary
Activity: 1358
Merit: 1001
https://gliph.me/hUF
April 22, 2014, 07:01:43 AM
legendary
Activity: 1274
Merit: 1004
April 22, 2014, 05:40:03 AM
Thanks Newar, I have Added it in android security

Quote
Android Security

TIP #1 Don't store bitcoins on a rooted cellphone.
Rooting your device increases the security exposure to malicious applications and potential application flaws, thus any malware can steal your wallet/keys stored in a protected directory.
Malware on a rooted phone can also access other applications like google authenticator and read/write phone logs,sms etc which are needed for verification process in many websites/apps.

TIP #2 – Don’t install apps from untrusted third party apps stores.
TIP #3 – Use an anti-virus app for an extra layer of protection.
hero member
Activity: 770
Merit: 502
April 22, 2014, 05:13:19 AM
The one I remember off the top of my head is an early version of the blockchain.info app where users lost funds running the app on rooted phones. Blockchaininfo kept the password in a plaintext file that would not have been accessible on a sandboxed phone. Since it was rooted that info was accessible to the malware. A combination of things for sure, but if you're phone was not rooted, the malware could not have gotten to it.

A second example would be your Google Authenticator keys, which can be relatively easy read out from a rooted phone (I did this myself when I had to switch phones). Not so from a sandboxed one.

Holy Moly. Not good.
legendary
Activity: 1358
Merit: 1001
https://gliph.me/hUF
April 22, 2014, 01:26:42 AM
Maybe add that Android apps (and I guess iPhones apps too) should not be run on rooted phones, as this opens the door to malware to read sensible information (at least that's how I understand it).

I never knew this.

Care to explain? Only if you can. In detail why and how it is very bad. I'll add it.

I was running a rooted android but nothing to real connected to sensitive data, separated email account, used it as a 2ndary pc for when I had problems or doing technical work with pc off, I need a laptop.

The one I remember off the top of my head is an early version of the blockchain.info app where users lost funds running the app on rooted phones. Blockchaininfo kept the password in a plaintext file that would not have been accessible on a sandboxed phone. Since it was rooted that info was accessible to the malware. A combination of things for sure, but if you're phone was not rooted, the malware could not have gotten to it.

A second example would be your Google Authenticator keys, which can be relatively easy read out from a rooted phone (I did this myself when I had to switch phones). Not so from a sandboxed one.
newbie
Activity: 14
Merit: 0
April 21, 2014, 10:51:29 PM
I have added a new thread about IPO investments. I hope new users will read it, before investing their hard earned money.

https://bitcointalk.org/index.php?topic=577790.0;topicseen

Nice.

I've been using lastpass for quite some time now and it gives me peace of mind knowing my passwords are always safe and secured.

It's great to have this thread up. Thanks.

It is, Also, for everyone to know, they may export their lastpass as lastpass csv file and then import it to keepass2 as Lastpass CSV by signing into lastpass, left click the lastpass addon icon, Tools/Advance Tools/Export to/Lastpass CSV , save where ever.

Open keepass2, make a new data base, create strong PW for keepass2 new database.

On the Menu bar of keepass2, click File/Import/ scroll down to /Lastpass CSV. Highlight it. Click the folder icon that appears that says "File to be imported". Navigate to your exported Lastpass CSV file click ok.

Reason of this new plugin is it handles PW's, secure notes, ect ect ect just like how lastpass handles everything which is very very awesome.

The two mixes very nicely now.

Nice, thank you.

Didn't know I can import my lastpass passwords and notes to keepass2. It's really awesome.

I can have a secured backup of my passwords and notes in keepass2 now. +1

hero member
Activity: 770
Merit: 502
April 21, 2014, 09:49:35 PM
I have added a new thread about IPO investments. I hope new users will read it, before investing their hard earned money.

https://bitcointalk.org/index.php?topic=577790.0;topicseen

Nice.

I've been using lastpass for quite some time now and it gives me peace of mind knowing my passwords are always safe and secured.

It's great to have this thread up. Thanks.

It is, Also, for everyone to know, they may export their lastpass as lastpass csv file and then import it to keepass2 as Lastpass CSV by signing into lastpass, left click the lastpass addon icon, Tools/Advance Tools/Export to/Lastpass CSV , save where ever.

Open keepass2, make a new data base, create strong PW for keepass2 new database.

On the Menu bar of keepass2, click File/Import/ scroll down to /Lastpass CSV. Highlight it. Click the folder icon that appears that says "File to be imported". Navigate to your exported Lastpass CSV file click ok.

Reason of this new plugin is it handles PW's, secure notes, ect ect ect just like how lastpass handles everything which is very very awesome.

The two mixes very nicely now.
newbie
Activity: 14
Merit: 0
April 21, 2014, 09:26:03 PM
I've been using lastpass for quite some time now and it gives me peace of mind knowing my passwords are always safe and secured.

It's great to have this thread up. Thanks.
legendary
Activity: 1274
Merit: 1004
April 20, 2014, 04:35:44 PM
I have added a new thread about IPO investments. I hope new users will read it, before investing their hard earned money.

https://bitcointalk.org/index.php?topic=577790.0;topicseen
legendary
Activity: 1274
Merit: 1004
April 19, 2014, 12:12:13 PM
this is a very good information and very helpfull speacialy to those people who is new to bitcoin this will help them to be safe keep it up escrow ms

It's actually pekv2's thread. He transferred this thread to me yesterday. I'll update it with more info soon.
sr. member
Activity: 266
Merit: 250
if you want something do something!!!
April 18, 2014, 09:40:11 PM
this is a very good information and very helpfull speacialy to those people who is new to bitcoin this will help them to be safe keep it up escrow ms
full member
Activity: 224
Merit: 101
April 18, 2014, 07:03:22 PM
I am retiring from this thread. I will be giving permission to escrow.ms for the new OP.

Thank you all for your generous help.

https://bitcointalksearch.org/topic/m.6285515
Thanks for everything you've done here, it's been really useful information spread and I'm sure lots of people have benefited from it.

Thanks again! Smiley
hero member
Activity: 770
Merit: 502
April 18, 2014, 03:27:30 PM
I am retiring from this thread. I will be giving permission to escrow.ms for the new OP.

Thank you all for your generous help.

https://bitcointalksearch.org/topic/m.6285515
hero member
Activity: 770
Merit: 502
April 18, 2014, 01:57:13 PM
great information, thanks!
about the software, what about PASSWORD SAFE?
it's open source and it's  free!

Its in the op. added it a while back long time ago.
hero member
Activity: 770
Merit: 502
April 18, 2014, 01:41:23 PM
Maybe add that Android apps (and I guess iPhones apps too) should not be run on rooted phones, as this opens the door to malware to read sensible information (at least that's how I understand it).

I never knew this.

Care to explain? Only if you can. In detail why and how it is very bad. I'll add it.

I was running a rooted android but nothing to real connected to sensitive data, separated email account, used it as a 2ndary pc for when I had problems or doing technical work with pc off, I need a laptop.
full member
Activity: 224
Merit: 101
April 15, 2014, 04:43:02 PM
It's a matter of against theymos's advice to be stickied and a trust thing against me I am guessing.

Edit:
I also try to bump it here n there.
That's good. And I suppose you're right, might be odd if he stickied it.
hero member
Activity: 770
Merit: 502
April 15, 2014, 12:22:36 PM
It's a matter of against theymos's advice to be stickied and a trust thing against me I am guessing.

Edit:
I also try to bump it here n there.
full member
Activity: 224
Merit: 101
April 15, 2014, 11:57:13 AM
Why can't they just sticky this again? Shouldn't be hard, and would be really appreciated.

This.

At the very least, a link to this thread could be placed somewhere in the newbie readme.
That could work too, however it's not only for newbies, so rather a sticky where -everyone- can see it.
hero member
Activity: 568
Merit: 500
April 15, 2014, 11:40:20 AM
Why can't they just sticky this again? Shouldn't be hard, and would be really appreciated.

This.

At the very least, a link to this thread could be placed somewhere in the newbie readme.
Pages:
Jump to: