What's wrong with QT? It has been audited to an extreme. Armory is great with the paper wallets but putting a wallet.dat into cold storage should be ok.
Can you sign transactions offline with Bitcoin-Qt? 
Topic: The biggest problem with cold storage wallets is making sure that your address.. - page 2. (Read 5925 times)
December 06, 2013, 03:38:35 PM
December 06, 2013, 03:37:16 PM
If you're doing cold storage and think that somehow involves Bitcoin-Qt you're doing something very wrong.
Use Armory for cold storage.
What's wrong with QT? It has been audited to an extreme. Armory is great with the paper wallets but putting a wallet.dat into cold storage should be ok.Use Armory for cold storage.
I recommend against just using the wallet,dat file for your cold storage, as the wallet.dat format may change in future client versions, possibly loosing compatability with the current file layout (berkleydb vrsion incompatibilities, or dropping bdb entirely); making it a pain for you to read the keys from it.
Just dump the privkeys (or evern better, theres a dumpwallet command addded to bitcoin client which dumps out the wallets whole keyppool in a nice table for you). and save that for storage, pipe strait into openssl, or gpg, or whatever if wanna store encrypted or just to aviod writing raw key to disk/stdout...
December 05, 2013, 10:12:03 AM
That's way to cheaty for me, if I used that, well, let's just say primedice would be out of their reserve for a long time. I'm a good person, however, so, I'll just report it as a bug to 'em.
December 05, 2013, 08:25:10 AM
If you're doing cold storage and think that somehow involves Bitcoin-Qt you're doing something very wrong.
Use Armory for cold storage.
What's wrong with QT? It has been audited to an extreme. Armory is great with the paper wallets but putting a wallet.dat into cold storage should be ok. Use Armory for cold storage.
December 05, 2013, 06:18:26 AM
December 05, 2013, 05:11:58 AM
A good way to bypass any RNG backdoors is to generate your random addresses using dice.
Several tools support that: NoBrainr (see link in signature), bitaddress.org, and a few others which you can find on this forum.
Several tools support that: NoBrainr (see link in signature), bitaddress.org, and a few others which you can find on this forum.
December 04, 2013, 09:57:35 PM
If you're doing cold storage and think that somehow involves Bitcoin-Qt you're doing something very wrong.
Use Armory for cold storage.
Use Armory for cold storage.
December 04, 2013, 06:53:32 PM
This is a massive thing people look after. A ubuntu developer couldn't do something like that easily, as it would be extremely noticeable, and people would wonder what reason he had to do so. Sorta like what went down on the android bitcoin app, everyone was notified that it was using an insecure RNG that the developers choose . Rest assured, it's not going to be easy to rampantly harvest addresses like that as you described. There would be a notable amount of address collisions, and an insecure RNG in ubuntu would wreak havoc in other applications. The bitcoin client uses openSSL, which is trusted by companies who have way more at stake than bitcoin's current cap.
December 04, 2013, 06:01:25 PM
Hello,
I'm finding a problem making sure my cold storage wallet is secure.. I find that the only loop hole in cold storage is making sure that the address generated in the offline pc are really random..
I can think of several issues:
1. a ubunto developer change the source code so that all users that create new address in bitcoin will create address from a pool of 200 million address ( so each one will get a different one) but the developer know the keys for all of them
2. downloading a bitcoin-qt client that new address generated from this client is from a pool of 200 million address ( so each one will get a different one) but the bitcoin-qt developer/hacker will have the keys for all address.
What is the best way to be absolutely sure my address is random|?
Has anyone ever thought about this issue?
Thank You.
I'm finding a problem making sure my cold storage wallet is secure.. I find that the only loop hole in cold storage is making sure that the address generated in the offline pc are really random..
I can think of several issues:
1. a ubunto developer change the source code so that all users that create new address in bitcoin will create address from a pool of 200 million address ( so each one will get a different one) but the developer know the keys for all of them
2. downloading a bitcoin-qt client that new address generated from this client is from a pool of 200 million address ( so each one will get a different one) but the bitcoin-qt developer/hacker will have the keys for all address.
What is the best way to be absolutely sure my address is random|?
Has anyone ever thought about this issue?
Thank You.
Jump to: