Pages:
Author

Topic: The Bitcoin Wiki Modernization Project - request changes and edits here - page 3. (Read 1631 times)

newbie
Activity: 14
Merit: 1


Other suggestions?
I was wondering if we should get rid of the past services that aren't in operation, from the "Bitcoin Wiki" pages?

- They just clutter the page and lead to nowhere.
- Perhaps it's best to just compile them on a single page and removed them from other respective pages.
yea I second this

@notatether
wouldn't it be easier to deputize people who write in here and let them change whatever they saw, potentially revert their access if too many shenanigans?


also
hey

multibit keeps popping up in the wiki. hasn't it been ded for a while?

https://en.bitcoin.it/wiki/Full_node

maybe a new heading/section for deprecated wallets would be informative too
https://en.bitcoin.it/wiki/Wallet


maybe already the lead section should contain https://bitcoin.org/en/choose-your-wallet rather than Further reading.
like: in order to facilitate your search for a wallet visit the following website https://bitcoin.org/en/choose-your-wallet

legendary
Activity: 1568
Merit: 6660
bitcoincleanup.com / bitmixlist.org
New page created https://en.bitcoin.it/wiki/Elliptic_curve_cryptography , a dedicated page that covers ECC operations in general, which I believe will not only be beneficial to people who want to learn more about how cryptocurrency works but also anyone trying to make wallets, block explorers, etc. It is a work in progress, in particular the multiplication ops are missing so I have to add that.

I rarely open this child board, so i just noticed your thread. Here are few pages which need update

1. https://en.bitcoin.it/wiki/CoinJoin

These days centralized exchange and custodial wallet will ask source of your fund or freeze your account if they detect incoming Bitcoin comes from CoinJoin (and mixer as well). I think it's important to mention this problem.

2. https://en.bitcoin.it/wiki/Wasabi_Wallet

Low priority. This page should be added to these categories,
https://en.bitcoin.it/wiki/Category:Clients
https://en.bitcoin.it/wiki/Category:Open_Source

I completely forgot about this, I'll have to make those changes in my free time.
legendary
Activity: 2870
Merit: 7490
Crypto Swap Exchange
I rarely open this child board, so i just noticed your thread. Here are few pages which need update

1. https://en.bitcoin.it/wiki/CoinJoin

These days centralized exchange and custodial wallet will ask source of your fund or freeze your account if they detect incoming Bitcoin comes from CoinJoin (and mixer as well). I think it's important to mention this problem.

2. https://en.bitcoin.it/wiki/Wasabi_Wallet

Low priority. This page should be added to these categories,
https://en.bitcoin.it/wiki/Category:Clients
https://en.bitcoin.it/wiki/Category:Open_Source
legendary
Activity: 1568
Merit: 6660
bitcoincleanup.com / bitmixlist.org
We're still alive and kicking!

I added a new Electrum screenshot, added the failure screens mentioned above, some captions on the success & failure screens and a short version history (including the 2018 phishing advisory info).

Meanwhile over at https://en.bitcoin.it/wiki/Armory I spelled out the websites and repository of the new fork of Armory, and clarified the identity of the old and new maintainers.
copper member
Activity: 2338
Merit: 4543
Join the world-leading crypto sportsbook NOW!
@NotATether, you have my permission to use the images from the post linked below for the purpose of updating the Bitcoin Wiki page about Electrum.

https://bitcointalksearch.org/topic/m.54223763

Thanks for this. The Electrum page at https://en.bitcoin.it/wiki/Electrum now includes steps to verify Electrum from DireWolfM14's guide.

The page will need some more edits though, in particular about Electrum's usage and history of the 2018 phishing attack on it.

In other news, the ECDSA page https://en.bitcoin.it/wiki/Elliptic_Curve_Digital_Signature_Algorithm just got a nice section on how to compute and verify signatures Smiley

Cool!  Just an FYI, I've been meaning to add "failed" verification images to the guide.  I have them already generated, but I just haven't made the time to update the post.  I'll get on it one of these days...  Like a rainy one.  In November.    Grin 
legendary
Activity: 1568
Merit: 6660
bitcoincleanup.com / bitmixlist.org
@NotATether, you have my permission to use the images from the post linked below for the purpose of updating the Bitcoin Wiki page about Electrum.

https://bitcointalksearch.org/topic/m.54223763

Thanks for this. The Electrum page at https://en.bitcoin.it/wiki/Electrum now includes steps to verify Electrum from DireWolfM14's guide.

The page will need some more edits though, in particular about Electrum's usage and history of the 2018 phishing attack on it.

In other news, the ECDSA page https://en.bitcoin.it/wiki/Elliptic_Curve_Digital_Signature_Algorithm just got a nice section on how to compute and verify signatures Smiley
copper member
Activity: 2338
Merit: 4543
Join the world-leading crypto sportsbook NOW!
@NotATether, you have my permission to use the images from the post linked below for the purpose of updating the Bitcoin Wiki page about Electrum.

https://bitcointalksearch.org/topic/m.54223763
legendary
Activity: 1568
Merit: 6660
bitcoincleanup.com / bitmixlist.org
~

So I went ahead and removed most of those nonprofits anyway, I kept the ones for which I found Facebook pages to instead (although they look like they haven't been updated in a while either).

These removals decimates the page in a way so I want to expand it by including bitcoin groups formed at Meetup.com (like these, but only the big ones). Thoughts?
legendary
Activity: 1568
Merit: 6660
bitcoincleanup.com / bitmixlist.org
Apart from this, if there are any organizations which are available in respective countries and if you are aware of them you can include them in the list.

Thanks for your interest and aggregating a list of defunct charity links. Now if you can go find some newly created charities that aren't on the page I want to add the changes in one edit. (My hands are currently full with another project else I would've done so myself.)
legendary
Activity: 1584
Merit: 1280
Heisenberg Design Services
Thanks for bringing up this initiative NotATether. A few days back I have been going through the List of Bitcoin non-profits around the world in the wiki page  and most of the organizations are currently dead and their website was unreachable. I think it would be better to remove the websites which are dead and aren't currently active and regarding this I would like to hear other's opinion too. I have checked out and here are a list of websites/organizations which aren't functioning currently :

1. Belgium: Belgian Bitcoin Association

The website points to http://www.bitcoinassociation.be/ which is currently dead and the domain is up for sale. Even a linkedin search ended up with the same dead site. Hence, you could remove this or replace them with some other non-profit bitcoin based organization currently functioning in Belgium.

2. Canada: The Bitcoin Embassy

The site is currently dead but there seems to be a facebook page for the same over here : Bitcoin Embassy Hence you could change the link to point to the facebook page (just my thought)

3. Canada: Bitcoin Alliance of Canada

The website which was once functioning at http://www.bitcoinalliance.ca/ is now dead. I could not find a facebook page for the same. Hence you can remove them too.

4. Denmark: The Bitcoin Association of Denmark

The site is dead and I could not find any links through a fast google search.

5. India: Bitcoin Alliance of India

The site and organization both are dead. Here is the reference for the same : Bitcoin Alliance India (BAI) There is a facebook page but it's inactive since 2016, hence you could remove them as well.

6. Philippines: Bitcoin Organization of the Philippines

The site is dead and it's being redirected to a malicious site. You can remove them from the list.

Apart from this, if there are any organizations which are available in respective countries and if you are aware of them you can include them in the list.
legendary
Activity: 1568
Merit: 6660
bitcoincleanup.com / bitmixlist.org
From the BitcoinPaperWallet wiki page:

Quote
It is reported that the website's backend has a backdoor that sends the private keys generated across the Internet to its servers.

This is not correct. Based on this misconception, many people have suggested loading the page, unplugging your network (or disconnecting wifi), and then generating a secure address.

Your money will be stolen.

~snip

Alright thanks for this. I was the one who edited that page with that line anyway based on articles from Coindesk and news.bitcoin.com and they mentioned some things about sha256_test but I could not exactly figure out what it did. Your post clarifies it.

Edit impending with these changes, will update this post with the revision changes.



Edit Merge For Page: https://en.bitcoin.it/wiki/BitcoinPaperWallet

New source:

Code:
{{compromised}}
[https://bitcoinpaperwallet.com BitcoinPaperWallet.com] was an open-source paper wallet generator based on the [[BitAddress]] generator. Its source code is available on Github for the version as recent as April 2018, when the website was sold to a new owner[https://bitcointalk.org/index.php?topic=169836.msg46727114#msg46727114 The official BitcoinPaperWallet.com thread -- updates and news.] ''“At the end of April 2018, I sold the bitcoinpaperwallet.com website, service, and
associated domain names to a new owner.  This also includes related projects such as
litecoinpaperwallet.com and ethereumpaperwallet.com.”''
. It runs on any modern web browser and relies on JavaScript for all cryptographic functionality.

== Change of ownership ==

At the end of April 2018, Canton Becker, the owner of BitcoinPaperWallet.com at the time, announced via a signed PGP message that he had sold the website to an unknown owner,[https://bitcointalk.org/index.php?topic=169836.msg46727114#msg46727114 The official BitcoinPaperWallet.com thread -- updates and news.] later revealed to be Sarkis Sarkissian.[https://news.bitcoin.com/crypto-users-claim-popular-bitcoin-paper-wallet-generator-is-compromised-millions-allegedly-stolen/ Crypto Users Claim Popular Bitcoin Paper Wallet Generator Is Compromised, Millions Allegedly Stolen - news.bitcoin.com] Since then, there have been multiple accusations of BitcoinPaperWallet.com generating used private keys[https://bitcointalk.org/index.php?topic=5247201.msg54398322#msg54398322 Why has my newly created Bitcoin address already been used? - Bitcointalk.org] and private keys created from it being stolen.[https://bitcoin.stackexchange.com/questions/85038/what-did-i-do-wrong-that-caused-me-to-lose-bitcoin What did I do wrong that caused me to lose bitcoin? - Bitcoin Stack Exchange][https://www.reddit.com/r/Bitcoin/comments/cs68ri/my_paper_wallet_generated_on/ My paper wallet generated on bitcoinpaperwallet.com was hacked! - Reddit] Sarkissian has denied these allegations.

== Backdoor ==

The new version of BitcoinPaperWallet.com includes a backdoor hidden inside the site's JavaScript code in a function called ''sha256_test''. This function attempts to disguise itself as a unit test, however, it has been discovered that this function actually contains 60 pre-generated public/private keypairs encoded in base64 which are returned to the user. https://bitcointalk.org/index.php?topic=5322560.msg56568297#msg56568297. Therefore, '''it is no longer safe to download the webpage source and run it offline, as the private keys have already been exposed to the internet.'''

The conclusion is that using keys generated from this website will cause any money sent to them to get stolen. The information in the sections below is therefore for historical reference only.

== Secure usage ==

* A safe way to use this generator is to download the [https://github.com/cantonbecker/bitcoinpaperwallet generator from GitHub] so that it can be run as a "local" webpage using a secure offline computer. No Internet connection is required to generate new paper wallets and Bitcoin addresses.
* For the highest level of security, install the BitcoinPaperWallet generator onto an absolutely clean (virus-free, no unnecessary applications installed) "Live CD" or bootable USB thumbdrive.

== Differences from BitAddress ==

While BitAddress is capable of generating "brain wallets", pool-generated vanity wallets, and bulk wallets, BitcoinPaperWallet has been simplified such that its only function is to produce paper wallets. Additionally:

* Paper wallets printed using BitcoinPaperWallet feature a tri-fold design that is sealed shut so as to hide the wallet's private key and QR code from view.
* The reverse side of the design includes instructions for general use as well as a ledger for writing down deposits or other notes.
* The overall design includes a number of features to discourage casual tampering efforts that might otherwise reveal the private key without notice.
* The generator includes an option for printing a paper wallet by pasting in a self-generated private key or vanity address, bypassing the random address generator altogether.

[[Image:BitcoinPaperWallet-sample.jpg]]

== Similarities to BitAddress ==

BitcoinPaperWallet is a GitHub "fork" of BitAddress and uses verifiably identical cryptographic functions and methods. Similarly:

* The generator works entirely from within a web browser.
* No Internet connection is required for the generator to work.
* The full source code can be examined via "view source" in web browser.
* Cryptographic work, random number generation, and random data seeding ("gathering entropy") is accomplished using JavaScript.
* The generator can be run offline by [https://github.com/cantonbecker/bitcoinpaperwallet downloading a ZIP archive] of the HTML from GitHub.

== Designs ==

The BitcoinPaperWallet design is available in 12 different languages. Designs for special occasions are also available, for example these designs for the Christmas holiday or for giving money in red envelopes (e.g. for Chinese New Year.)

[[Image:Bitcoinpaperwallet-xmas-sample.jpg]]

[[Image:Bitcoinpaperwallet-chinese-new-year.jpeg‎‎]]

==References==

Graphical diff:



Summary of changes: Fix very severe factual error "... that sends the private keys generated across the internet to its servers".

(Due to lack of interest there will be no peer review)

EDITS BELOW THIS LINE

newbie
Activity: 2
Merit: 6
From the BitcoinPaperWallet wiki page:

Quote
It is reported that the website's backend has a backdoor that sends the private keys generated across the Internet to its servers.

This is not correct. Based on this misconception, many people have suggested loading the page, unplugging your network (or disconnecting wifi), and then generating a secure address.

Your money will be stolen.

The way the hack works is fairly simple: search for a variable called sha256_test. It is lazily disguised as some sort of a unit test, but in fact it's just an array of 60 pre-generated public address / private key pairs. To keep from being too obvious, they are encoded with base64 rather than base58check:

Code:
    var sha256_test = [{
        pub: "MUJ3a0g1cEt5WlN5cWpncERxRjlMV1BZaW5FMjg2Rjl6WA==",
        priv: "NUtCaHVra1E4TUxkd0ZIbUpCc3hCMXoxUVhLNWMzalQzUkRoQTZZUjFrZ1F5d00xM3ZG"
    }, {
        pub: "MUtxcm5ja3BkRktiYktNTGlYTDU1RGJDMVdjMURuVHhDWg==",
        priv: "NUpTVEMyOW1OOXJjWXE5a3lnR3pLNXpQNTJIZXVjeW5uRW5xR0RBaGpHR2dzamptYjZo"
    }, {
        pub: "MUFxVlZrcGpqb2JZM0pYbnRkSGZkeTdmTXRrbThBVW1kZA==",
        priv: "NUpTU2ZFVWJiRUZFWUpVc0Q5clo4VlUxc3NLcVNvYUtRYkp2Rlk4NTRxd1k1amlSZ2dw"
    // etc

Go to a site like base64decode.org and you can easily see these are addresses and private keys.

These addresses are generated on the server when you load the page. Disconnecting your network won't help -- the server already has all the public/private keys, because it generated them.

The perpetrators just keep a list of all the addresses they've ever handed out, and watch the transaction log. Most of the addresses will never be used, but when one of them gets a big enough balance they clean it out.
legendary
Activity: 1568
Merit: 6660
bitcoincleanup.com / bitmixlist.org
Review for edit merge: https://en.bitcoin.it/wiki/BitcoinPaperWallet

New page source:

Code:
{{compromised}}
[https://bitcoinpaperwallet.com BitcoinPaperWallet.com] was an open-source paper wallet generator based on the [[BitAddress]] generator. It's source code is available on Github for the version as recent as April 2018, when the website was sold to a new owner[https://bitcointalk.org/index.php?topic=169836.msg46727114#msg46727114 The official BitcoinPaperWallet.com thread -- updates and news.] ''“At the end of April 2018, I sold the bitcoinpaperwallet.com website, service, and
associated domain names to a new owner.  This also includes related projects such as
litecoinpaperwallet.com and ethereumpaperwallet.com.”''
. It runs on any modern web browser and relies on JavaScript for all cryptographic functionality.

== Change of ownership ==

At the end of April 2018, Canton Becker, the owner of BitcoinPaperWallet.com at the time, announced via a signed PGP message that he had sold the website to an unknown owner.[https://bitcointalk.org/index.php?topic=169836.msg46727114#msg46727114 The official BitcoinPaperWallet.com thread -- updates and news.] Since then, there have been multiple accusations of BitcoinPaperWallet.com generating used private keys[https://bitcointalk.org/index.php?topic=5247201.msg54398322#msg54398322 Why has my newly created Bitcoin address already been used? - Bitcointalk.org] and private keys created from it being stolen[https://bitcoin.stackexchange.com/questions/85038/what-did-i-do-wrong-that-caused-me-to-lose-bitcoin What did I do wrong that caused me to lose bitcoin? - Bitcoin Stack Exchange][https://www.reddit.com/r/Bitcoin/comments/cs68ri/my_paper_wallet_generated_on/ My paper wallet generated on bitcoinpaperwallet.com was hacked! - Reddit].

== Secure usage ==

* A safe way to use this generator is to download the [https://github.com/cantonbecker/bitcoinpaperwallet generator from GitHub] so that it can be run as a "local" webpage using a secure offline computer. No Internet connection is required to generate new paper wallets and Bitcoin addresses.
* For the highest level of security, install the BitcoinPaperWallet generator onto an absolutely clean (virus-free, no unnecessary applications installed) "Live CD" or bootable USB thumbdrive.

== Differences from BitAddress ==

While BitAddress is capable of generating "brain wallets", pool-generated vanity wallets, and bulk wallets, BitcoinPaperWallet has been simplified such that its only function is to produce paper wallets. Additionally:

* Paper wallets printed using BitcoinPaperWallet feature a tri-fold design that is sealed shut so as to hide the wallet's private key and QR code from view.
* The reverse side of the design includes instructions for general use as well as a ledger for writing down deposits or other notes.
* The overall design includes a number of features to discourage casual tampering efforts that might otherwise reveal the private key without notice.
* The generator includes an option for printing a paper wallet by pasting in a self-generated private key or vanity address, bypassing the random address generator altogether.

[[Image:BitcoinPaperWallet-sample.jpg]]

== Similarities to BitAddress ==

BitcoinPaperWallet is a GitHub "fork" of BitAddress and uses verifiably identical cryptographic functions and methods. Similarly:

* The generator works entirely from within a web browser.
* Addresses are never transmitted over the Internet, and no Internet connection is required for the generator to work.
* The full source code can be examined via "view source" in web browser.
* Cryptographic work, random number generation, and random data seeding ("gathering entropy") is accomplished using JavaScript.
* The generator can be run offline by [https://github.com/cantonbecker/bitcoinpaperwallet downloading a ZIP archive] of the HTML from GitHub.

== Designs ==

The BitcoinPaperWallet design is available in 12 different languages. Designs for special occasions are also available, for example these designs for the Christmas holiday or for giving money in red envelopes (e.g. for Chinese New Year.)

[[Image:Bitcoinpaperwallet-xmas-sample.jpg]]

[[Image:Bitcoinpaperwallet-chinese-new-year.jpeg‎‎]]

==References==


Pictorial diff:

1/2


2/2


Summary of changes: Reflect ongoing developments of bitcoinpaperwallet.com credibility. If anyone has the Ubuntu LiveCD with the old bitcoinpaperwallet.com on it, notify me so I can add it back to this page.



There is also a prominent red notice at the top of the page that warns people not to go to the site.



Should I also remove the link at the top of the article that leads you to bitcoinpaperwallet's website? It sounds like a good idea on paper (pun not intended) but I'm not sure if it is appropriate to do on a wiki page.


EDITS BELOW THIS LINE


New revisions to the above:

Page source (removals not shown due to complexity):

Code:
At the end of April 2018, Canton Becker, the owner of BitcoinPaperWallet.com at the time, announced via a signed PGP message that he had sold the website to an unknown owner,[https://bitcointalk.org/index.php?topic=169836.msg46727114#msg46727114 The official BitcoinPaperWallet.com thread -- updates and news.] later revealed to be Sarkis Sarkissian.[https://news.bitcoin.com/crypto-users-claim-popular-bitcoin-paper-wallet-generator-is-compromised-millions-allegedly-stolen/ Crypto Users Claim Popular Bitcoin Paper Wallet Generator Is Compromised, Millions Allegedly Stolen - news.bitcoin.com] Since then, there have been multiple accusations of BitcoinPaperWallet.com generating used private keys[https://bitcointalk.org/index.php?topic=5247201.msg54398322#msg54398322 Why has my newly created Bitcoin address already been used? - Bitcointalk.org] and private keys created from it being stolen.[https://bitcoin.stackexchange.com/questions/85038/what-did-i-do-wrong-that-caused-me-to-lose-bitcoin What did I do wrong that caused me to lose bitcoin? - Bitcoin Stack Exchange][https://www.reddit.com/r/Bitcoin/comments/cs68ri/my_paper_wallet_generated_on/ My paper wallet generated on bitcoinpaperwallet.com was hacked! - Reddit] Sarkissian has denied these allegations.

It is reported that the website's backend has a backdoor which sends the private keys generated across the Internet to its servers.[https://www.coindesk.com/bitcoinpaperwallet-back-door-missing-funds-research BitcoinPaperWallet ‘Back Door’ Responsible for Millions in Missing Funds, Research Suggests]

Pictorial diff:



Changes have been pushed (sadly nobody replied about this and this can't wait forever). If anyone has any objections about the link I'll happily remove it.
legendary
Activity: 2968
Merit: 3406
Crypto Swap Exchange
- You guys (bitcointalk community members) bring together problematic pages, or pages that are just plain out-of-date on this thread
  • Buying Bitcoins (the newbie version)
    • IIRC, US customers could now buy BTCitcoin directly with PayPal [CMIIW].
    • For the credit card part, VirWox is already closed and Cubits has "terminated" its services [it's more like a blog now].
    • I didn't check the other parts but there might be a need for more changes.
  • Debit cards
  • Transaction accelerator
    • AntPool should be added to the "Mining Pool Accelerators" section.
    • IMO, we should get rid of the last section that is called "Third Party Accelerators [it's actually just broadcasting services]" and just replace it with a link to the "Transaction broadcasting" page [like what they've done on their own page].

Other suggestions?
I was wondering if we should get rid of the past services that aren't in operation, from the "Bitcoin Wiki" pages?

- They just clutter the page and lead to nowhere.
- Perhaps it's best to just compile them on a single page and removed them from other respective pages.
legendary
Activity: 3010
Merit: 8114
It's a huge undertaking, as just about everything needs to be updated in some form or another. The project has gone a long time without any major additions or edits.

I will take a look and see if anything immediately comes to mind... I remember somebody had spammed a few pages with advertisements for altcoins projects, will look to see if those got cleaned up first.
legendary
Activity: 1568
Merit: 6660
bitcoincleanup.com / bitmixlist.org
So yesterday I finally got those edit permissions I was asking for. So I am going to start an initiative to modernize the topics there by making a discussion thread here (as admins and edit-power givers rarely read this board anymore) Here is how it'll work:

The process:

- You guys (bitcointalk community members) bring together problematic pages, or pages that are just plain out-of-date on this thread
- I will make a priority queue out of them depending on how serious the problems are
- You suggest to me the appropriate modifications to make to the page
- I post a verbatim draft of the new page in code tags on this thread
- We peer-review the draft to iron out any wrong info (I'm known to edit my posts to fix spelling errors so for a serious page like Bitcoin Wik pages I do not want to do that). Scratched out due to lack of interest
- Finally, I push the changes to Bitcoin Wiki.

The queue:

Items closer to the top have a bigger priority.

- Add BIP38 info to private key page
- We need P2WSH, P2WPKH sections of P2SH and P2WPKH as soon as possible, and redirect pages with those titles to new sections in Script.
- Create Multisig and P2SH-P2WSH pages and redirect them to Script >P2SH-P2WPKH.
- Transactions page has simplified sections on P2PKH and P2SH. Make sections there for other address types and include links to Script at the end of each section.
- on the Bech32 page, Process to derive Bech32 addresses
- In the Tor page, mention that Tor V3 can be used by Core in 0.21.0



Completed items:

- BitcoinPaperWallet a likely scam - page needs updated Done!

Staff is doing a great job at mirroring new BIPs let's leave them alone.

Other suggestions? I want to hear your thoughts let's make this a long-term thing guys. This is pretty much the only hope we have for updating these pages because of how fewer people are asking for edit permissions now.
Pages:
Jump to: