I kind of hate drawing lines like this, but honestly, at this point in the game, if you have any integrity at all and actually give a shit about freedom and open source technology, you will never support NVK or coinkite again.
Discussion
the vibe from NVK felt wrong to me from the first interaction on nostr. š¤·
If opensats claims to be what it is, I say they should remove him from the board.
It would be nice if they had that level of integrity, but I honestly don't think they will. As with most statements like this though, I'm very happy to be proven wrong.
It makes you wonder why projects like SeedSigner have never received any funding from OpenSats.
Yeah I've written them of as a marketing/propaganda outfit. But I agree, they can reform if they choose.
Doesn't make sense to donate 'sats' to a company building a 'MoneroSigner'. Surely that goes against the values of OpenSats.
Jesus fucking actual Christ. Where in the seed signer project does it mention monero? If the Monero signer is even still happening, that's a fork of the project and not related to seed signer
It is still under development.
That's actually really neat.
The point though, this dude is apparently too simple to get, and the point that the seed signer is trying to make is that if they went after people like Coinkite did for forking their project, then the Monero signer would never happen.
This is 100% correct.
nostr:note19d8ynfeqfw2qr2qkaumesadnrfnt809y98tmyta7zn7zsg8ewvss36nxrt
Well dang what should I use instead of a ColdCard?
Im a seed signer user personaly. You can buy premade ones or build your own if you want. But its diffrent. It's built with a Raspberry Pi so there's no secure element chip.
If you want something with a secure element then passports are decent from what I hear. People like trezors to. I have not used either though. But thats only if you feel the need to move wallets.
You can just use a pixel with graphene OS installed
Maybe a seed signer In a multi-sig combination
Secure
and it doesn't scream "I'm securing private keys"
What a bad advice where do you even pull it from
you got a problem with my setup bro
I said nothing about your setup. I said itās a shit advice. What works for you wonāt work for my mom
I find it hard to believe that your mom has an easier time using a coldcard than a phone with User-Friendly wallet software on it
Or maybe "works" has a different meaning here?
maybe you were referring to installing the OS onto the phone?
still way easier that using a CC
By the way my mama is using a bitbox and canāt really handle primal on android when she is in Madeira :D
On the phone nothing stops her to fuck up the security is my point. Itās easier to say learn to use
I mean
you can flash Graphene in 15 minutes from the web browser on your computer
its' dead simple
and install your favorite wallet on it
and you have a convenient signing device with a familiar interface in like an hour
with very little "learning to use" anything
i suppose you also need a strong password on the phone.
but its sure seems like an easier flow for more people than any HWW.
cheaper too.
But you know your mom better than I (not trying to say anything lol)
so your mileage may vary of course,
but it's not shitty advice.
Well in my case, I will be managing it for my mom no matter which method it is and she will never learn any of it either way š¤ I am very interested in switching to graphene OS from my iPhone but I havenāt prioritized it yet
Itās a shitty advice to be given out in a public space to average people because they donāt have a āfavorite walletā or a āfamiliar signing deviceā.
so basically you think that
its easier to teach an average nocoiner to use a CC
than to use a new app on a smartphone (which they are probably already used to using)
weird take but ok
If they need to send/receive ten bucks worth than just do custodial lightning and they wonāt have to learn more than scan an address. If you want to teach them to use savings technology donāt even mention using mobile cause you wonāt be able to teach them all the ways to not fuck it up. Hardware wallets are made to stop user from fucking it up and minimize the attack surface.
they literally just have to flash the OS and install wallet software
its true that the biggest danger is that they install MORE software and increase their attack surface
and that is only possible because the device isnt designed for that purpose only.
legit concern š
Whichwallefd would you use?
If you already have one then stick to it
Specter DIY
I really wonder how many atrocities does this cunt need to do for his cult followers to stop defending him so religiously?
The cult of NVK is one of the biggest blindspots in bitcoin ecosystem and at this point could be the material for great study on how much of an absolute fucking asshole you can be if you've done couple of cool things in your life.
nostr:note19d8ynfeqfw2qr2qkaumesadnrfnt809y98tmyta7zn7zsg8ewvss36nxrt
Not sure why nostr:nprofile1qqs9l7uwrd4k98qwxjsp87ff36aswkde3g7jgq5ezcep6h45y4dkwdgprpmhxue69uhkxun9v968ytnwdaehgu3wwa5kuef0qys8wumn8ghj7mn0wd68ytn9d9h82mny0fmkzmn6d9njuumsv93k2tcpzpmhxue69uhk2tnwdaejumr0dshsph902p is getting so worked up about the Pixel phone, with #GrapheneOS installed, as being a bad idea?
"Google spent three years subjecting Titan M2 to testing by the third-party lab SGS Brightsight. The chip now has an array of Common Criteria hardware security certifications, the same process that smartcards, SIM cards, and bank card chips go through. Titan M2 passed the highest hardware vulnerability assessment, meaning that it is highly resistant to physical attacks, an area that has been increasingly important to chip makers in recent years."
Can somebody knowledgeable tell why, with all the other security features in a Graphened AOSP + USB C hardeneing, this is getting called out as such a bad idea?
The human using the multi function device is the vulnerability. Human. Multi function. I literally have no knowledge about pixel, graphene or whatever else google š¤£ is doing with their devices but I know you donāt advice people yo point a loaded gun to their foot.
Ah, you're just being hysterical, got it.
Welcome back to the 70s š¤
It's a legitimate concern. People are stupid as fuck, and will shoot themselves in the foot.
Using an old phone might be simple for us, but for someone completely technologically illiterate, having a purpose-built device is probably a better way to go.
You really don't need to be an asshole about it.
Are you two fucking, is that it? I'm being attacked again by somebody else who didn't answer my rather straightforward question. Me, the arsehole!? I wasn't attacking anybody. You want me to add smilies to my posts to make you all feel better? (Rhetorical. Please don't answer).
Smartphones are not secure computing environments. Regardless of os, storing life savings on a device CAPABLE of internet connection is foolish. Thereās a reason hardware wallets were invented.
If itās capable of an Internet connection, it can be remotely attacked, and your funds can be stolen. ļæ¼
Appreciate your take. Any proof out there that a phone has ever been hacked like that? Just curious. I personally use a HWW but I always wonder about alternatives even just as a thought exercise.
Many instances of remote attacks, for example the Pegasus spyware targeting journalists using iPhones a while back.
Snowden did an interview demonstrating why he removes hardware from his phones and only uses wired headphones. If it has a wireless radio, it can be compromised.
Not to mention supply chain attacks where your smartphone could be compromised before purchase. This is why the community recommends open source hardware/software in an airgapped device as the only secure option long term.