Nostr

No, this is why you use non kyc services (so your btc buying adventures can never be leaked, shared or stolen by the nefarious) and you don't talk about your stack, making you a target for $5 dollar wrench attacks.

Further opsec could include multi signature keys to mitigate the wrench attack (being unable to transfer without a third party essentially) or keeping your seeds secured offsite

binsky 2y ago

True. I totally get that. But more and more services HAVE to use KYC to comply with the law (in Europe at least). And then there’s the leak that happened with #ledger, leaking thousands of adresses online and what not.

Reply to this note

Please Login to reply.

Discussion

Eyeamidol 2y ago

Yep, these are all attack vectors that must be considered unfortunately. Seedsigner is good for this, as you can build a signing device with all parts from non nitcoin specific vendors, so no one need know you own one.

binsky 2y ago

Seedsigner as a wallet?

AnonBTC 2y ago

It's a hardware wallet that is diy.

binsky 2y ago

And is it reliable?

AnonBTC 2y ago

I have never used 1. I imagine they are perfectly capable of signing a transaction. Reliability shouldn't be a worry with proper backups.

binsky 2y ago

I believe so yes.

Backups in what way? Talking about seeds?

AnonBTC 2y ago

Yes seed words.

Eyeamidol 2y ago

Correct, it is a stateless signing device, so it doesn't hold keys when it's not on (this is a security choice by design) , meaning you have to give it your keys each time you want to use it (either type them in or use a qr code you can create via their software). Also great for generating seeds in a completely offline way.