#asknostr
Would you trust a new Nano Ledger S+ with SOME of your assets ONLY, if said Ledger has had the Bitcoin software installed ONLY and anonymously, for an Electrum wallet holding over Tor, holding say 5%?
It’s all about spreading the risk across platforms & wallet types in my opinion…
The alternative is to use it as 1 daily driver key for say a 2/3 multisig, where the third wallet could live peacefully on disks as a VM worst case.
That way I’d get the security of a hardware wallet AND multisig, without the rug pull risk :-)
And use a third party software, like Sparrow, imo.
Sure, for a multisig I will use Sparrow, it’s just that Nunchuk seemed so practical running on all platforms…
For me, I wouldn’t. You’ve covered a number of thoughtful technical workarounds. But for me, it is far easier to lose my trust than it is to earn it back. And Ledger just hasn’t done anything to earn back a place in my setup.
Doesn’t mean you’ll lose Bitcoin on a ledger. But I sleep well knowing where my Coldcard and Bitboxes are. If my coins were back on ledger - even with the robust extra steps you describe - I would feel anxious.
My two sats ✌️
I sure will NOT do anything but lambast them forever, but as of now I am limited in choices here.
Coldcard would be nice, but too low on fiat right now haha!
It does suck that they’re all pretty pricey. Blockstream Jade is a lot more accessible. Bitbox (Bitcoin only edition) is a little cheaper than the priciest Trezor, and trezor’s entry model comes in around 60 bucks.
Bear in mind I have never used trezor. People are pretty opinionated (for and against) but my understanding is they recently added a secure element to one of the models, which should reduce some of the disagreements about how it should be built.
Hope this helps 🤙
And anyway, to your original question…
5% of your stack on a ledger with only Bitcoin account. After you initialize it on Ledger Live, you can delete ledger live, wipe the device, and create a new seed phrase in Sparrow (or Electrum). You may not even need to wipe the old seed - just add a passphrase for a new set of addresses that ledger hasn’t seen.
nostr:npub1ltt9gry09lf2z6396rvzmk2a8wkh3yx5xhgkjzzg5znh62yr53rs0hk97y has excellent resources.
Start here, https://armantheparman.com/ledgerbad/
Then try this: https://armantheparman.com/ledgersparrow/
Yes this is what I will probably do anway, then use it as part of a multisig as well...
It's just a matter of time before a larger vulnerability is exposed at Ledger. Even rugpull disguised as hack. Good to spread the risk though.
Oh yeah... And who are we to say that Ledger will be the only one?
That being said I feel quite OK with my new, cheap Trezor that has seen Rocky Linux with biometrics for sudo and #Bitcoin only, running Tor over Mullvad every single time :-)
I would trust it in how you are using it. Smart to spread out the sats. I do the same.
