/biz/ - Business & Finance

Buy an old notebook and put Qubes or Tails on it and install nothing else than your wallets on it.

>>15971677
Ledger nano x

>>15971748
Isn't that the wireless one? Like I said I'm paranoid af of shit being hacked.

What's the advantage of s over x? Is the difference that big?

>>15971677
I have both the original ledger and trezor. I prefer the trezor, screen is bigger/easier to use and the web interface is better imo

>>15971677
>What hardware wallet should I get?
money down the toilet mostly unless you want to actively transact in crypto.

>>15972022
What other way can I easily store in a safe way?

>>15972035
paper wallets are the best.
cheap, highly redundant, secure, immune to all forms of hacking (so long you are just storing).

in a few years you can scan these directly into your coinbase/whatever exchange account if you are pondering on how to move them. but it's not especially hard to set up a clean computer and create a signed transaction offline either if you are uber paranoid.

>>15971691

Just get the S, stop listening to the retards around here

>muh airgapped PC
>muh paperwallet

jesus

>>15972083
Wouldn't it be easier to just buy a nano than have a dedicated computer?

>>15972126
waste of money no real secure redundancy not quantum resistant. shit is bad.

>>15972133
>I said buzzwords that dont mean anything

shut up retard

>>15972142
what sort of brainlet are you?
waste of money: compared to the alternatives every unit costs a $100 and they (and the seeds) are a physical attack vector unless strict good practice is followed rigorously which makes it expensive snake oil bullshit.
secure redundancy: even if one ore more site becomes utterly compromised or destroyed you still retain full control of your assets.
quantum resistance: hierarchic deterministic wallets have the funny property of any private key can generate all other private keys of a hierarchy, once you transact you reveal a private key, quantum computing can be used to find a private key corresponding to the spent address and in less then a minute after that the private key for the change address is found by entirely conventional means.

shit is bad and you are stupid.

>>15972168
*once you transact you reveal a public key

>>15972168
Literally unhackable. Keep pretending you are smart and using big words you don't understand though.

>>15971677
I wouldn't get the Ledger Nano as its proprietary hardware. If you value your money, stay away from it. Instead just use libre software. I'm not sure but I have heard that Trezor is supposed to be libre, you would have to check that up. Otherwise just running a crypto software on a librebooted machine is the best you can get.

>>15972214
>Literally unhackable
it's not. evil maid attacks are not particularly costly. they got a few grand initial cost but nearly unlimited devices can be broken for that. the secure chip can be disassembled in a dark room using strong acid and the eeprom/flash contents read with a probing oscilloscope at that point your secret is no longer safe. (the soft pin protection is meaningless against such an attack) if you insist on using these devices never lose control of them when they have your actual wallet on them for a second!

the trezor security model is a bit better than nano because you don't actually need to store anything but the seed for your decoy wallet on the device. you need to follow good practice rigorously and always use a strong password (there is no other way to achieve cryptographic security everything else is bullshit like these ledger thingies). which was my point.

>>15972126
Don't use proprietary software/hardware.
>>15972214
>Literally unhackable.
You don't know that as it's proprietary. I bet someone skilled enough would be able to RE it.

>>15971677
I would avoid the X, it won't work with stuff like makerdao/kyber.
t. S/X/Trezor owner, I prefer the Trezor. S for shitcoins, X rarely use.

>>15972243
>>15972251
You can both fuck off. NOT ONE single Ledger wallet has ever been hacked. If you are so fucking smart and have the ability go claim the open prize money for hacking one.

Just get the nano S, they're great and it's all you need. I have two.

>>15972274
moving the goalpost? you said first they can't be hacked they obviously can i have explained two way one physical one only requiring you to transact a single time. these have well established literature educate yourself!

>>15972340
So how come none have ever been hacked? Surely the payoff would be worth the effort if it's as easy as you claim.

>>15972340
>Moving the goal post
No I didn't. I said unhackable, you said hackable, and then I said back up your larp of a claim by doing it then smart guy.
You can't because it's not fucking possible, now fuck off.

>>15972363
>So how come none have ever been hacked?
we don't have the penetration for them to get hacked i think. almost everyone has a credit card but very few people have worthwhile quantity of crpyto on these. it will come if they gain ground i have zero doubt.

as for quantum computers, they are simply not there yet. not for a decade or even a century (we don't really know when breakthroughs come)

>>15972380
>You can't because it's not fucking possible
i could, send me a nano ledger with 10 btc on it and i will show you how. but imagine the motivation people will have when bitcoin goes to $100k or higher... these shits will get broken. jamal will know the fence gives him a $100 for one of these and the fence will know the guy to take it to.

right now it doesn't have an industry yet, but with crypto adoption it will happen.

>>15972434
>people can hack them
>they're just not penetrable yet
Wat?

>>15972468
reading comprehension! we have the means and the know how to break them physically, we don't have quantum computers to break them the other way.

evil maid attacks work. unless you are using trezor with a strong password.

>>15972478
this is a good tldr
https://www.cl.cam.ac.uk/~rja14/tamper.html
but i got a more detailed article somewhere that describes in a straightforward manner how the soft pin protection is easily bypassed by the right equipment and what it costs

>>15972451
I've seen a video of trezor getting plugged into a box, the box figures out the 24 word seed phase. So as long as you have a 25th word, you're all good. With the 25th world you can multiple wallets with just a simple 1 word/phase difference.
Everything can/will be hacked. These HW wallets are the simplest way to hodl. The other options are for people that think too highly of themselves.

>>15972519
this describes the breaking of a secure chip used in a gaming console http://analysis.seclab.tuwien.ac.at/papers/ccsfp221-kammerstetter.pdf
still not what i remember, what is noteworthy is this chip was not just protected by resin.

>>15972529
>So as long as you have a 25th word, you're all good
exactly because the only cryptograhic security that's real and not bullshit comes from secret with strong entropy. these devices are not giving you security they are giving you illusion.

strong password gives you security.

>>15972543
i really just want people to understand this... it's not hard it's a pretty simple rule.

when you think about security you think in time.

a safe will protect you for hours a pin maybe for hours or nothing depending on implementation.
a strong password will protect you from eons and financially ruin a galactic empire to break it.

the password on the wallet i posted would take more than 900 quintillion years to break with the entire hashing power of nicehash. our universe is just a few billion years old btw 13 i think.

>>15972451
Ledger will pay $100k USD to anyone who hacks one of their units. Go claim it you larping fag. Oh you can't/won't because you are a larp and it can't be done.

>>15972581
details matter does the thing have to remain unharmed? i think the attack wold cost only half of that tops. have to look up the prices on the equipment.

>>15972543
>these devices are not giving you security they are giving you illusion.
Of course but you could say the same for 'air gapped' as most don't implement it correctly.
>strong password gives you security.
Yep, to be specific what the 25th word does is create a new private key. So every different 25th word, using the base private key via the 24 word phase is its own private key.

>>15972610
nope only bugs found aka good old hacking. sad.

>>15972617
if your password is strong the 24 words matter little. that's why is said it's all snake oil bullshit. you can have a strong password without paying for a single point of failure for free.

>>15972637
Oh fuck you're the arrogant Anon aren't you? Why do you bother coming into these threads? You come off as someone thats going to post about how you lost your crypto cause you fucked up some how.

>>15972570
13.8 you sperg

>>15972684
>arrogant Anon
wat
>You come off as someone thats going to post about how you lost your crypto cause you fucked up some how.
i strongly suspect we will have plenty of those if people keep on buying hardware wallets.
it's not me who don't get secure redundancy anon.

>>15972699
yeah but we are talking about magnitudes here. what's a few billion years give or take? nothing.

>>15971932
Get x the s has a micro usb port which eventually will stop working

>>15971677
Just use the Enjin wallet faggit

Hardware wallets are for Windows / Mac brainlets. I have a dedicated machine running qubes for my crypto stuff.

>>15973564
it's not better or worse by default, hardware wallets are like airgapped pc if not encrypted properly and protected by a strong password they are an attack vector. in fact pcs are an attack vector when running even if the hdd is encrypted properly. in that regard the tamper proof chip is slightly better.