Bitcoin cold storage wallet generator
I will make the device offline flight mode , and fully encrypted with a strong password. Can legacy wallets with 1xxx addresses send to segwit 3xxx and bc1xxx addresses like mycellium that only does 1xxx addresses?
I have mycellium for android and currently they dont support any segwit addresses that has 3xxx or bc1xxx. Can I send out from my mycellium 1xxx address to my segwit 3xxx or bc1xxx address that I Why is there separate private key for every adress?
What should i record for my paper wallet? Why is there separate private key for every address in Litecoin? What should I record for my paper wallet? To improve security measures and possibly sell What is a ' client '?
Is it me, my computer, my online wallet, the person selling to me or buying my bit coin or what? I just want to know how to Connect Trezor T directly to a printer to generate paper wallets Is it possible for a Trezor or Trezor T to connect with and directly interface with a printer? This will open the MyEtherWallet interface in your browser. Click on the New Wallet tab in the upper left corner. Paste your previously generated password into the space provided and hit the Generate New Wallet button.
Next, click the Download Keystore File button and save it to your downloads folder. This is your encrypted private key. Therefore, in theory, feel free to put this anywhere you wish. However, this isn't the most advisable solution, as it is advertising yourself as a target for others.
To do so, copy your encrypted keystore file from the downloads onto another flash drive and bring it to another computer and upload it to whichever of these sites you wish. Do not save your private key file, even though it advises you to do so. Also do not print out this paper wallet, as it is not encrypted. Just click Save Your Address. Now, select the Keystore File option and then select the file you saved earlier. It will ask you for your password, which you should enter and then click unlock.
After a successful decryption, you will be able to scroll down and view your "public" ethereum address. This is where you will send ether to in order to fund your account. You should try sending a small sum of ethereum to the address, reloading the wallet from scratch and unencrypting it again, and making sure the funds show up before transferring large sums into the account.
First, navigate to the Ripply wallet generator github repo here and then click on the file coldwallet-SHA1-xxxxx. Then, open a terminal window and enter the following commands:. Press TAB after typing the last one instead of enter and it should autocomplete the file name for you so you don't have to type it all out. After it does, then press enter. You should get a string of characters.
Verify that it matches the checksum listed on the home page of the github repository. If it does, you're good. Next, navigate back to your downloads folder and double click on the coldwallet-SHA1-xxx. Highlight your secret key and copy it to the clipboard. Then go back to the terminal and issue the following commands, replacing my example private key with your own:. Now you should see a text file on your desktop that contains your secret key.
Go back to the browser and copy the public ripple address to the clipboard and do the following commands, again replacing my example address with your own. You can store this wherever you like, write it down, and share it with anyone. This is the address you will use to send XRP to your wallet. Now, we will encrypt the secret key using the password we created earlier. To do this, issue the following commands. It will then prompt you to enter your password twice.
It won't appear in the window, but you will be typing it. To verify that this worked, run these commands:. It will then prompt you for the password to decrypt it with.
Again, paste or type it in. It should then spit out your original secret key. You can also just drag the file from a file browser into the terminal window after typing -in:. You can then enter the secret key in any ripple wallet you wish.
Make sure to only do this on a computer and internet connection that you trust. Making a wallet that is securely encrypted using a properly-generated and secure password will allow you to do truly secure "cold storage" of your cryptocurrency without the downsides of having to spend lots of money on hardware wallets and safes that could be compromised by traditional theft or natural disasters. Using this method, you can be confident that your coins will be safe from brute force attack.
This means that unless someone gains access to your password through bad practice in handling your password or gains access to the proper threshold of your shared secret shares which would hopefully be preventable once you know one or more of the shares is compromised , then your coins will be safe.
A traditional safe or bank vault may seem to provide more peace of mind at first glance, but in reality, when properly executed, a cryptographic approach is much more secure and reliable. I hope this helps someone! If you see any errors or have comments, or if you have any questions about something that wasn't clear enough, please feel free to leave a comment. This post is very well done, and perhaps really took a lot of effort to make. The thing is, unless we have more than 1 bitcoin this may be an overkill.
Especially for non techie people. It really is rare nowadays for a regular household to have an "air gapped computer". So if i've got a quarter of a bitcoin right now it would be impractical for me cost-security ratio to do this. Please don't get me wrong. This is a wonderful Idea, and I could be kicking myself in 10 years when I have 0. Yes, it is some effort, but actually, an "air-gapped computer" can be the same one you're using right now.
Air-gapped just means disconnected from the internet. Using a verified version of Tails and then disconnecting the computer from the internet when actually doing the sensitive generation steps should do the job! Of course, ideally you'd do it on a truly separate air-gapped computer, but that's really not necessary, especially for something like 0.
Wow, I wasn't aware of that too. It's a bit long but this looks really interesting. I hold a small amount of Ethereum and I'll see if I can follow these steps. I did another post that goes into a little more detail on how to do this specifically with Ethereum here: Oh I see, as you can tell I'm one of those non techie guys. Thanks for that, I'll really look into this now since it's possible. I'm an avid follower now. Please continue to post more topics like this.
I have followed your examples and made it to the part where you compare the checksums of the bitadressorg. Hi, sorry for the late reply. In case it helps, or helps someone in the future, you need to make sure to pipe the output from wget to shasum:. This takes the whole file and sends it to be inputted into the shasum program, which will hash the file and give you the output checksum.
Hey well written article! I had a quick question. I now have a number of alt coins on 2 different exchanges - Cryptopia and Kucoin. Do you know the best way to keep these alt coints safe. This sum should also match the first two. If any of these don't match, you know that one of the files is not legitimate. We are downloading the GPG signing keys for the author of the next piece of software and trusting them so that we can reference them later. At the prompt that comes up type trust then enter a decision of 4 and finally type quit at the subsequent prompt like so:.
You should get a message that says gpg: If so, you're good and can continue onto the next steps. Now we can start the process of actually creating the wallet and securing it. At this point, you should disconnect your computer from the internet by either disabling it in Tails or physically unplugging it if you have a wired connection.
First, navigate to your Downloads folder and double-click the bitaddress. When it opens, move your mouse around or type random characters into the box until you unlock the other options which will initially be covered by percentages.
Click on the "Bulk Wallet" option. Now, go back to your Downloads folder and navigate into the diceware folder. Double click on index. Click on one of the green buttons to generate a password of that word length. You should generate a password of at least 7 words , and more if you'd like to be even more careful. Feel free to regenerate as many times to find a set that you like. However, NEVER select words you like from each and assemble them together to create your own because you think they'll be easier to remember or for any other reason.
You MUST choose an entirely generated set for this to work. If you want to read more about how this generator works or the rationale behind it, feel free to scroll down and read the rest of the page. If not, find one you like and then copy the password with dashes separating the words. At this point, you can temporarily write down the password on paper as you learn to memorize it, but you will eventually want to destroy any copies that you have of it. See this and this for information on how to memorize the password easier.
You should also periodically test yourself to exercise your memory and make sure you remember the password. One way of doing this would be writing it down on paper and then destroying the paper. It will think for a minute, and then you'll get an output that looks something like this:. The 1 just signifies that this is the first wallet in the list. This is where you will send bitcoins to in order to add them to your wallet.
It is in the standard BIP38 format, meaning that when you import it into most reputable bitcoin wallet software, it will automatically detect it as such and ask you to input your password to decrypt it. Since it is encrypted, there is no way to use it without also knowing the password.
Therefore, feel free to put this anywhere you wish. Write it down, print it out, upload it to the internet wherever you want, etc. As long as you made a password as described above and did not ever put it somewhere it could be stolen, your money will be safe. What I propose to do with it, as one extra layer of security, is to upload this to semi-secure file hosting services like Dropbox, Google Drive, etc.
An easy way to do this is to copy your private address and then enter the following in a terminal, replacing the example encrypted private key with your own. You can now copy this file from the desktop onto another flash drive and bring it to another computer to upload it to whichever of these sites you wish.
You may also want to name it something innocuous so that it's not obvious for a potential attacker what it contains. What we will be doing here is creating a set of files that can be assembled to recreate your password if you forget it or lose it, or if you die and you want family or someone else to be able to recover your funds.
The way this works is you will make a number of files, N, of which a threshold number, T, of those files must be assembled in order to recover the original password. If any less than that number are assembled then you will know nothing about the original file, in our case the password.
To do this, we will use ssss-split to split our shared secret. Issue this command, replacing the number after -t with how many shares you want to require in order to re-assemble the password, and the number after -n with how many shares to generate total:. This will create 10 shares, with 6 required to reassemble the secret. You will then be prompted to.
At which point you will want to paste in the password you used to encrypt your wallet. It will give you an output that looks something like this:. Each of these, including the numbers at the beginning , are the shares.
To save them, you may simply store them in text files. You should then verify that the text contained in these files are correct. At this point, you should print each one out and store them in secure locations scattered around a large geographical area. You could also distribute them to trusted people or family members to take care of if you wish.
If you aren't yet ready to do so, you can save these files to a flash drive and distribute them later, but be VERY CAREFUL that they are never connected to a computer that is exposed to the internet, or a computer that you believe might be compromised.
In order to reassemble the shares, issue the following command, replacing the number after -t with the number of required shares just as you did in the split process:. You can try out how this process works at the ssss demo page here , but please do not use actual sensitive information on the web version.
Just use it to make sure you understand how it works before doing it for real. First, navigate to the MyEtherWallet github releases page and download the latest version as a zip file. It should be called dist-vX. We are downloading and trusting the GPG signing keys for the author of the next piece of software, the passphrase generator, so that we can reference them later for verification. At the prompt that comes up type trust then enter a decision of 4 for I trust fully and finally type quit at the subsequent prompt like so:.
First, navigate to your Downloads folder and open the diceware folder. Next, navigate back to your downloads folder and unzip the dist-vX. Then, open the resulting folder and double click on the index. This will open the MyEtherWallet interface in your browser.
Click on the New Wallet tab in the upper left corner. Paste your previously generated password into the space provided and hit the Generate New Wallet button. Next, click the Download Keystore File button and save it to your downloads folder.
This is your encrypted private key. Therefore, in theory, feel free to put this anywhere you wish. However, this isn't the most advisable solution, as it is advertising yourself as a target for others. To do so, copy your encrypted keystore file from the downloads onto another flash drive and bring it to another computer and upload it to whichever of these sites you wish. Do not save your private key file, even though it advises you to do so.
Also do not print out this paper wallet, as it is not encrypted. Just click Save Your Address. Now, select the Keystore File option and then select the file you saved earlier.
It will ask you for your password, which you should enter and then click unlock.