operational security in the context of using computers and network systems
Questions tagged [opsec]
12 questions
20
votes
2 answers
How do I use cold transaction signing?
Cold transaction signing was recently merged into master. How would one go about using it?
For those who don't know, this feature allows you to:
Create and export an unsigned transaction on an online machine, with a watch-only wallet.
Sign and…
expez
- 1,386
- 10
- 16
9
votes
1 answer
Cloud storing wallet.keys encrypted files
How safe is it to store the wallet.keys files in a cloud service, email, website, etc? I imagine that it should be just as secure as the passphrases used to encrypt the file. If I understood it correctly, it uses Chacha8, which I believe is very…
user141
- 3,337
- 14
- 34
8
votes
1 answer
Minimum recommended user knowledge requirements
Cryptocurrency newcomers are disproportionately victims of financial loss both because of trusting dishonest 3rd parties and because of poor OPSEC.
Does Monero have a defined set of minimum recommended user knowledge requirements?
For example is…
nicetrader
- 607
- 3
- 9
6
votes
1 answer
In what ways can a wallet connected to a malicious remote node be abused?
There are several efforts under way at the moment to build easy to use mobile wallets for Monero. The most popular approach is to rely on a trusted remote node (either your own or one provided by a trusted 3rd party).
If we want to run wallets…
expez
- 1,386
- 10
- 16
5
votes
2 answers
Security differences between using Monero on PureOS and QubesOS
The new Librem laptops available for purchase with Monero offer an option to add a QubesOS operating system to any order. For Monero use exclusively, what are the security differences between PureOS and QubesOS?
Seth Abrams
- 355
- 1
- 8
4
votes
1 answer
Kovri operational security example(s) - file permissions
The Kovri User Guide has a Step 2. (Recommended) Operational security. It is currently as follows:
Consider creating a designated kovri user and run kovri only using that user
If using Linux, consider using a hardened kernel (such as grsec with…
scoobybejesus
- 5,515
- 21
- 42
4
votes
4 answers
Laptop has to go to service center - delete GUI?
my new laptop's battery is screwed and I have to take it back for a replacement - recently downloaded GUI and transferred a decent level of Monero into it.
Before taking to the service center should I delete the GUI or just rely on my password -…
AHS
- 73
- 3
4
votes
1 answer
Source code history "immutability"
I'm fairly new to git and it seems surprisingly easy to rewrite past commits.
I'm aware of the signed commits, and if I understand it correctly, it prevents against unauthorized/untrusted write access, including a compromission of the github…
Moroccan Engineer
- 2,968
- 2
- 12
- 34
4
votes
1 answer
Does Monero protect against timing analysis?
Does Monero protect against timing analysis?
As I understand it, Monero mixes the transactions so that you cannot definitively determine UserA sent money to UserB. Not 100%, but because the outputs are being mixed with UserS, UserQ, UserL, it would…
manontheinside
- 41
- 1
4
votes
2 answers
How to Properly Generate a Monero Brain Wallet?
I remember reading somewhere, I think it was fluffypony mentioning one could use for example words from a letter to a loved one seed for a Monero wallet. But from playing with https://xmr.llcoins.net/addresstests.html I realized that it is not…
user141
- 3,337
- 14
- 34
1
vote
1 answer
Would this be considered good OpSec?
Buy any altcoin on an exchange on the clearnet (on PC1 running OSX)
and have it converted to XMR wallet 1 (on PC2 running Tails)
Then send those coins from wallet 1 to another XMR wallet, wallet 2.
Finally wallet 2 to the marketplace where I wish to…
skski11
- 41
- 3
1
vote
0 answers
How do I setup a cold/hot wallet pair (instructions)?
I recently saw the answer for this question which discusses how to sign a transaction from a cold wallet.
How does one setup a cold/hot wallet pair such as this?
The answer mentions that the hot wallet doesn't have a spend key, this seems like the…
well_then
- 430
- 3
- 10