binsky's avatar
binsky Binsky@noderunners.org 1 year ago
Wow! Ton of information here indeed! I mean. Using the XPUB to generate a watch-only wallet (for instance on Blockstream green) comes in handy I think. But indeed… it “leaks” all your addresses to some software you don’t own. However, that software being open source is “safer”?
↑ Parent

Replies (1)

jimbocoin 🃏's avatar
jimbocoin 🃏 1 year ago
If you don’t control the Electrum server you connect to, you can’t know what logging or monitoring they’re using. For example, they could be running a free and open source Electrum server implementation like Fulcrum, but put it behind a reverse proxy that logs all traffic. The software running on your wallet and/or hardware signing device can’t protect you against a logging third-party server.
1 replies ↓