Replies (27)

Hendrix hendrix@nostrplebs.com 2 years ago

Great thread and well said. What a cluster fuck.

+boldmouse096⚡️ boldmouse@nostrplebs.com 2 years ago

I cannot zap ⚡ you 😒 Payment failed..

1 replies ↓

+boldmouse096⚡️ boldmouse@nostrplebs.com 2 years ago

It worked finally..

1 replies ↓

ContrarianAgrarian contrarianagrarian@nostrcheck.me 2 years ago

Thanks for including the Nitter link. If future updates can extract and export the seed words, encrypted or not, the “secure element” chip does not function as I thought it was supposed to function. 😡 Would be bad even if code was open but the fact it can’t be independently verified makes it even more absurd.

dr.fred fredglobal@getalby.com 2 years ago

it is an additional service which you do not need to use if you do not use it, nothing will change it is the most secure hardware wallet together with trezor

Stacker News

hardware wallet - trust or verify? \ stacker news

trust a hardware wallet? or verify? did you verify your coldcard wallet? your blockstream jade wallet? did you verify every single word of the open...

1 replies ↓

dr.fred fredglobal@getalby.com 2 years ago

i would not

2 replies ↓

Ryan _@ursus.camp 2 years ago

Why not?

1 replies ↓

dr.fred fredglobal@getalby.com 2 years ago

Stacker News

hardware wallet - trust or verify? \ stacker news

trust a hardware wallet? or verify? did you verify your coldcard wallet? your blockstream jade wallet? did you verify every single word of the open...

ContrarianAgrarian contrarianagrarian@nostrcheck.me 2 years ago

It seems to me that if it’s possible to do, then it opens Pandora’s box for all users, not just those who opt in. It’s the same logic behind why back doors for even “good reasons” are a bad idea.

Paul Sernine lupin@nostrcheck.me 2 years ago

Thx for compiling this thread 🙏🏼

Shadowbreaker info5@stacker.news 2 years ago

Could you name two or three truly open source hardware wallets, please!?

2 replies ↓

Joda joda@nostrplebs.com 2 years ago

Ledger needs to post a $1M+ bounty on hacking the device with the new firmware.

Travis West travis@west.report 2 years ago

Thanks for the analysis and summary. I was waiting for more information before judging what was originally put out by Ledger. You have outlined quite a few security concerns. Appreciated.

+boldmouse096⚡️ boldmouse@nostrplebs.com 2 years ago

View quoted note →

apa apa@snort.social 2 years ago

It’s a good thing that I never used their wallet after purchase. I felt bad about wasting money not anymore! Thanks for the info!

Qno 2 years ago

Thanks for the explanation. Clearly internet privacy is becoming a fundamental life skill like looking both ways when you cross the road. And a lot of millennials can't even do that.

Qno 2 years ago

You would think!!! The thing is that NO TRUST security is Ledgers' stock in trade. The problem is, if their device works as it should, then their business model will run out of steam. Looks like their investors wanted development to keep on rolling.

Seth For Privacy sethforprivacy@primal.net 2 years ago

Very few are actually open-source, only ones I can think of are: @Foundation Trezor Shift Crypto BitBox (haven't used myself)

1 replies ↓

Seth For Privacy sethforprivacy@primal.net 2 years ago

Sorry can be a little buggy with BTCPay!

Seth For Privacy sethforprivacy@primal.net 2 years ago

Happy to answer any questions you may have! It's a fantastic device, FOSS and FOSH, privacy-preserving, and tons of integrations. Plus now Nostr key support and key delegation coming shortly in a beta 😏

1 replies ↓

Seth For Privacy sethforprivacy@primal.net 2 years ago

Why?

Seth For Privacy sethforprivacy@primal.net 2 years ago

🔥

Ryan _@ursus.camp 2 years ago

I pulled the trigger 🔫

Seth For Privacy sethforprivacy@primal.net 2 years ago

We'd shut down Foundation if it came to that, not worth the profit to compromise on morals.

Foundation _@foundation.xyz 2 years ago

SeedSigner as well!

1 replies ↓

page394 2 years ago

#[6]​ Jade no?

Fryheid fryheid@nostrplebs.com 2 years ago

#[4]