Return-Path: Received: from smtp1.linuxfoundation.org (smtp1.linux-foundation.org [172.17.192.35]) by mail.linuxfoundation.org (Postfix) with ESMTPS id 3BFD4AE7 for ; Fri, 29 Sep 2017 19:35:00 +0000 (UTC) X-Greylist: from auto-whitelisted by SQLgrey-1.7.6 Received: from mail.osc.co.cr (unknown [168.235.79.83]) by smtp1.linuxfoundation.org (Postfix) with ESMTPS id B6B5BCF for ; Fri, 29 Sep 2017 19:34:59 +0000 (UTC) Received: from [192.168.2.225] (miner1 [71.94.45.245]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) (Authenticated sender: danda) by mail.osc.co.cr (Postfix) with ESMTPSA id E2E6D202A8; Fri, 29 Sep 2017 12:34:58 -0700 (PDT) To: Andrew Johnson , Bitcoin Protocol Discussion References: From: Dan Libby Message-ID: <6cd2299b-d38e-7bbc-e95e-9ce5ff13fc9e@osc.co.cr> Date: Fri, 29 Sep 2017 12:34:57 -0700 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.3.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8 Content-Language: en-US Content-Transfer-Encoding: 8bit X-Spam-Status: No, score=1.3 required=5.0 tests=RDNS_NONE autolearn=disabled version=3.3.1 X-Spam-Level: * X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on smtp1.linux-foundation.org X-Mailman-Approved-At: Fri, 29 Sep 2017 20:21:43 +0000 Subject: Re: [bitcoin-dev] Paper Wallet support in bitcoin-core X-BeenThere: bitcoin-dev@lists.linuxfoundation.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Bitcoin Protocol Discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Sep 2017 19:35:00 -0000 On 09/29/2017 11:07 AM, Andrew Johnson wrote: > One consideration of exposing this in QT is that it may encourage users > to generate paper wallets(which are generally used and recommended for > cold storage) from online machines, rendering them moreso lukewarm > rather than cold, since the keys weren't generated in an air-gapped > environment.  true that. Though there's nothing stopping a diligent person from installing bitcoin-core on a dedicated offline machine. The blockchain wouldn't need to be synced at all for key generation purposes. > When using bitaddress.org > locally(we /are /all only using it locally and not directly from the > online webpage, right? ;) ) you've at least made the effort to seek out > the repo, clone it locally, and use it on an offline machine and not > retain any data from that session. yeah, so I noticed this issue about Paper Wallet generation not being possible with bitcoin-core exactly because I was recommending to a non-technical user to use paper wallets, but then I also had to point out that really bitaddress code should be downloaded, audited, etc, before use. Things that are actually impossible for a non-technical user. So I figured that instead I would make a simple script for them that would use bitcoin-core to generate the addresses... and that's when it dawned on me that it won't actually work with present day RPCs that are all tied to internal wallet. hence, this proposal. > I'd suggest that any UI in QT include some sort of a modal dialog that > informs the user that this is not a secure cold storage address unless > it was created on an offline machine and printed on a non-networked > printer, and the prompt must be accepted and dismissed before the wallet > will provide the requested keys. yes, agreed.