Blockchain downloading


  • admin

    @Cornel It needs to be on - when sleeping no mining happens.



  • I have one very big concern about the Burst.
    Since it's so easy to log in into your wallet (you need just to press load wallet, then you get your passphrase copied for 30 seconds and you just paste it and you are entered into the account), if someone hacks my computer, it will be very easy for him to access my Burst Wallet and steal the funds.
    I'm wondering, wouldn't be better and safer to just add a second layer (like the phone), so every time when you try to access the wallet to be required to submit the passphrase and the SMS code?
    Wouldn't it assure a real safety?



  • safest way is to write down with pen and paper the pass phrase and dont save it to the comp, i use 2 wallets 1 with pass phrase saved to comp for easy copy paste for my main miner and every day transactions ... and a second that has only ever been logged into 1 time for setup that i use as a vault pass phrase saved in paper form stored securely. that i send burst to for storage.



  • as far as saving the pass phrase if you use the save load pass phrase option built into the all in one client the app does not store the phrase as a document it stores it as an encrypted code inside the app that makes it just as secure. if you use a pre generated or even a self made pass code that meets the standards of a pre generated pass phrase its almost imposible to brute force hack your wallet.... if some one does get hack its because of two things #1 they use a self made pass phrase thats vary short and easy to crack or #2 they stored the phrase as a document on comp for easy copy paste and the comp was hacked or some one had access to the comp and knew what the phrase was and how to use it. its still imo much safer than a standard bitcoin core wallet that has not been encrypted, vary easy to hack some ones comp copy the wallet.dat file and take all BTC.



  • @Gibsalot ok, but I still don't see the risk eliminated here considerably.
    Because, if I understand correctly, if someone hacks your Computer, when he accesses the Burst Client and presses the "Load Wallet" button, it appears the list with all your wallets (including the one that you keep as a vault). So, he just press to load every wallet from that list, gets automatically the passphrase for each wallet, even if you didn't save any of your passphrase on your Computer.
    So, eventually, if someone hacks your Computer, it's not difficult for him/her to access all your wallets that you signed in even just once from your Computer.
    Am I understanding correctly?



  • not if you dont save the vualt wallet in the burst client and only save it via pen paper. you do not have to go into account manager and add wallet... that is only if you want to save your pass phrase to that burst client for easy access. all you need is to remember or write down the pass phrase. absolutly no need to save it to a computer in any form. the idea of a paper vault wallet is to create pass phrase via pen paper..... logg into it 1 time manuly fund it to finish set up . save its address so you can send to it then logg out and never logg back into it so that there is no digital paper trail left on your comp that can be hacked ... just the paper card you carry in your wallet and a copy you stick in a safe or safty deposit box. then use the wallet that you use for every day transactions that will have a digital trail to make regular deposits to the vault wallet for safe keeping



  • if you do create your own pass phrase insted of using a auto generated one remember to stick to the guide lines that the auto generated ones use to ensure that its a secure pass phrase... # 1 you will want it to be a string of 12 or more words to ensure its strength. #2 remember that everything counts in the burst pass phrase all capitals and non capitals matter, all spaces matter and count as a digit in the phrase ( thats how most people think they got hacked or screw up they will copy/paste but have an empty space befor or after the intended phrase in the highlighted copy , adding a space to the end of your pass phrase counts as a new pass phrase and will logg you into a new wallet.) dont make it a common run on sentance. mix it up make it random, if you use song lyrics like i have in the past. dont use 1 set of lyrics from 1 song... make it 2 or 3 sets of lyrics for 2 or 3 dif songs / artist and mash / mix them together throw in some capps and #'s . you want somthing that makes no since when read but just maby if you lose your copy of it just maby it will give you a chance of remembering how you made the phrase and give you a better than 0 chance of geting your wallet back.


  • admin

    @Cornel if someone hacks your computer and has full access no additional layer of security like pin code or extra password will help you. Keep your machine clean from dubious software and updated, then you'll be good.
    @Gibsalot is right with the pen and paper approach.

    Having an "daily" account and a "vault" is the best way to protect yourself.



  • @daWallet, do you want to say that if someone hacks my PC, an extra layer of security would not help me? For example, after password is inserted, the requirement of an SMS code sent to the phone number attached to the wallet would not be helpful?


  • admin

    @Cornel Two factor authentication is a very good way to secure something but hard to set up. This is a decentralized ledger and a SMS code auth would be centralized. So this SMS server would be constantly under attack.
    And yes, if your computer is hacked, the attacker is also in your home WiFi as your phone. He can manipulate every device on your network and even read out your SMS. Just one scenario.
    There are so many scenarios possible but if you have a pen and paper wallet - the hacker has to literally break in your house and find this one piece of paper. Which doesn't make much sense, because the journey to you would simply cost more than what is inside your wallet.


  • admin

    @Cornel Okay, I thought about the 2FA (two factor auth). It is possible with the Google Authenticator. I have to look into it further but I see no mayor problem implementing it for the win client.

    Thanks for the idea.

    The problem still persists that the Passphrase has to be in the computers RAM in plain text for some time as far as I know.



  • I will just now start mining.
    So, which one is the best mining pool for a total beginner?


  • admin

    @Cornel When you're getting started, and of the pools with longer deadline limits. If your plot is under 1TB, m.burst4all.com, above that pool.burstcoin.biz, pool.burstcoin.eu, pool.burstcoin.party ........



  • After pressing "submit" the "change reward assignment", I got this: {"errorDescription":"Incorrect "recipient"","errorCode":4}


  • admin

    @Cornel You need to use the BURST address of the pool you want to change to. eg. BURST-ZDKQ-BK92-67A5-DGENX - make sure there are no leading or trailing spaces.



  • I don't understand.
    I press:
    -- start mining
    -- ctrl+v the pool (m.burst4all.com)
    -- change reward assignment
    -- ok (where says that the pool address m.burst4all.com of m.burst4all.com got copied into your clipboard)
    -- ctrl+v it in the second textbox
    -- ctrl+v my passphrase in the first textbox
    -- submit
    What am I doing wrong?



  • I just created a brand new Burst wallet to serve as a vault. I transferred all my funds to the vault account, then inserted the password manually and signed in again into vault account; but when I tried to send 1 burst to another wallet -- it was said that the passphrase is invalid.
    I have written even in the beginning my passphrase on a paper, so I know for sure that it's the correct passphrase.
    Why now it always says that "Incorrect Passphrase"? Someone could help me please? This is my Wallet ID: BURST-M5L2-29EH-PTKQ-DD2GK



  • @Cornel ,

    Awhile ago, I created a second wallet by mistake and realized it had the same passphrase as my original wallet except there was a space at the end of the word phrase. That may be your problem, a character in the passphrase that you can't see??



  • I tried with space, I tried without space; I tried anything.



  • And I just transferred into that account 17'100 bursts.


Log in to reply
 

Looks like your connection to Burst - Efficient HDD Mining was lost, please wait while we try to reconnect.