Oddbean new post about | logout
mutatrum | 4 months ago (raw) | root | parent | reply | flag +1 
 In this case it was a Ledger, repackaged with fake manuals and a scratch card for the compromised seed phrase.

Not sure what you mean with "lack recovery mode"? Or do you mean devices that can only generate a new key, and not import a seed?
jimbocoin | 4 months ago (raw) | root | parent | reply | flag +1 
 Right. There are devices on the market that lack a mechanism for you to supply (recover) a seed. They’ll generate one for you on the trust-me-bro model.
mutatrum | 4 months ago (raw) | root | parent | reply | flag 
 that's disturbing. which devices are this unholy?

https://m.primal.net/JLaM.png
jimbocoin | 4 months ago (raw) | root | parent | reply | flag 
 Block’s Bitkey and Coinkite’s Tapsigner are two examples.
d23b7c1f | 4 months ago (raw) | root | parent | reply | flag 
 ohhh. the Bitkey is so tempting though for 25$ especially for new folks.
jimbocoin | 4 months ago (raw) | root | parent | reply | flag 
 It would be fine as an addition to a multisig quorum. For example, I wouldn’t use a Ledger or a Bitkey, personally, but a 2-of-2 of a Ledger and a Bitkey is probably good enough for mid-sized cold storage.
d23b7c1f | 4 months ago (raw) | root | parent | reply | flag 
 yeah, that's the problem, i don't think it's advanced enough to do that. It doesn't actually show the seed. I need to dig into it more...
jimbocoin | 4 months ago (raw) | root | parent | reply | flag +1 
 If it produces an XPUB and a master key fingerprint (XFP), that’s a good start. But yeah, its firmware would also need to be capable of signing multisig transactions.

I’m almost curious enough to buy one. Almost.
d23b7c1f | 4 months ago (raw) | root | parent | reply | flag 
 well it was 25$ yesterday