Many questions about #Ledger in my dm's:
What happened?
It came to light when Ledger unveiled its #LedgerRecover service that the newer models could have the possibility to send your private keys to the recover service.
Why is this bad?
The "recovery service" is not the core issue. It's the hardware wallet's itself. A hardware wallet should be very secure and it should NEVER be possible that such a wallet has the possibility of sending the private key.
What Would have been better?
If ledger would have created a #ledgerrecovery service where people would have need to fill the private key for themselves. I still wouldn't have used it as for KYC problems etc but at least the HARDWARE wallet would not have the capability of sending the private key.
What is the solution?
You can still use an older model or any other hardware wallet or learn to use a multisig solution and a mix of devices where the Ledger Hardware Wallet is only used to sign for connecting/transferring #Bitcoin
How Multisig?
Setup a Multisig Bitcoin wallet. Use the ledger #hardwarewallet only to sign for login or send #btc transactions.
I found this article with some extra info: https://bitcoinmagazine.com/guides/what-is-a-multisignature-wallet
Didi / ₿ Didi Taihuttu ₿ ALLIN
npub1vm…tdwtf
2023-05-17 09:44:29
Author Public Key
npub1vmwjykc3rpmtpmrrlwrf4u8lfxdnnf0uj083fxtqm5gk2kgaee4qttdwtfPublished at
2023-05-17 09:44:29Event JSON
{
"id": "7301d8146da849c9524eba14972cae208a72613b1503a36323614bb613ab3dcf",
"pubkey": "66dd225b111876b0ec63fb869af0ff499b39a5fc93cf149960dd1165591dce6a",
"created_at": 1684316669,
"kind": 1,
"tags": [
[
"t",
"ledger"
],
[
"t",
"ledgerrecover"
],
[
"t",
"ledgerrecovery"
],
[
"t",
"bitcoin"
],
[
"t",
"hardwarewallet"
],
[
"t",
"btc"
]
],
"content": "Many questions about #Ledger in my dm's:\n\nWhat happened?\nIt came to light when Ledger unveiled its #LedgerRecover service that the newer models could have the possibility to send your private keys to the recover service.\n\nWhy is this bad?\nThe \"recovery service\" is not the core issue. It's the hardware wallet's itself. A hardware wallet should be very secure and it should NEVER be possible that such a wallet has the possibility of sending the private key.\n\nWhat Would have been better?\nIf ledger would have created a #ledgerrecovery service where people would have need to fill the private key for themselves. I still wouldn't have used it as for KYC problems etc but at least the HARDWARE wallet would not have the capability of sending the private key.\n\nWhat is the solution?\nYou can still use an older model or any other hardware wallet or learn to use a multisig solution and a mix of devices where the Ledger Hardware Wallet is only used to sign for connecting/transferring #Bitcoin \n\nHow Multisig?\nSetup a Multisig Bitcoin wallet. Use the ledger #hardwarewallet only to sign for login or send #btc transactions. \n\nI found this article with some extra info: https://bitcoinmagazine.com/guides/what-is-a-multisignature-wallet ",
"sig": "1d14bf69bdc4d3221e3c3ce5bf51d4922a67e67b34748d4b4a336fd7692f613f50ef5b6500dba960e13c1aef81f2322864ba73c50f748276b5c11b1feb8b8bb3"
}