aljaz/bitcoin-tutorials
1
1
Fork 0
mirror of https://github.com/openoms/bitcoin-tutorials.git synced 2026-02-02 10:14:20 +01:00
Code Issues Packages Projects Releases Wiki Activity

READE update and add using a phone as a wallet

Browse Source
This commit is contained in:
openoms
2020-11-17 09:06:55 +00:00
parent ca7439b453
commit dfb6c46f3f
2 changed files with 46 additions and 56 deletions
Download Patch File Download Diff File Expand all files Collapse all files

86
README.md
View File

@@ -1,57 +1,52 @@
## Guides for the RaspiBlitz and Linux desktop
**Get the most use out of your Bitcoin Full Node**
Start at <https://github.com/rootzoll/raspiblitz>
* #### [Create a Tor Hidden Service](tor_hidden_service_example.md)
A simple example of creating and using a Tor Hidden Service.
* #### [Electrum wallet](electrs/electrum_wallet.sh)
Download, verify and install the chosen version on a Linux desktop.
```
# Download
wget https://raw.githubusercontent.com/openoms/bitcoin-tutorials/master/electrs/electrum_wallet.sh
# Run
bash electrum_wallet.sh
```
* #### [Tor-to-IP tunnel service](tor2ip_tunnel.md)
Use the public IP address of a Virtual Private Server (VPS) to make Tor Hidden Services reachable on the clearnet.
* #### [Phone as a wallet](phonewallet.md)
A guide to store bitcoin on a clean Android or iPhone secured with multisignature in the Blockstream Green Wallet.
Recommendations to people who are looking into how to take custody of their first satoshis and not running their own node yet.
* #### [Single seed multi-location backup schemes](backups/README.md)
Create 3 packages of cryptographically secure backups where the funds cannot be recovered from any single package, but can be recovered with the combination of any two. Can be thought of as a physical 2-of-3 multisig solution for ColdCard, JoinMarket and LND wallets.
* #### [CoinKite Bunker on the RaspiBlitz](ckbunker_on_blitz.md)
<p align="left">
<img width="400" src="./images/ckbunker.starthsm.jpg">
</p>
* #### [Connect JoinMarket running on a Linux desktop to a remote node](joinmarket/joinmarket_desktop_to_blitz.md)
In order to use the JoinMarketQT GUI (and other scripts) it needs to connect to a Bitcoin Core node. A pruned node with the wallet enabled will do and txindex is not required.
Create 3 packages of cryptographically secure backups where the funds cannot be recovered from any single package, but can be recovered with the combination of any two. Can be thought of as a physical 2-of-3 multisig solution for ColdCard, JoinMarket and LND wallets.
* #### [Forward ports with a reverse SSH tunnel](ssh_tunnel.md)
No port forwarding needed on the local router.
Hides the IP of the host and provides an encrypted connection.
* #### [Tor-to-IP tunnel service](tor2ip_tunnel.md)
Use the public IP address of a Virtual Private Server (VPS) to make Tor Hidden Services reachable on the clearnet.
* #### [Create a Tor Hidden Service](tor_hidden_service_example.md)
A simple example of creating and using a Tor Hidden Service.
* #### [ZeroTier remote access](zerotier/README.md)
ZeroTier is a VPN service which is an easy option to connect remotely when neither port forwarding nor using Tor is possible (e.g. iOS on a remote network)
The drawback is that it requires installing a trusted package which gives access to your private network.
* #### [CoinKite Bunker on the RaspiBlitz](ckbunker_on_blitz.md)
<p align="left">
<img width="400" src="./images/ckbunker.starthsm.jpg">
</p>
* #### [Connect JoinMarket running on a Linux desktop to a remote node](joinmarket/joinmarket_desktop_to_blitz.md)
In order to use the JoinMarketQT GUI (and other scripts) it needs to connect to a Bitcoin Core node. A pruned node with the wallet enabled will do and txindex is not required.
* #### [JoinMarket on the RaspiBlitz](joinmarket/README.md)
A long standing coinjoin implementation with decentralised coordination and incentive structure.
* #### [BTCPayServer on the RaspiBlitz](BTCPayServer/README.md)
This guide will make you have BTCPayServer running on your node using the already synced bitcoin blockchain and local LND node and benefit from the backup and security features of RaspiBlitz and the stock LND.
No added synchronization needed.
* #### [Electrum wallet](electrs/electrum_wallet.sh)
Download, verify and install the chosen version on a Linux desktop.
```
# download
wget https://raw.githubusercontent.com/openoms/bitcoin-tutorials/master/electrs/electrum_wallet.sh
# inspect the script
cat electrum_wallet.sh
# run
bash electrum_wallet.sh
```
* #### [Electrum Server in Rust (electrs) on the RaspiBlitz](electrs/README.md)
Can be used as the backend of:
* Eclair Mobile Bitcoin and Ligthtning wallet
* Blue wallet
* Phoenix / Eclair Mobile Bitcoin and Ligthtning wallet
* Electrum wallet
* BitBoxApp
\`The server indexes the entire Bitcoin blockchain, and the resulting index enables fast queries for any given user wallet, allowing the user to keep real-time track of his balances and his transaction history using the Electrum wallet. Since it runs on the user's own machine, there is no need for the wallet to communicate with external Electrum servers, thus preserving the privacy of the user's addresses and balances.\` - <https://github.com/romanz/electrs>
* #### [RTL SSL/HTTPS access](nginx/README.md)
Secure remote connection for the Ride the Lightning Web UI
* #### [Electrum wallet installation on Linux with support for ColdCard, Trezor and Ledger](Electrum_ColdCard_Trezor_Ledger_EPS.md)
* #### [Zap iOS Tor Connection](Zap_to_RaspiBlitz_through_Tor.md)
Remote wallet for LND connected through Tor on iOS TestFlight
@@ -59,16 +54,8 @@ Start at <https://github.com/rootzoll/raspiblitz>
* #### [ZeusLN Android Tor connection](Zeus_to_RaspiBlitz_through_Tor.md)
Remote wallet for LND connected through Tor on Android
* #### [ZeroTier remote access](zerotier/README.md)
ZeroTier is a VPN service which is an easy option to connect remotely when neither port forwarding nor using Tor is possible (e.g. iOS on a remote network)
The drawback is that it requires installing a trusted package which gives access to your private network.
* #### [RaspiBlitz updates](raspiblitz.updates/README.md)
Update scripts for the RaspiBlitz and compatible systems.
* #### [LND updates](https://github.com/openoms/lightning-node-management/blob/master/lnd.updates/README.md)
Scripts to download, verify and update LND to the latest release or build from source up to a chosen commit.
* #### [RTL SSL/HTTPS access](nginx/README.md)
Secure remote connection for the Ride the Lightning Web UI
* #### [Zap Desktop Lightning wallet connection](ZAPtoRaspiBolt/README.md)
The desktop app [ZAP](https://github.com/LN-Zap/zap-desktop) is a cross platform Lightning Network wallet focused on user experience and ease of use.
@@ -76,11 +63,14 @@ Start at <https://github.com/rootzoll/raspiblitz>
* #### [Joule browser extension](JouleToRaspiBlitz.md)
Bring the power of lightning to the web with in-browser payments and identity, all with your own node. <https://lightningjoule.com/>
* #### [Electrum wallet installation on Linux with support for ColdCard, Trezor and Ledger](Electrum_ColdCard_Trezor_Ledger_EPS.md)
* #### [OpenBazaar installation and store migration](https://gist.github.com/openoms/ba843f7c44ff9c7ca0b5a80e12a0aeb4)
Truly decentralized, peer-to-peer ecommerce - https://openbazaar.org/
* #### [RaspiBlitz updates](raspiblitz.updates/README.md)
Update scripts for the RaspiBlitz and compatible systems.
* #### [LND updates](https://github.com/openoms/lightning-node-management/blob/master/lnd.updates/README.md)
Scripts to download, verify and update LND to the latest release or build from source up to a chosen commit.
---
* #### [RaspiBlitz v1.3 SDcard image for the Odroid HC1/HC2/XU4/XU4Q](https://github.com/openoms/raspiblitz/releases/tag/v1.3)

16
phonewallet.md
View File

@@ -1,7 +1,6 @@
# Phone as a wallet
A guide to store bitcoin on a clean Android or iPhone secured with multisignature in the Blockstream Green Wallet.
A guide to store bitcoin on a clean Android or iPhone secured with multisignature in the Blockstream Green Wallet.
A recommendation to people who are looking into how to take custody of their first satoshis and not running their own node yet.
## Why a phone?
@@ -26,22 +25,23 @@ A recommendation to people who are looking into how to take custody of their fir
* apply the latest security update
* perform a factory reset
* apply the most strict privacy settings and log in to only the bare minimum services
* apply the strongest possible PIN or passphrase to the lock screen (store in a password manager), avoid biometrics
* apply the strongest possible PIN or passphrase to the lock screen, store it in a password manager, avoid biometrics
* download the Blockstream Green wallet from the [App Store](https://apps.apple.com/us/app/green-bitcoin-wallet/id1402243590) / [Play Store](https://play.google.com/store/apps/details?id=com.greenaddress.greenbits_android_wallet) / [F-droid](https://f-droid.org/en/packages/com.greenaddress.greenbits_android_wallet/) / [GitHub](https://github.com/Blockstream/green_android/releases)
* [set up Green Wallet](https://help.blockstream.com/hc/en-us/articles/900002327003-How-do-I-create-a-new-wallet-) with the 6 character PIN and [Two-Factor Authentication (2FA)](https://help.blockstream.com/hc/en-us/articles/900001388366-What-does-Blockstream-Green-s-multisig-protect-from-)
with email and Google Authenticator
## Further advice
* Set up a password manager. [Bitwarden](https://bitwarden.com/) is a good open-source option with default free encrypted cloud storage and self hosting ability.
* if using email do not login to the email account on the same device - use a dedicated, unique, pseudonymous email with end-to-end encrypted providers like [Protonmail](https://protonmail.com/) or [TutaNota](https://tutanota.com/) - store the login in a password manager
* if using TOTP authentication (Google Authenticator / Authy) don't run it on the same device and store the secret in a password manager
* always connect through Tor, it is built in to Green (helps avoiding connecting the IP address with the bitcoin stored while querying Blockstream's server)
* Set up a password manager. [Bitwarden](https://bitwarden.com/) is a good open-source option with free, encrypted cloud storage and self hosting ability.
* if using email don't login to the email account on the same device - use a dedicated, unique, pseudonymous email with end-to-end encrypted providers like [Protonmail](https://protonmail.com/) or [TutaNota](https://tutanota.com/) - store the login in a password manager
* if using Time-Based One Time Password (TOTP) authentication (Google Authenticator / Authy) don't run it on the same device and store the backup secret in a password manager
* carefully note the 24 words seed down to paper ([pencil lasts more then ink](https://en.bitcoin.it/wiki/Seed_phrase#Paper_and_Pencil_Backup)) / etch into metal and store in a safe place
* it is the safest to store the phone switched off (the encryption key leaves the memory and not only protected by the lockscreen)
* the 2FA creates a 2-of-2 multisig with Blockstream which [can only be accessed after 365 days with only the seed](https://help.blockstream.com/hc/en-us/articles/900001536126-I-ve-lost-access-to-my-2FA-how-do-I-access-my-funds-) (in case of losing access to the 2FA or Blockstream disappearing)
* connect always through Tor, it is built in to Green and helps avoiding connecting the IP address with the bitcoin stored while querying Blockstream's server
## Watch-only wallet
* on an other device (can be a day-to-day used phone or desktop) set up Blockstream Green in [watch only mode](https://help.blockstream.com/hc/en-us/articles/900003101806-What-is-watch-only-mode-)
* the watch only wallet can be used to generate addresses and monitor the funds on the blockchain.
* the watch only wallet can be used to generate addresses and monitor the funds on the blockchain
* there is no risk of losing the funds if the watch-only device is lost, stolen or compromised (it only contains the public keys, not touching the private ones)
## Using a custom firmware