laser_nodeMember
Posts: 6 · Reputation: 94
#1Jul 21, 2022, 09:06 AM
I'm trying to set up a solid due diligence routine for my self-custodied BTC, but honestly, as someone who's not super tech-savvy, it's pretty tough. It's making me more paranoid than usual, but I guess it's a bit exciting to explore this cryptographic space.
Here's what I'm aiming for:
1 Creating a strong 24-word seed plus a passphrase.
I'm thinking about using Ian Coleman or Bitcoin Core, but I'm struggling to confirm that I'm using the legit Ian Coleman webpage or Bitcoin Core software. I've been looking into PGP and checking signatures to ensure everything's authentic. It's really challenging since I'm on Windows, and most tutorials I find are for Mac or Linux. My Kleopatra isn't recognizing Ian Coleman's public key, and I keep getting this message when I try to import it: "Total number processed: 0 Imported: 0". I also couldn't find the public key for Bitcoin Core to download.
Is it really necessary to check these signatures and learn how to use Kleopatra and PGP software? How much at risk am I just by double-checking the URLs of the software I'm downloading?
Also, is it enough to just disconnect the internet and Bluetooth on my primary desktop to generate the keys? From what I've read, the ideal scenario would be to get a basic Raspberry Pi and generate everything air-gapped on a device that’s never been online. Am I being too paranoid or is this a solid approach?
2 Figuring out how to store the seed and passphrase: this is honestly pretty tricky. From what I gather, it’s best to keep the seed and passphrase separate, but I don't have a ton of options for that.