Wallet Security Dos and Don'ts (Windows): Difference between revisions

From Bitcoin Wiki
Jump to navigation Jump to search
Forever (talk | contribs)
No edit summary
MagicFab (talk | contribs)
m Refactored in transcluded files
 
(22 intermediate revisions by 7 users not shown)
Line 1: Line 1:
*'''Don't''' keep all your bitcoins in one wallet.
{{:Wallet Security Dos and Don'ts (intro)}}


*'''Don't''' send bitcoins to a wallet that hasn't been backed up ''beforehand''.
== In general ==
{{:Wallet Security Dos and Don'ts (general)}}


*'''Don't''' send unencrypted copies of your wallets over the Internet.
== When using Windows specifically ==


*'''Don't''' store unencrypted copies of your wallets on online backup/storage services.
*'''Do''' use [http://www.truecrypt.org/docs/?s=keyfiles keyfiles] to encrypt your wallets


*'''Don't''' run or install programs from questionable sources on the system where you are running bitcoin.
*'''Do''' use a good antivirus and firewall, and keep them up to date (but understand their limitations).  


*'''Don't''' click on questionable links in your browser.
*'''Do''' keep your installed programs updated to the latest version.
 
*'''Don't''' run bitcoin on an untrusted or badly maintained machine. 
 
*'''Don't''' keep your computer switched on overnight.
 
*'''Don't''' install unnecessary browser plugins.
 
*'''Don't''' use a password for wallet encryption that you use anywhere else on the web.
 
*'''Don't''' forget your passwords. If you write them down on a piece of paper, keep that piece of paper in a safety deposit box.
 
*'''Don't''' store unencrypted copies of your wallets on a USB stick that you insert into machines of friends, at work, or while traveling.
 
 
 
 
 
*'''Do''' keep at least one offline savings wallet.
 
*'''Do''' backup your active wallet regularly.
 
*'''Do''' encrypt all wallets as soon as they leave your system.
 
*'''Do''' keep encrypted backups of all your wallets in at least 3 physically separate locations.
 
*'''Do''' use strong, unique passwords to encrypt your wallets.
 
*'''Do''' use [http://www.truecrypt.org/docs/?s=keyfiles keyfiles] to encrypt your wallets, and keep backups of your keyfiles in at least 3 physically separate locations.
 
*'''Do''' use a good antivirus and firewall, and keep them up to date.
 
*'''Do''' update all your installed programs to the latest version.
 
*'''Do''' update your operating system with the latest security patches.


*'''Do''' uninstall all programs that you don't use regularly.
*'''Do''' uninstall all programs that you don't use regularly.


*'''Do''' uninstall all browser plugins/ add-ons that you don't use regularly.
*'''Do''' run programs from questionable sources inside a virtual machine, such as [http://www.virtualbox.org/ VirtualBox].


*'''Do''' always browse in private mode.
*'''Do''' browse questionable websites from inside a virtual machine.


*'''Do''' use the [http://noscript.net/ NoScript] plugin (or similar) in your browser and whitelist only the sites you trust.
*'''Do''' connect the bitcoin client and IRC via [[Tor]].  
 
*'''Do''' run programs from questionable sources (eg. pirated software) inside a virtual machine, such as [http://downloads.vmware.com/d/info/desktop_downloads/vmware_player/3_0 VMWare Player].
 
*'''Do''' browse questionable websites from inside a virtual machine.


*'''Do''' regularly empty your mining wallet.


*If you own a large number of bitcoins, '''do''' invest time and money in order to secure them, just like you would with other valuables. If you lack the technical expertise, ask or pay somebody else to do it for you.
[[Category:Instructional]]
[[Category:Security]]


*If you believe your computer has been compromised, '''do''' wipe your HD and perform a clean OS install.
[[es:Qué se debe y qué no se debe hacer respecto a la seguridad del monedero (Windows)]]

Latest revision as of 19:18, 2 December 2013

[Note - There are varying levels of security appropriate for the level of risk. The following might be general recommendations for consumer-level risks. Service providers and large investors requiring enterprise level security might have a very specific list of Dos and Dont's that varies from this list.]

In general

  • Don't keep all your bitcoins in one wallet.
  • Don't develop a carefree attitude towards wallet security. Handle bitcoins with the same amount of diligence as you handle physical cash.
  • Don't use a password for wallet encryption that you use elsewhere on the web.
  • Don't use weak passwords. If a password is easy to remember without rehearsal, it is probably weak.
  • Don't forget your passwords. If you write them down on a piece of paper, keep that piece of paper in safe storage (safety box, etc.).
  • Don't run bitcoin wallet software on an untrusted or badly maintained machine.
  • Don't run software that has been copied illegally (eg, "warez")
  • Don't send bitcoins to a wallet that hasn't been backed up beforehand.
  • Don't send unencrypted copies of your wallets over the Internet.
  • Don't store unencrypted copies of your wallets on online backup/storage services.
  • Don't run or install programs from questionable sources on the system where you are running bitcoin wallet software.
  • Don't insert any devices of doubtful origin.
  • Don't store unencrypted copies of your wallets on a device that you insert into machines of friends, at work, or while traveling.


  • Do wipe your HD and perform a clean OS install if you believe your computer has been compromised.
  • Do backup your spending wallet regularly.
  • Do keep dated versions of each backed up wallet.
  • Do encrypt all wallets as soon as they leave your system.
  • Do keep encrypted backups of all your wallets in at least 3 physically separate locations.
  • Do use strong, unique passwords to encrypt your wallets.
  • Do update your operating system with the latest security patches.
  • Do invest time and money in order to secure any large number of bitcoins you may have, just like you would with other valuables. If you lack the technical expertise, ask or pay somebody else to do it for you.

When using Windows specifically

  • Do use a good antivirus and firewall, and keep them up to date (but understand their limitations).
  • Do keep your installed programs updated to the latest version.
  • Do uninstall all programs that you don't use regularly.
  • Do run programs from questionable sources inside a virtual machine, such as VirtualBox.
  • Do browse questionable websites from inside a virtual machine.
  • Do connect the bitcoin client and IRC via Tor.