oxeo0/blog-contributions
1
0
Fork 0
mirror of http://git.nowherejezfoltodf4jiyl6r56jnzintap5vyjlia7fkirfsnfizflqd.onion/nihilist/blog-contributions.git synced 2025-07-02 11:56:40 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Some improvements

Browse source
This commit is contained in:
prism_breaker 2024-11-28 13:38:32 +00:00
parent 62382fb7c9
commit 41bd5951ae
4 changed files with 17 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

26
opsec/moneroinheritance/index.html
View file

@ -80,8 +80,8 @@
<h2><b>Theory and setup</b></h2>
<p>The plan is to setup a plan when your family find out you died, <b>they can recover your crypto</b>. You will need <b>2 lawyers</b> to setup this plan. But our plan will utilize some cryptography tools so <b>neither your lawyer or your family members</b> can access your crypto not as you intended.</p>
<img src="whole_process.png" class="imgRz">
<p>We will use a cryptography tool called <b>veracrypt</b>, if you have never heard of this tool, familiarize it with the official document <a href="https://www.veracrypt.fr/en/Beginner%27s%20Tutorial.html">veracrypt document</a>. Learn how this tool works and how to play with it. </p>
<p></p>
<p>To achieve what we want, we need <b>threshold encryption</b>, where we need to encrypt containers and make sure that we need at least 2 out of the 3 existing keys to open them, we can use veracrypt <a href="https://blog.nowhere.moe/opsec/veracrypt/index.html">https://blog.nowhere.moe/opsec/veracrypt/index.html</a>, but instead of only using passwords, we'll use keyfiles</p>
<p>We will setup a container with password and keyfile, for these kind of container you will need both password and keyfile to open, if one of them is lost, it is impossible to decrypt</p>
<img src="keyfile.png" class="imgRz" style="width: 500px">
@ -105,21 +105,27 @@
<img src="11.png" class="imgRz" style="width: 600px">
<p>Move your mouse to collect enough entropy, this is very important! The protection from cryptography will be significantly weakened if there is not enough randomness. Then set the key file size to maximum which is <b>1048576</b>. This is the maximum size utilized by veracrypt and we should use that.</p>
<img src="12.png" class="imgRz" style="width: 800px">
<p>Name your keyfile as <b>key 1</b> and save it. And repeat this step to produce <b>key 2 and key 3</b>, we will use them later</p>
<p>Like previously stated, you will create containers with the same password, but use a different combination of <b>2 keyfiles</b> for each container</p>
<p></p>
<p>Name your keyfile as <b>key 1</b> and save it. And repeat this step to produce <b>key 2 and key 3</b>. You shoud have <b>3 keyfiles</b> now ready for being used to encrypt your containers.</p>
<img src="Key_ready.png" class="imgRz" style="width: 300px">
<p></p>
<p>We will then continue to create 3 containers, you will create containers with the same password, but use a different combination of <b>2 keyfiles</b> for each container as planned</p>
<p>As a remaider, 3 containers will have a encryption setup like this</p>
<p style="color: red;">Volume 1 : password + key file 1 + key file 2</p>
<p style="color: red;">Volume 2 : password + key file 2 + key file 3</p>
<p style="color: red;">Volume 3 : password + key file 1 + key file 3</p>
<p>Add the keyfiles in keyfile option when creating a new volume</p>
<img src="16.png" class="imgRz" style="width: 600px">
<p></p>
<p><b>You will always save three containers together, this means your family member can unlock 1 of the 3 container even one keyfile is lost.</b></p>
<p>Then you need to try to unlock and copy the seed file to each of the container</p>
<p>Then you need to properly <b>distribute the keys</b></p>
<p>Then you need to properly <b>distribute the keys</b> as follows:</p>
<p>1.You will keep key file 1, and the local copies of containers <b>at home</b></p>
<p>2.Tell your family members about the plan, and most importantly <b>the password</b></p>
<p>3.Upload the containers to a <b>cloud storage</b> which is controlled by your family members as a backup</p>
<p>2.Tell your family members about the plan, and most importantly <b>the password</b> they need to know because they still need that for container decryption.</p>
<p>3.Upload the containers to a <b>cloud storage</b> which is controlled by your family members as a backup. You better ask them which cloud service they use, like icloud or gdrive, and copy the containers to their devices and upload to the cloud, so they can easily find the containers through their most familiar method</p>
<img src="home_setup.png" class="imgRz" style="width: 600px">
<p>4.Handle a physical copy of keyfile 2 and keyfile 3 to two different lawyers in different countries, and ask them to send it to your family members when you die officially.</p>
<p>In short there are <b>6 factors</b> that determine the sucess of inheritance, only the <b>keyfiles</b> allow <b>1 fault to happen</b>, so you should be really careful and make sure every part work as expected</p>
@ -129,7 +135,9 @@
<p>1.The best case is you died, your family member grab your <b>local copy</b> of containers and keyfile1, and receive keyfile 2 from one lawyer. Then sucessfully decrypt to get the seed, and recovered your monero</p>
<p>2.<b>Your home is destroyed</b> in a disaster, but your family members and download the containers from the cloud. They wait until both lawyers deliver keyfile 2 and keyfile 3 to them. Then unlocked to recover your monero.</p>
<p>3.<b>One of the lawyer</b> died in earthquake, plus his office also destroyed. Your family member still have your local copy of containers and keyfile 1, and receive another keyfile from the survived lawyer. They unlocked and recovered your monero.</p>
<p>You should find lawyers in <b>different cities</b> to reduce the risk.</p>
<p>You should find lawyers in <b>different cities</b> to reduce the risk.</p>
<p>You can also print this down as a reference for your family</p>
<img src="Recovery.png" class="imgRz" style="width: 900px">
<p>This plan prevents your lawyers to steal crypto, because they do not have the containers plus the password. Your family members also cannot access your crypto, because they only have one key.</p>
</div>
</div><!-- /row -->