Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add TODO on why verifying receive address on one HWW that registers and saves the multisig wallet is safe #119

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Add TODO on why verifying receive address on one HWW that registers and saves the multisig wallet is safe #119

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion _pages/verify-receive-address/advanced.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@ your selected address is included in that file, and you are confident that the f
1. **When performing a `3-of-5` multisig transaction where you verified the address on 2 trusted devices in the quorum**
but not the full 3 required.
1. **When your hardware wallets you use to verify the address previously saved/registered the public keys info from the rest of your seeds**,
so that tampering with any seed would be caught by this wallet. TODO: add more on this.
so that tampering with any seed would be caught by this wallet. This is safe because the address shown on screen comes from a multisig wallet policy that contains n xpubs you already verified belong to all n of your other devices. Therefore you know that any m of your n seeds will be able to spend from that address.

You might consider it safe to send to an address that you've previously received funds on and been able to spend, but this has two serious issues:

Expand Down