@qlrd
BOSS developer at @selfcustody/krux and @getfloresta/Floresta. QA on both (python and rust stuffs).
Relays (3)
- wss://nostr.wine/ – read & write
- wss://relay.damus.io/ – read & write
- wss://relay.primal.net/ – read & write
Recent Notes
I'm no more on krux-installer. Passed it to a young and talented friend. Now, full time on krux and floresta:
Sixteenth Wave of Bitcoin Grants
https://opensats.org/blog/sixteenth-wave-of-bitcoin-grants
Sixteenth Wave of Bitcoin Grants
https://opensats.org/blog/sixteenth-wave-of-bitcoin-grants
11❤️2🔥1
Thanks for @OpenSats #krux team and all users that that somehow contributed and/or motivated me.
You were the reason why this exists
(actually the first version I made for my wife, but she never, fortunately, needed to use it lol).
https://github.com/selfcustody/krux-installer/releases/tag/v0.0.20
You were the reason why this exists
(actually the first version I made for my wife, but she never, fortunately, needed to use it lol).
https://github.com/selfcustody/krux-installer/releases/tag/v0.0.20
🚀1
#krux v24.11.1
https://github.com/selfcustody/krux/releases/tag/v24.11.1
This release includes a fix for a recently discovered issue #477 in our encryption system. Due to an implementation error, the camera-captured entropy was not being used as intended in our AES-CBC encryption mode. This means that the additional layer of security provided by the camera's randomness was not effectively applied.
## What Does This Mean for You?
*Who is Affected*: Users who have changed their settings to use AES-CBC encryption instead of the default AES-ECB for encrypted backups on flash storage, SD cards, or encrypted QR codes.
*Impact*: The encryption strength for these backups may not be as robust as intended.
## Recommended Action:
If you have used AES-CBC encryption for your backups, we recommend the following steps:
Update Your Device: Please install the latest software update where this issue has been resolved.
Replace Your Backups: After updating, recreate your encrypted backups on flash storage, SD cards, or QR codes to ensure they are secured with the corrected encryption implementation.
Thanks @earthdiver for the finding!
Always test your encrypted backups and keys after creation and have a redundant physical backup of your keys.
https://github.com/selfcustody/krux/releases/tag/v24.11.1
This release includes a fix for a recently discovered issue #477 in our encryption system. Due to an implementation error, the camera-captured entropy was not being used as intended in our AES-CBC encryption mode. This means that the additional layer of security provided by the camera's randomness was not effectively applied.
## What Does This Mean for You?
*Who is Affected*: Users who have changed their settings to use AES-CBC encryption instead of the default AES-ECB for encrypted backups on flash storage, SD cards, or encrypted QR codes.
*Impact*: The encryption strength for these backups may not be as robust as intended.
## Recommended Action:
If you have used AES-CBC encryption for your backups, we recommend the following steps:
Update Your Device: Please install the latest software update where this issue has been resolved.
Replace Your Backups: After updating, recreate your encrypted backups on flash storage, SD cards, or QR codes to ensure they are secured with the corrected encryption implementation.
Thanks @earthdiver for the finding!
Always test your encrypted backups and keys after creation and have a redundant physical backup of your keys.
Tiny Seed + tiny #krux (M5StickV) rocks (@odudex)
1
It would be a pleasure to eat mocotó or buchada paying in bitcoin
#krux v24.11.0 released!
- Tamper Check Flash Hash and Tamper Check Code (Experimental)
- Flash Map
- Japanese Translation
- BIP85: Allow Export Base64 Passwords
- Vulnerability Fix: Block Import of Python Modules from SD Card
- Add Compatibility to Partial Text Mnemonic QR Codes
- Multi-keypad Position Indicator
- WonderMV Simulator
- Krux Ethos
- Minor Bugfixes and Refactor
Special thanks to:
@jdlcdl for consistent contributions as code, insights and reviews of all new features and improvements.
@tadeubas for the contributions, insights, reviews, and the discovery on frozen modules import from SD cards behavior, crucial TC Flash Hash solution to work.
@qlrd for constant improvements on Krux-Installer, which can now aid on air-gapped firmware updates.
@3rdIteration for the precious insights on TC Flash Hash possible vulnerabilities.
@BitCoisas for the Japanese translation.
@kkdao for spreading the word about Krux around the world.
Krux community for the great ideas, tests and feedback.
https://github.com/selfcustody/krux/releases/tag/v24.11.0
- Tamper Check Flash Hash and Tamper Check Code (Experimental)
- Flash Map
- Japanese Translation
- BIP85: Allow Export Base64 Passwords
- Vulnerability Fix: Block Import of Python Modules from SD Card
- Add Compatibility to Partial Text Mnemonic QR Codes
- Multi-keypad Position Indicator
- WonderMV Simulator
- Krux Ethos
- Minor Bugfixes and Refactor
Special thanks to:
@jdlcdl for consistent contributions as code, insights and reviews of all new features and improvements.
@tadeubas for the contributions, insights, reviews, and the discovery on frozen modules import from SD cards behavior, crucial TC Flash Hash solution to work.
@qlrd for constant improvements on Krux-Installer, which can now aid on air-gapped firmware updates.
@3rdIteration for the precious insights on TC Flash Hash possible vulnerabilities.
@BitCoisas for the Japanese translation.
@kkdao for spreading the word about Krux around the world.
Krux community for the great ideas, tests and feedback.
https://github.com/selfcustody/krux/releases/tag/v24.11.0
2❤️1
Beta testers, please try and help test tamper detection and related features ( #krux 24.10.beta9 )
https://github.com/selfcustody/krux/blob/pin_and_anti_tamper/docs/getting-started/features/tamper-detection.en.md
https://github.com/selfcustody/krux/blob/pin_and_anti_tamper/docs/getting-started/features/tamper-detection.en.md
❤️1🚀1
@D'mon , if you want to know the #krux, for historical purposes, and to keep the list of developers and contributors, the best place are (i believe)
* https://github.com/selfcustody/krux/releases
* https://github.com/selfcustody/krux/discussions
(Installer itself started on discussions)
* https://github.com/selfcustody/krux/releases
* https://github.com/selfcustody/krux/discussions
(Installer itself started on discussions)
👍2
#krux installer v0.0.20 released. Many thanks to @Jean Do and @Hiro for allow its japanese translation.
**Major update**
Now user can, after download and verify an official firmware, select between:
* to flash;
* or make an airgapped update:
* user will be requested to insert a SDCard on computer;
* user can select among recognized removable drives;
* both firmware.bin and firmware.bin.sig will be copied to sdcard;
* after the copy, user will be requested to eject sdcard and insert it on device;
* at same time, the firmware.bin's computed hash will appear to compare with the computed hash on device;
**Minor updates**
* added support to de_DE locale;
* added support to ja_JP locale;
* fixes on Windows bug that didn't allow users to select a custom asset folder;
Many thanks to:
* All selfcustody team
* @OpenSats for the support
* @npub13s0kz... for for all incredible people.
**Major update**
Now user can, after download and verify an official firmware, select between:
* to flash;
* or make an airgapped update:
* user will be requested to insert a SDCard on computer;
* user can select among recognized removable drives;
* both firmware.bin and firmware.bin.sig will be copied to sdcard;
* after the copy, user will be requested to eject sdcard and insert it on device;
* at same time, the firmware.bin's computed hash will appear to compare with the computed hash on device;
**Minor updates**
* added support to de_DE locale;
* added support to ja_JP locale;
* fixes on Windows bug that didn't allow users to select a custom asset folder;
Many thanks to:
* All selfcustody team
* @OpenSats for the support
* @npub13s0kz... for for all incredible people.
1🤎1
❤️1
❤️2