Support an cold-offline-only build

bitkey / bitkey

A self-contained read-only CD/USB stick with everything you need to perform highly secure air-gapped Bitcoin transactions. Offline cold storage made (slightly more) practical.

https://bitkey.io

268 stars 89 forks source link

Support an cold-offline-only build #43

Open flesler opened 7 years ago

flesler commented 7 years ago

While useful, I think the best use for this is to only use the cold-offline mode to sign transactions. I think it'd be great to be able to have a build that automatically starts into this mode and that has no way to mistakenly (or maliciously) go online.

JedMeister commented 6 years ago

That would totally be possible. TBH, I'm not 100% sure how OTTOMH, but I'm sure it'd be possible. I suggest that you have a read up on TKLDev and consult the BitKey buildcode and hopefully you can work it out.

TBH, I'm not totally sure how to remove specific boot options, but even if you can't work that out, I'm sure you could ensure no networking drivers are included, or blacklist networking, or something like that. Even an overlay /etc/network/interfaces file which only has loopback defined may be another option?

estevaocm commented 6 years ago

To implement this, edit cdroot.overlay/isolinux/menu.cfg to remove line "label cold-online" and all below it, then recompile Bitkey.

Note the background is color-coded to each mode. If you don't get green, it's a no go.

Alternatively, my build at https://github.com/estevaocm/bitkey/ allows only for cold-offline and hot-online, so it's green vs. red.