You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
knowledge of a parent extended public key plus any non-hardened private key descending from it is equivalent to knowing the parent extended private key (and thus every private and public key descending from it).
In other words, if a user shares their xpub along with just one private key, then the entire wallet is compromised just as if the user had revealed the seed mnemonic. Currently neither the Wallet|Information dialog nor the per-address private key dialog (Right click -> private key) give any scare warnings about this. I suggest that one or both should have a warning added to that effect.
(currently there is only such a warning on Wallet|Private Keys|Export)
The text was updated successfully, but these errors were encountered:
According to BIP32:
In other words, if a user shares their xpub along with just one private key, then the entire wallet is compromised just as if the user had revealed the seed mnemonic. Currently neither the Wallet|Information dialog nor the per-address private key dialog (Right click -> private key) give any scare warnings about this. I suggest that one or both should have a warning added to that effect.
(currently there is only such a warning on Wallet|Private Keys|Export)
The text was updated successfully, but these errors were encountered: