<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<p><br>
</p>
<div class="moz-cite-prefix">Le 26/12/2018 à 19:54, James MacWhyte a
écrit :<br>
</div>
<blockquote type="cite"
cite="mid:CAH+Axy7v=26P8=CJPUqymKOcromGz+zYZ2cb2KaASgXNPpE2tQ@mail.gmail.com">
<meta http-equiv="content-type" content="text/html; charset=UTF-8">
<div dir="ltr">
<div>
<div dir="ltr" class="gmail_signature"
data-smartmail="gmail_signature">
<div dir="ltr"><br>
</div>
</div>
</div>
<div class="gmail_quote">
<div dir="ltr">On Wed, Dec 26, 2018 at 11:33 AM Aymeric Vitte
<<a href="mailto:vitteaymeric@gmail.com"
moz-do-not-send="true">vitteaymeric@gmail.com</a>>
wrote:<br>
</div>
<blockquote class="gmail_quote" style="margin:0px 0px 0px
0.8ex;border-left:1px solid
rgb(204,204,204);padding-left:1ex">
<div bgcolor="#FFFFFF">
<p>so, even with a tool like yours, they can be misleaded,
for example trying a few words to replace the
missing/incorrect one, get a valid seed and stay stuck
with it forever trying to play with BIP44/49 to find
their keys<br>
</p>
</div>
</blockquote>
<div><br>
</div>
<div>Just a small detail, but my tool actually looks up all
the possible combinations and then finds which one has been
used before by looking for past transactions on the
blockchain. Therefore, it won't tell you your phrase is
correct unless it is a phrase that has actually been used
before (preventing what you described).</div>
</div>
</div>
</blockquote>
<p>I saw that your tool was querying blockchain.info, but it cannot
guess what derivation path was used and if it is a standard one
what addresses were used, and even if successful it works only for
bitcoin (so maybe it should just output the ~1500 possible phrases
and/or xprv, and be completely offline, this is still doable for
people)</p>
<blockquote type="cite"
cite="mid:CAH+Axy7v=26P8=CJPUqymKOcromGz+zYZ2cb2KaASgXNPpE2tQ@mail.gmail.com">
<div dir="ltr">
<div class="gmail_quote">
<div><br>
</div>
<div>Using some algorithm to take some input and generate a
bip39 phrase that you can use with any bip39 wallet sounds
perfectly reasonable.</div>
</div>
</div>
</blockquote>
<p>I forgot to mention that this can help also solving the "what if
something happens to me" case giving to the family the seed and
the parameter(s) for the derivation path, or an easy way to find
it (better than something like: remind this passphrase, take the
sha256 of it, then use some other stuff to find the encryption
algo, take n bytes of the hash, use it to decode my wallet or my
seed... and then everybody looking at you like crazy)<br>
</p>
</body>
</html>