Bitcoin Core For Mac

Posted : admin | On 19-04-2021



Bitcoin Core is the first implementation of the Bitcoin protocol and is widely-regarded as the de facto standard. Nevertheless, users running this software are trusting it to keep private keys safe and faithfully report network activity. To reduce the risk of running malware, users can verify the authenticity of Bitcoin Core downloads before using them. This tutorial describes how to do so on OSX.

Bitcoin Core is the first implementation of the Bitcoin protocol and is widely-regarded as the de facto standard. Nevertheless, users running this software are trusting it to keep private keys safe and faithfully report network activity. To reduce the risk of running malware, users can verify the authenticity of Bitcoin Core downloads before using them. The Bitcoin Core wallet is a good way to get your feet wet with Bitcoin and we will use for our tutorials. Requirements The Bitcoin Core wallet is a full node client, which means it stores the whole history of transactions that ever occurred on the Bitcoin network (the so-called blockchain). Bitcoin Core initial synchronization will take time and download a lot of data. You should make sure that you have enough bandwidth and storage for the full block chain size (over 350GB). If you have a good Internet connection, you can help strengthen the network by keeping your PC running with Bitcoin Core and port 8333 open.

Software that creates or handles Bitcoin payments presents by its nature a highly attractive target for malware authors. They begin by tweaking some of the source code. Then they distribute the result, which looks identical to the authentic version. An unwitting user downloading and installing the software, can fall victim to a wide variety of schemes designed to steal money or information.

Many Bitcoin users are familiar with the idea of digital signatures. The same idea can be applied to software downloads. The developer signs a download with a private key. Users verify the download using the developer’s public key. A forged file that changes a single bit can be detected with this system, as can a developer who attempts to apply an invalid signature. The standard method for signing binaries is known as Pretty Good Privacy (PGP). Implementations are available for all operating systems.

A popular PGP implementation on OSX is GPG Suite. Begin by downloading the installer from the main page.

We are immediately faced with a conundrum: how do we know that our copy of GPG Suite is authentic? We can’t verify a signature because if we could do that we wouldn’t need GPG Suite.

Fortunately, we can verify the installer’s hash value. Think of a hash value as an immutable, unique identifier that can be assigned to any file. OSX allows hash values to be checked with the shasum utility, which runs from the Terminal application. To access Terminal, press command (⌘) spacebar and type “Terminal”. You’ll see a mostly empty window with a prompt after a dollar sign (“$”). Commands are entered, in text form, after this prompt. Pay attention to capitalization and press enter after each line.

From Terminal, enter the following two commands:

where:

  • {hash} is the string of characters that appears at the bottom of the GPG Tools page after clicking on the “SHA256” link;
  • {filename} is the name of the GPG Suite installer you downloaded; and
  • two spaces appear between {hash} and {filename}.

For example, On November 1, 2017, I downloaded a file named GPG_Suite-2017.1.dmg and its SHA256 hash value was:

01705da33b9dadaf5282d28f9ef58f2eb7cd8ff6f19b4ade78861bf87668a061

I would then enter the following two commands into Terminal (leaving out the dollar signs):

The first command moves my frame of file reference to the Downloads directory. The second command verifies the checksum of the file I downloaded. You should see a response that looks something like:

GPG_Suite-2017.1.dmg: OK

Notice that an attacker who was able to change the GPG Suite website might be able to give you the correct hash value for a fake copy of the installer. This is one of the limitations of using hash values to authenticate downloads.

After downloading and verifying the hash value of GPG Suite installer, double click on it. An installer window will be presented. Double click on the one named Install.pkg. Enter your system password when prompted and follow the remaining instructions.

You will be asked to generate a new key pair. For the purposes of verifying Electrum, this step can be skipped. Click the Cancel button.

GPG Tools should present a window containing a single key entry — the one for the GPG Suite team. Before validating the Bitcoin Core signature, we’ll need to add the public key of its developer to our list.

Wladimir J. van der Laan signs Bitcoin Core releases. The bitcoin.org website has published his public key. It can also be looked up in GPG Keychain. Wladimir’s key ID is 36C2E964. Click the GPG Keychain “Lookup Key” button and enter the key ID. Then click Search.

GPG Keychain should respond with an entry for Wladimir J. van der Laan’s public key. Click Retrieve Key.

GPG Keychain should report that Wladimir’s public key was added. You’ll now see two key entries: the original for the GPGTools Team and a new one for the Bitcoin Core developer. We can now verify the signature of any Bitcoin Core download

Unlike some packages such as Electrum, Bitcoin Core doesn’t directly associate a signature with a download. Instead, Bitcoin Core publishes a file containing a list of hash values for all of its download packages. The file containing this list is what Wladimir van der Laan signs.

The overall procedure for using the hashes file is:

  1. download Bitcoin Core and the hashes file;
  2. verify the signature of the hashes file; and
  3. verify a match between the published value contained in the hashes file and the one computed from the download file.

Both files are downloaded from the Bitcoin Core download page. Click the Download Bitcoin Core button to begin the download. Next, download the hashes file located behind the link titled “Verify release signatures” on the downloads page. Click the link titled “Verify release signatures.” Doing so places a file titled SHA256SUMS.asc into your Downloads folder.

Your downloads folder should now contain two files, SHA256SUMS.asc and bitcoin-{version}-osx.dmg, where {version} is the version of Bitcoin Core you downloaded.

To verify the signature of the hashes file, right click on it. A context menu will appear whose last item is called Services. Hovering over it presents a submenu. One of its entries will be called “OpenPGP: Verify Signature of File.” Click it.

You should be presented with a window titled “Verification Results.” A single line should appear. The first entry gives the installer’s filename. The second gives the result of the verification. You should see text beginning with “Signed by: Wladimir J. van der Laan”. The line will be appended with the bolded text “undefined trust.”

Finally, confirm that the SHA-256 hash value published in the hashes file matches the one you’ll obtain through independent verification.

Once again, we’ll use the shasum utility via Terminal. Enter the following two commands, hitting return after each line. Pay attention to capitalization and omit the dollar sign:

Terminal should respond with the line:

Bitcoin core for android

bitcoin-{version}-osx.dmg: OK

if the hash value matches. Otherwise, the response will read:

bitcoin-{version}-osx.dmg: FAILED.

At this stage, you’ve verified the signature of the Bitcoin Core download. You could, however, take this one step further by signing Wladimir van der Laan’s public key. The procedure is analogous to the one previously described.

Signature validation should be used for any Bitcoin Core installation destined to control large sums of money. Given that wallets holding spare change today can grow to become wallets holding substantial sums tomorrow, signature verification should be the first step of any Bitcoin Core installation. This guide offers a step-by-step procedure for doing so. Once set up, it can be used to verify the signature of any future Bitcoin Core release, and other Bitcoin software as well.

Core

To recap, the steps are:

  1. Download GPG Suite.
  2. Verify the GPG Suite checksum.
  3. Import the public key for Bitcoin Core’s lead developer.
  4. Download the Bitcoin Core installer and hashes files.
  5. Verify the signature of the hashes file.
  6. Compare the hash value in the hashes file to the one you independently compute with shasum.
Bitcoin Core For Mac

An account can effortlessly be created using an eWallet service. eWallet services provide an online wallet to hold your bitcoins.

This guide covers installing Bitcoin without needing a third party wallet service.

  • 7Technical

For Windows Computers

Download Windows Bitcoin Wallet at http://bitcoin.org/en/download available in 64bit and 32bit.

Click Next to start installation.

(Optional) Choose preferred directory then click Next.

Click Install.

Wait until installation completes then click Next.

Click Finish to start Bitcoin Wallet.

On the first load, Bitcoin Qt will ask you to choose directory where your Bitcoin block chain and wallet.dat will be stored. Click OK when done.

For Mac OS Computers

Download Mac Bitcoin Wallet at http://bitcoin.org/en/download and expand the disk image.

Contents of the Bitcoin disk image after expansion

Drag the Bitcoin icon to the desired install location, and double-click the icon to run the application.

Initialization

The Bitcoin window will open and connections will start up in minutes. The blocks will begin downloading.

Core

At this point, it is recommended to encrypt your wallet before receiving any bitcoins. Encrypting later may leave earlier addresses vulnerable to theft in the case that the system is compromised. This can be done from the Settings menu using the Encrypt Wallet function.

Your wallet will automatically have your first bitcoin address.

Getting my first coins

Bitcoin Core For Mac High Sierra

You can get your first coins from Bitcoin faucets which gives small amount of BTC for free.

The client will eventually show the transaction.

After about one hour the transaction should get 6 confirmations. You are able to spend the coins once the transaction shows at least one confirmation.

Bitcoin Core Value

The confirmation counter (like the block counter) will increase by one roughly every 10 minutes. Six confirmations are considered as 100% sure a transfer has been processed.

Buying Bitcoins

Bitcoins can be bought from individuals, on trading exchanges or from other online services. See the main page about Buying Bitcoins for more information.

Points to remember

  • You don't need to be online to receive BTC.
  • You can create as many new addresses as you like. Using a different address each time helps keep you anonymous.
  • You can be anonymous with adequate precautions.
  • You cannot send BTC to an invalid address. Typos are not a worry as the payment will refuse to send.
  • The wallet file holds the keys that allow spending and thus the computer should be protected from the risk of loss and theft.
  • Leaving Bitcoin open improves connectivity for the network and ensures that you don't fall behind on the block chain. Also see the FAQ about port forwarding

Proceed to the introduction

Technical

Block chain

The block chain is a never-ending story of every transaction throughout the network from day 1 (genesis). The first time you run Bitcoin, it is downloaded and verified on your computer. Every new transaction is added to the end of this chain and verified by the network to be valid.

Bitcoin Core Wallet Download

Addresses

Whenever you send a coin, you are actually sending a cryptographically signed message, associating your coin with the recipient's address. This effectively transfers ownership to the recipient. Once they own the coin, they are free to transfer it to another person.

A wallet is a collection of addresses. You can create as many new addresses as you wish; having more addresses makes you more anonymous, because then people cannot see how much BTC you received. Your wallet contains the secret keys used for spending that money, and must be backed-up regularly. If you lose the wallet then you no longer possess the money.

Generating

New coins are mined through generating hashes. These generators are rewarded with a small fee for the computationally intensive task of incorporating your transactions into the block-chain. This fee halves each time 210000 blocks are added to the block chain, or approximately every 4 years. The fee will keep halving until it effectively reaches zero, at which point 21 million coins will be in circulation.

Bitcoin Core Wallet


Bitcoin Core Download

Bitcoin Core documentation
User documentation
Alert system • Bitcoin Core compatible devices • Data directory • Fallback Nodes • How to import private keys in Bitcoin Core 0.7+ • Installing Bitcoin Core • Running Bitcoin • Transaction fees • Vocabulary
Developer documentation
Accounts explained • API calls list • API reference (JSON-RPC) • Block chain download • Dump format • getblocktemplate • List of address prefixes • Protocol documentation • Script • Technical background of version 1 Bitcoin addresses • Testnet • Transaction Malleability • Wallet import format
History & theory
Common Vulnerabilities and Exposures • DOS/STONED incident • Economic majority • Full node • Original Bitcoin client • Value overflow incident

Bitcoin Core For Mining

Retrieved from 'https://en.bitcoin.it/w/index.php?title=Help:Installing_Bitcoin_Core&oldid=64137'