What is a 'Secret Recovery Phrase' and how to secure your wallet
前往 MetaMask Learn 获得专为 web3 新手设计的直接学习体验。 该功能完全免费,支持多种语言,并包含模拟等多种实用工具,协助您顺利启用 MetaMask。
您的私钥助记词(SRP)是一个独特的 12 词短语,在您首次设置 MetaMask 时生成。 The accounts that hold your tokens are derived from it. 如果您丢失了密码,可以利用私钥助记词(SRP)恢复钱包和资金。
Write it down on paper and hide it somewhere, put it in a safety deposit box. 有些用户甚至把私钥助记词刻在金属板上! (以物理离线格式存储私钥助记词可以杜绝黑客攻击的风险。)
What's the difference between a Secret Recovery Phrase and a password? 为什么两者都需要?
MetaMask encrypts your Secret Recovery Phrase with your password. That means that when you lock your wallet, no one (including you) can use your funds until you enter your password again.
If you forget your password, you can regain access to your wallet using your SRP.
It's important to remember that neither MetaMask or anyone else can change or recover your Secret Recovery Phrase if it's lost. Please guard it well!
更多相关信息,请参阅此处。
Self-Custody
使用 MetaMask,钱包的控制权属于主密钥的持有者(就是您!)。
如果您丢失了私钥助记词,即使是 MetaMask 团队也无法帮您恢复钱包及其账户。 只要您妥善保管私钥助记词,他人就无法从您的钱包账户签署未经授权的交易。
使用自主托管钱包有很多好处。 例如:
- 任何机构都不能操纵您对资金的存取。 听说过“不是你的钥匙,就不是你的加密货币”这句话吗? 就是这个意思。 如果您使用托管钱包(实质上是某个组织或第三方控制钱包,并根据您的指示行事),除了信任之外,几乎没有什么可以阻止托管人动用您的资金。
- 除非您透露,否则在 MetaMask 上与您做过交易的商家都无法访问您的个人数据。
- 您的 MetaMask 钱包可以像护照一样使用,如同身份数字证明。 随着自主托管钱包所有权日益采取这种方式,以太坊域名服务 (ENS) 也许是最突出的例子。
有何折中方案? 因为 MetaMask 钱包采取自主托管,所以保护钱包安全由您全权负责。
绝不要和任何人分享您的私钥助记词。 与某人分享您的私钥助记词,就像交出您的银行卡密码或房子的钥匙一样。 这会使对方可以获取和转移您的全部资金。 MetaMask 团队绝不会向您索要私钥助记词。 如果有人或网站要求您分享私钥助记词,他们就是在试图欺诈您。
如果您更喜欢视频学习,这段简短视频应该有所帮助。
How to reveal your Secret Recovery Phrase
You'll be prompted to write down your SRP and set your password when you first install MetaMask. You can also choose to connect your MetaMask to your Google or Apple account, in which case you can reveal and store your SRP later.
To reveal your SRP, click on the menu button in the top right corner of the screen and select 'Settings', and then 'Security & privacy'. Then click on 'Back up Secret Recovery Phrase' and enter your password.
如果丢失助记词且忘记密码,则无法恢复助记词,也无法访问账户。
Security tips
以下是一些基本的安全提示,有助确保钱包安全:
Don't share your SRP and private keys with anyone
This has been mentioned already, but it doesn't hurt to be thorough: anyone who has your SRP or private keys can remove tokens from your accounts. 切勿与任何人分享您的私钥助记词或私钥,即便 MetaMask 团队也不行,当然我们绝不会要求您提供此信息。
如果有人自称是 MetaMask 团队成员,向您索取这些信息,请立即使用我们的官方支持渠道进行举报。
Store your SRP somewhere secure and offline
Do not store your SRP online. Online storage like the cloud or password managers are not secure and vulnerable to hacks.
Instead, store your SRP in a secure, physical location that only you have access to and that you won't forget.
If you have a large number of tokens in your accounts, consider getting a hardware wallet.
一般而言,诸如 Trezor 和 Ledger 之类的硬件钱包存储代币较为安全。 硬件钱包可以离线存储私钥,即需要实际拥有钱包才能签署交易,这无疑大大阻遏线上骗子。
Regularly update your systems and software
Make sure to keep your browsers, operating systems, and MetaMask versions up-to-date. Updates to these softwares frequently include critical security enhancements.
这些是基本提示,但并非安全措施的全面介绍。 Keep on top of token security trends and updates by learning from the Ethereum community, reading helpful material (like this post) and joining discussion channels like this.
如果您看到社区成员疲于应付安全问题,请尽管分享本帖子。 请记住,如需帮助,或举报假冒 MetaMask 的账户,请与我们联系。
还有其他问题吗? Check out our FAQs, other articles, or get in touch with MetaMask Support by starting a conversation on from the home page of this site.