You're really good at pretending I said things that I never said...
I suggest you read this to understand what I'm actually advocating for: #569901
Running a software wallet on a mainstream operating system is a security risk.
I didn't say anyone should use software wallets on a "mainstream operating system". I'm just trying to make the point that it's probably fine to NOT use a hardware wallet (assuming you take the necessary precautions and don't rely on a secure element to protect your secrets while you sign transactions on your virus-infested windows PC)
Compromising a mainstream computer is not difficult and happens all the time
Then go ahead and hack me :)
What about a computer running FOSS software that was PGP-verified, has no internet connection, and runs completely in memory with no disk access? It's at least a bit HARDER to compromise that computer, right?
  1. people store their money in software wallets,
People do this. But I'm not suggesting it. Store your secrets in cold wallets "offline" like our ancestors used to keep secrets -- ciphered messages on paper, or bars of gold stashed away (a.k.a. steel plates)
I recognize that using a HWW offers some security features that you can't get anywhere else. But owning a HWW can also bring unwanted attention (like the Ledger leak). For how I use bitcoin, those extra features offered by HWW aren't compelling enough for me to buy one.
I'd argue that very few people actually NEED a HWW and that's why HWW companies spend so much on advertising (propaganda). If their product was actually necessary, it would cost 1/4 the price and they wouldn't have to advertise so much.
I have the feeling that you just like to argue. I have already said want i need to say. The only thing that I will add is that it is entirely unrealistic to expect normal people to use PGP signed FOSS software. Their functionality and UX is way below paid software. And I have met way too many arrogant linux users. I still remember back in the day asking "how do I make 3D acceleration work on my radeon GPU" and linux guys were condescendingly answering "You don't need that". Yeah, good luck with that attitude.
reply
If only every bitcoin podcast took 2-3 mins to explain how to PGP verify software (and other useful skills) instead of shilling "their favorite" hardware wallet and spreading fear that makes normal people think they are incapable of keeping a secret.
reply