|
|
|
|
|
|
by yumcoin
4755 days ago
|
|
|
Obviously, the security and scalability of our platform is a big part of the value we provide to buyers and sellers. For now, know that there are a number of measures we take to ensure that the site and users' bitcoins are secure: The site runs entirely over SSL (HTTPS). We protect against CSRF and XSS attacks. The addresses used for purchases are generated offline. Withdrawals are handled separately from the application server. Importantly, sellers can withdraw their balances quickly to the Bitcoin address of their choice. As we scale up, we'll store the majority of sellers' funds offline, keeping enough for transaction fees and withdrawals. We'll be writing a more detailed overview of how we handle security here: https://yumcoin.com/security |
|
|
Which wallet are you guys using? I've heard good things about armory which make it easier to do hot / cold storage. Keeping withdrawals separate from the application server makes a lot of sense; is this using the SSL protocol for JSON-RPC on a non-standard port, and then closing off internet facing ports for that computer/server?
Are you doing any sort of 2 factor authentication to limit hacked accounts getting emptied?
I'd be happy to email or something if you're up for it.