Bitcoin Forum>Bitcoin>Development & Technical Discussion
Author

Topic: do I need walletpassphrase in web script? (Read 794 times)

vinboy
member
Activity: 77
Merit: 10
do I need walletpassphrase in web script?
April 11, 2014, 10:56:52 PM
#8
Quote from: ?? on ??
Quote from: vinboy on April 11, 2014, 07:59:40 AM
hi
I'm running a bitcoin website.
I have a security concern here. Whenever someone withdraw bitcoin. My script will auto execute the withdrawal request.
Hence I use the function walletpassphrase in my script.

Is there any better and more secure way to execute the withdrawal task?
If hacker can hack the script, he will get my password and all the BTC in the wallet.


What are other proven secure way of doing this?
thank you

I would be glad to help you work on using my api and a cold storage wallet. Then you could do withdraws on your own computer without it being linked to your server.

thanks... does your api work with blockchain.info or bitcoind?
byt411
hero member
Activity: 798
Merit: 1000
Re: do I need walletpassphrase in web script?
April 11, 2014, 09:15:55 PM
#7
Quote from: vinboy on April 11, 2014, 07:59:40 AM
hi
I'm running a bitcoin website.
I have a security concern here. Whenever someone withdraw bitcoin. My script will auto execute the withdrawal request.
Hence I use the function walletpassphrase in my script.

Is there any better and more secure way to execute the withdrawal task?
If hacker can hack the script, he will get my password and all the BTC in the wallet.


What are other proven secure way of doing this?
thank you

LOL, so you want to repeat gox?

Even with the transaction malleability fixes, you can get bombarded by fake txes and you will be doomed.
vinboy
member
Activity: 77
Merit: 10
Re: do I need walletpassphrase in web script?
April 11, 2014, 09:14:12 PM
#6
even if use blockchain.info, the password still needs to go into the script somewhere. That's where i find it high risk.

hardshot
sr. member
Activity: 457
Merit: 251
Re: do I need walletpassphrase in web script?
April 11, 2014, 11:10:46 AM
#5
Quote from: BitCoinDream on April 11, 2014, 10:11:35 AM
How about using blockchain.info api ?
Has been unreliable in the past.. All those downtimes Wink
BitCoinDream
legendary
Activity: 2338
Merit: 1204
The revolution will be digital
Re: do I need walletpassphrase in web script?
April 11, 2014, 10:11:35 AM
#4
How about using blockchain.info api ?
vinboy
member
Activity: 77
Merit: 10
Re: do I need walletpassphrase in web script?
April 11, 2014, 09:32:50 AM
#3
ok that's a way.. thanks
hardshot
sr. member
Activity: 457
Merit: 251
Re: do I need walletpassphrase in web script?
April 11, 2014, 08:11:02 AM
#2
Wallet on another server, with RPC Connection only allowed from your websites' address.

And: Do not store 100% in your hot wallet.
vinboy
member
Activity: 77
Merit: 10
Re: do I need walletpassphrase in web script?
April 11, 2014, 07:59:40 AM
#1
hi
I'm running a bitcoin website.
I have a security concern here. Whenever someone withdraw bitcoin. My script will auto execute the withdrawal request.
Hence I use the function walletpassphrase in my script.

Is there any better and more secure way to execute the withdrawal task?
If hacker can hack the script, he will get my password and all the BTC in the wallet.


What are other proven secure way of doing this?
thank you
Bitcoin Forum>Bitcoin>Development & Technical Discussion
Jump to: