Liability8104@monero.town to

Monero@monero.town · 1 year ago

Using address to authenticate

2

0

Using address to authenticate

Liability8104@monero.town to

Monero@monero.town · 1 year ago

2

I’m currently using monero addresses as the sole authentication method for a custodial service, similar to how mullvad VPN has a single account number to authenticate. My understanding is that these are unique, and impossible to guess. For a custodial service, this makes withdrawing user funds trivial as well.

Can anyone tell me why this is a bad idea?

You must log in or register to comment.

Chat

Unkn8wn69@monero.town
link
fedilink
arrow-up
1·
1 year ago
I don’t see a reason why it should be a monero address tied to it. Just make it a random string like mullvad does)
jet@hackertalks.com
link
fedilink
English
arrow-up
0
arrow-down
1·
1 year ago
Its a good idea.

If the service supports delegated user accounts (some permissions but not full account access), it might not work

Monero@monero.town

monero@monero.town

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !monero@monero.town

This is the lemmy community of Monero (XMR), a secure, private, untraceable currency that is open-source and freely available to all.

Wallets

Desktop (CLI, GUI)

Desktop (Feather)

Mac & Linux (Cake Wallet)

Android (Monerujo)

Android (MyMonero)

Android (Cake Wallet) / (Monero.com)

Android (Stack Wallet)

iOS (Cake Wallet) / (Monero.com)

iOS (Stack Wallet)

iOS (Edge Wallet)

Instance tags for discoverability:

Monero, XMR, crypto, cryptocurrency

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

25 users / day
91 users / week
266 users / month
1.3K users / 6 months
1 local subscriber
1.66K subscribers
863 Posts
4.47K Comments
Modlog

mods:
admin@monero.town