Liability8104@monero.town to

Monero@monero.town · 10 months ago

Using address to authenticate

2

0

Using address to authenticate

Liability8104@monero.town to

Monero@monero.town · 10 months ago

2

I’m currently using monero addresses as the sole authentication method for a custodial service, similar to how mullvad VPN has a single account number to authenticate. My understanding is that these are unique, and impossible to guess. For a custodial service, this makes withdrawing user funds trivial as well.

Can anyone tell me why this is a bad idea?

You must log in or register to comment.

Chat

Unkn8wn69@monero.town
link
fedilink
arrow-up
1·
10 months ago
I don’t see a reason why it should be a monero address tied to it. Just make it a random string like mullvad does)
jet@hackertalks.com
link
fedilink
English
arrow-up
0
arrow-down
1·
10 months ago
Its a good idea.

If the service supports delegated user accounts (some permissions but not full account access), it might not work

Monero@monero.town

monero@monero.town

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]

This is the lemmy community of Monero (XMR), a secure, private, untraceable currency that is open-source and freely available to all.

Wallets

Desktop (CLI, GUI)

Desktop (Feather)

Mac & Linux (Cake Wallet)

Android (Monerujo)

Android (MyMonero)

Android (Cake Wallet) / (Monero.com)

Android (Stack Wallet)

iOS (Cake Wallet) / (Monero.com)

iOS (Stack Wallet)

iOS (Edge Wallet)

Instance tags for discoverability:

Monero, XMR, crypto, cryptocurrency

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

10 users / day
126 users / week
506 users / month
1.49K users / 6 months
1 local subscriber
1.46K subscribers
659 Posts
3.51K Comments
Modlog

mods:
admin@monero.town