You mean without SteemConnect, to enter the private key directly?
RE: SteemConnect V3 Beginner's Guide
You are viewing a single comment's thread from:
SteemConnect V3 Beginner's Guide
Authors get paid when people like you upvote their post.
If you enjoyed what you read here, create your account today and start earning FREE STEEM!
If you enjoyed what you read here, create your account today and start earning FREE STEEM!
Yes.
Downvoting a post can decrease pending rewards and make it less visible. Common reasons:
Submit
Because that's not safe/recommended.
Downvoting a post can decrease pending rewards and make it less visible. Common reasons:
Submit
I would understand if you said “more convenient”, @gadrian, but… Why it would one password on SteemConnect be more secure than four different level passwords at Steemit security management? What if user exposes this one password to the smartphone data thieves?
Why not leave the option just for posting password for those who want to live dangerously? Like we did do it on Steemit.com? Why not let people decide on their own what is more secure for them?
Downvoting a post can decrease pending rewards and make it less visible. Common reasons:
Submit
The private keys are encrypted on your own device. Someone needs access to your device, and nobody is crazy enough to even bother trying to break the encryption. That's why the most common attack vector is phishing or hunting user errors.
Plus, if you would have read my guide you would know on SteemConnect only private posting key are stored, not any of the others.
Most people don't give importance to security until they lose their accounts and it may be too late for them.
The most dangerous thing to a user's account is the user himself.
If you want to live dangerously, be my guest, but overall an application has to take a responsible approach.
Downvoting a post can decrease pending rewards and make it less visible. Common reasons:
Submit
He doesn’t need to bother with encryption if he gets the SteemConnect password. Are we talking about the same things?
Downvoting a post can decrease pending rewards and make it less visible. Common reasons:
Submit
Yes we are talking about the same things.
The SteemConnect password is a way to unlock access to verify the private key that is stored. But the private key is stored encrypted.
Downvoting a post can decrease pending rewards and make it less visible. Common reasons:
Submit
OK, just one more step: When someone gets your SteemConnect password, he has a full access to your account, right?
Downvoting a post can decrease pending rewards and make it less visible. Common reasons:
Submit
Nope.
Without the private keys, the password is useless. That doesn't mean one should broadcast it in the open. It's an additional security step.
The same password unlocking protection is used by Steem Keychain, and by some of the most powerful password management tools existent online.
Downvoting a post can decrease pending rewards and make it less visible. Common reasons:
Submit
Maybe you mistaken the SteemConnect password with your account's master password.
That indeed is a very sensitive password and in my opinion never to be used, because, if leaked, it allows everything on your account, including changing the owner of the account.
Downvoting a post can decrease pending rewards and make it less visible. Common reasons:
Submit