You are viewing a single comment's thread from:

RE: 💰 [20SBD CONTEST] Protect People From The Ongoing Phishing Scam

in #contest7 years ago

Ok, seems I wasn't really getting that each key had really such different roles, hence they are called "permissions".

Since the beginning I was logging in Steemit.com and a few others like steemauto.com with my password.

So now, I made a new password and copied all the keys. I logged out from Steemit.com and the other apps. I quickly looked if Chrome saved a password but it said none.

Then logged in again but this time with the Private Posting Key. Until now I think I do correct? :D And if I need to transfer or other operations then I use the Private Active key! I think I am getting there.

My last question is, is there any difference (besides that they are different) between the password and the owner key? As they seem to both give the same permissions (everything).
They are like, if any problem, to retrieve everything or some sort?

About the other apps, yeah better paying real attention indeed. Gonna triple check now!

Thank you again!

7 years ago in #contest by
$0.00
    Reply 4
    Sort:  
  • Trending
    • [-]
     7 years ago  

    I think you’ve done great! If only everyone was such a quick learner :0)

    I honestly don’t know if there is a difference between the master password and the owner key. I asked steemcleaners. As soon as I know, I’ll let you know

    $0.00
      Reply
      [-]
       7 years ago  

      Haha luckily I came accross your post!

      Still, as far as I understood, using the Posting Key instead of the Owner Key or Password is to lower the chances of these last two being used, thus exposed to theft.

      But when you log in with your Posting Key, you can see the Owner Key, in the permission tab.... so a hacker who'd get in just with the Posting Key could just take it? Again I think I miss something...

      $0.00
        Reply
        [-]
         7 years ago (edited) 

        I just got a reply from Steemcleaners:
        The owner key is public, it’s the digital version of your username, if I understood correctly.

        When someone has your master password, but doesn’t know your username or owner key, the password is useless.

        So to get to the keys, you need both the owner key and the master password.

        When you use your private posting key to log in, and you accidently log into a malicious site, the hackers would only be able to post and comment with your account, but they couldn’t touch your funds or change your keys. Using the private posting key limits the damage that can be done if you make a mistake...

        [-]
         7 years ago  

        That is lot clarified .)

        Thank you again!

        $0.00
          Reply