Since you are dealing with sensitive data and trading with real cryptocurrencies, it is important to make sure that only you have access to this sensitive data. Here are a couple of security checks we recommend to do.
1 – API key permissions
If you want to start live trading on an exchange using Cryptoblizz, you need to connect to the exchange using API key & secret. It is very important that you do not give these keys withdrawal permissions, but only balance information and trading permissions. This is all explained in our detailed guide on connecting to an exchange using API key & secret.
2 – Password protect access to your installation
If you are hosting the Cryptoblizz installation online, we recommend to password protect the installation, so only you can access it with a password. Here’s how to do this.
Cryptoblizz provides an in-app password protect wizard where you can setup password protection with a password and username of choice.
- Once you have installed Cryptoblizz on a server or on your PC, navigate to the ‘System & log’ menu.
- Click the ‘Password protect Cryptoblizz access’ button in the ‘Tools’ section.
- Enter your username and password and click the ‘Protect Cryptoblizz’ button.
This method should work 99% of the times, however, if you are experiencing troubles, please get in touch with our helpdesk, or try Method 2 as explained below.
When hosting your website at a hosting provider you will most of the times have access to a control panel, to manage your website. Many control panels offer an easy solution to password protect a directory. We have summed up the most common below. Click your Control Panel for instructions on securing a folder. In this case, you need to secure the folder where you have uploaded Cryptoblizz.
3 – Check your file permissions
Note: this does not apply if you are running on Windows or Mac OS.
- Make sure there are no files & directories with 777 permissions on your server.
- Most hosts provide some kind of ‘reset permissions’ feature to set correct permissions to your entire web folder.
- Otherwise you can set these file permissions with for example FileZilla.
- We recommend the following permissions:
755 for folders
644 for files
4 – Make sure you access Cryptoblizz through HTTPS
HTTPS is a secure protocol to access urls in your browser. To enable HTTPS you will need to have an SSL certificate installed on your server. This will encrypt data and make your Cryptoblizz installation safer. We highly recommend making sure that you have SSL enabled on your Cryptoblizz installation.
If you see https:// in your url, it is good. But if you don’t, we recommend enabling SSL so you can access it through HTTPS. Most hosting providers will offer 1-click HTTPS features where you can enable Let’s Encrypt SSL with just the press of a button. Contact your hosting provider on how to enable HTTPS for you Cryptoblizz application.
You can always contact us if you need help or assistance on this!