Bitcoin Forum
December 06, 2016, 02:22:09 PM *
News: To be able to use the next phase of the beta forum software, please ensure that your email address is correct/functional.
 
   Home   Help Search Donate Login Register  
Pages: [1]
  Print  
Author Topic: Bitcoind Server Implementation  (Read 1267 times)
BTCHosting
Newbie
*
Offline Offline

Activity: 18


View Profile
October 20, 2011, 06:07:25 PM
 #1

At the moment I use the Lazy API for all my shops, but I would like to host my own Bitcoind instance.

I don't trust third party services, and I dont want to locally host the Bitcoind instance in the webserver.

Is there any open source framework to expose the BitcoinD via an HTTPS service?  Or at least a tutorial?

How do you guys do?
1481034129
Hero Member
*
Offline Offline

Posts: 1481034129

View Profile Personal Message (Offline)

Ignore
1481034129
Reply with quote  #2

1481034129
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
Inaba
Legendary
*
Offline Offline

Activity: 1260



View Profile WWW
October 21, 2011, 04:46:04 AM
 #2

It's all JSON.  It's very, very easy.  There's an API Calls list you just send the JSON request to and process what comes back.   It's easier than the Lazy API

If you're searching these lines for a point, you've probably missed it.  There was never anything there in the first place.
BTCHosting
Newbie
*
Offline Offline

Activity: 18


View Profile
October 21, 2011, 08:34:24 AM
 #3

I'm not saying it's difficult to get in working. I'm saying it's difficult to do it right.

I was looking for advices on the Bitcoin.conf, or Intrusion Prevention, ...


Plus I wouldnt never directly connect to bitcoind, as every input needs to be validated and sanitized
BTCHosting
Newbie
*
Offline Offline

Activity: 18


View Profile
October 21, 2011, 04:07:25 PM
 #4

Let's rephrase the content of this thread:

What are you strategies for hardening the Bitcoind?
Inaba
Legendary
*
Offline Offline

Activity: 1260



View Profile WWW
October 21, 2011, 08:43:14 PM
 #5

If you're never going to connect to Bitcoind, then how do you propose to communicate with it?

You put bitcoind on a secure server, expose the RPC port to the internal network, set up iptables and bitcoin.conf to only allow communication to/from that IP address.  That's pretty much the extent of it - the bitcoind process is a fairly simple system in so far as communicating with it goes.  You can do all the validation and sanitizing you want on the middlebox (or webserver as the case may be), but in the end, you're still going to have to go through RPC to make use of bitcoind, unless you want to write your own software to manipulate wallet.dat and the blockchain... but at that point, we are really beyond the scope of discussion.

I'm not sure what validation and sanitizing you need to do, though, since you should never be passing any sort of user input through the RPC calls to begin with.  I can't think of any reason or instance where you'd want to do this, with the exception of a users BTC address - which can be easily validated prior to passing it along.  All other interaction should be pre-defined in your code, and even the users address can be predefined in so far as it's stored/validated/vetted/sanitized prior to storing it in the DB.

If you're searching these lines for a point, you've probably missed it.  There was never anything there in the first place.
Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!