.jpg)
When you sign up to Steemit you are presented with this:
The first rule of Steemit is: Do not lose your password.
The second rule of Steemit is: Do not lose your password.
The third rule of Steemit is: We cannot recover your password.
The fourth rule: If you can remember the password, it's not secure.
The fifth rule: Use only randomly-generated passwords.
The sixth rule: Do not tell anyone your password.
The seventh rule: Always back up your password.
This is 100% true. The Steem blockchain is not like any other platform you are used to on the internet.
You can't press a button that says 'forgot your password? ' and expect that it will be mailed to you. (like any other website).
You are 100% responsible for your own actions here. The blockchain is decentralized. There is no third party to help you out.
Make sure you have your security in order straight from the start.
The best time to do it is when you just created your account. Your account won't have much value and in case you do make a mistake it's not the end of the world.
You don't want to learn about these things once your account is worth thousands. It's a lot scarier then I can tell you that from experience.
Don't ever log in with your master key (the one you got when you created your account).
There are 3 keys you need to know about. The posting key, the active key, and the master key.
You can log in with each of these keys.
With the posting key, you can only post, comment and upvote. (not transfer funds).
With the active key, you can post, comment, upvote, and transfer funds.
With the master key, you can change all the keys, including the master key.
There is not a single reason why under normal circumstances you want to log in with your Master key, so don't do it!
Always log in with your posting key. You can find it here. Only login with your active key if you intend to transfer funds.
Steempower is the best security.
In case your account is compromised (the active key was stolen). Steempower offers another security barrier. Because it takes a week to power down 1/13th of your STEEMPOWER to liquid STEEM (that can be transferred).
It gives you therefor a whole week to fix the situation and undo the hack.
This is where your master key comes in. And the only time you should use it.
With the master key, you can change all the other keys. Locking out any hacker and undo the power down.
I talk about it more in my vlog.
Starts @ 1.35
I am a witness with our developer group @blockbrothers for the Steem blockchain. If you want to support us I would appreciate your vote here.
We build Steemify a notification app for your Steemit account for iOS.
Get it Here:
▶️ DTube
▶️ IPFS
I spilled coffee on my laptop in the summer, and once I got a new temporary laptop, I found out I had misspelled my million digit Steemit password on a piece of paper.
It was quite a joy to figure out which letter or number was the incorrect one.
It took me all night, but I was able to figure it out.
Dang. But you're a pro hacker then:)
I thought there was no problem since I knew I had the piece of paper. But my heart did skip a few beats when my eyes saw the red text that said "Incorrect Password".
"Oh. Shit."
"This is gonna take a while."
Haha I can imagine:)
Thats whats happening to me. Uh oh. So just push reset for a new one?
Damn dude. That's like a nightmare scenario :). Makes for a good story though.
Hah, yes. I now have it on my two external hard drives, on a piece of paper - correctly - as well as my mom's computer, just in case.
I trust my mom. :)
Du hast den Schatten offenbar geschnappt👍
This warning is very important, so you did the right thing by posting this reminder. There are a lot of newbies who don't know how important it is to be very prudent with your keys.
Yes...that's right.... Thank God for people like @exyle for always encouraging and counselling
@clio Your Son is why I LOVE STEEMIT. @exyle You have a GREAT MOM !
This is the first time I heard an explanation about all steem password so simple.
I thank you and I resteemed this post.
Keep on steemit
Wow thank you for the info man!
I learned something new today, I always login with my master key i think.
I'm going to change that now , Thanks for the info!
Make sure you backup your masterkey!
steemconnect is asking our master key when we transfer funds to @blocktrades is it ok?
This what it says.
This operation requires your active, owner key or master password.
Use your active key is what I would recommend.
I always use my master key to login or transfer funds...Thanks for such a useful information...i dont know about the difference in between these keys,,, Resteemed
Thanks for posting this, important for both new Steemians but also people who have been around for a while but may not have been aware of this.
You are welcome!
@exyle,
This is a valuable thing to most of STEEMIANs! They are just using Master Key to logging to every app built top of STEEM blockchain and some how they used it with spams! If they follow what you said today, atleast they can secure their accounts! Specially STEEM is based on Proof of Brian (PoB) concept! So, we must secure your hard earnings from scammers!
Cheers~
I think you should be informed how this 3 layer password system from the start because it is quite unique and people are just used to having one password.
Always thanks for your useful posting :)
With the master key, you can change all the keys, including the master key.
This is the theme of this very useful blog post. And the second beautiful thing that Sir @exyle have mentioned is:
Steempower is the best security.
This is the beauty of this awesome platform, that seniors always take care of juniors. They spend time just sake of awareness towards community. I have been following since last 3 months and I got lot of useful things from here and also I have learnt various things which give me experience and now I can handle each and everything. All the best for your superb work. And Stay blessed. Say hello to wagon!
Vlog 186 is really a great guideline specially for the newbies. Going to share with my family and friends. Thanks @exyle!
I have talked about this before too, thanks for this post. And today I found out busy play dtube video wtihin it. But it's still too heavy to load on my internet connection. It seemed to play fine for first 30secs then started buffering.
Am was really happy when I saw the title of your post, I quickly click on it to read. Wow!!, Today post will really help any steemian reading to know how to secure his or her password.
Am sharing this post link to all my steemit group chat. For all the new steemians there to read, because it will really help them alot.
Thanks so much for sharing @exyle
I've got a password manager to deal with my logins. Nothing like having my stupidly long passwords hidden away behind a thumbprint login! 1password, just in case anyone on the thread is curious.
I do have some secure passwords that I could technically memorise though! In the xkcd vein of "correct horse battery staple":
The fourth rule: If you can remember the password, it's not secure :)
Very meaningful and simple explanation of our safety with you, my friend, and here you are absolutely right, if we are invited to introduce an active key on third-party sites, then it is necessary to think many times whether it should be done at all. I also completely agree with you that the STEEMPOWER is another opportunity to protect our funds! Thank you Mark and keep us informed.
Im one of those noobs logged in with my master key :-(
Signing in with another one now, didnt think about the security risk. Thanks.
Your welcome.
yes and i agree on this steem security system bcz it also help us to secure our accounts and our balance from hackers...but today i tried to sell some steem and i amaized to see that the blocktrades use it via steemconnect
I remember the time I “lost” my key and I cried before I was so addicted to this paltform but I ended up finding it . Now I literally have it backed up in so many places that I’d never be lost again
Thx again for reminding us again, I think the different keys is for a lot of new users complex.. especially when they are happy when account is approved and have received the one key.. maybe there should be some option in Steemit to show the user that he logged in with master PW.. ( if that is possible) to create more awareness.
I am thinking about tattooing these keys on my body, like the guy in Memento did :) I would like to hear your opinion @exyle on another topic: do you think that Steem has already hit the support line of $4 and will go up or will we experience the last year's "dark ages of Steem"?
I can't tell you I'm afraid. I don't have a crystal ball :)
Smiles, that's funny no need of tatooing the key on ur body just try to keep it well in a safe place..@alexpavlenko
Thanks friend for the great information about the security system of this world. In this context I would like to mention the great share from the great steemians @kafkanarchy. "you are the highest othority of your own here so be careful in every way ".yes friend in the world of decentralized system the third party may become dangerous to you. Thanks for sharing such a valuable information to the people. Wish you a very beautiful time friend, I have mentioned something about your family, if you don't mind please give a visit on my post.
This is possibly the most advanced security tips I ever got to learn about since joining Steemit. This is even more important than the money we make here. Always a pleasure get these valuable tips from you @exyle
Yeah, only took me about half a year before I realized this... Honestly, I don't know if they changed it by now, but it should be made more clear once you create an account.
Excellent post and video my friend and i agree with your thoughts we all have to use active and posting keys to login to our account and use steemit and we must have to save our master password in a very safe place where no one can steal it because master password is the way to recover our lost steemit account and i did follow your steps and i successfully enhanced the security of my account too, thanks for sharing very nice and most important information with us, Stay blessed.
Hey! I maybe have a dumb question but how do I know with wich key im logged in? I just made an account for 3 weeks ago but didnt know about these different keys then.
If you don't know about the keys you are using your master key at this moment. I would suggest taking the steps I wrote down. Backup your master key and login with your posting key.
This is a very important thing to know. I wasn't paying attention to all this stuff before. I backed all my keys now, thanks Mark :d
It would be so much fun if my laptop suddenly stopped working.
In the beginning of my steemit registration i was given a master key which i still use to login till now, i wiol definitely get the other keys i didnt even know they existed till now. This post is a blessing. STEEM ON!!
so i should never use master key anywhere else just on steemit main website @exyle
No never. not even on Steemit.com. Just use your posting key and when you want to transfer funds use your active key. Never ever use your master key.
Great post, this is the first time after being here 6 months I've seen the full description of each key !!
Holy shit, i did NOT realize this, thank you so much dude. I have been using my master key until now. So i generated new passwords, and is keeping them in cold storage, and on paper now. Thank you a million times, you might just have saved me down the line
Glad you found it useful.
Losing your master key would be the worst nightmare! But it does happen. Be like a good boy scout and be prepared. Save it umpteen dozen places.
Great vlog you explained Many things which are very useful for every Steemian Today !!
I was not that much aware about the different keys as i am new here but you explained each and every thing about each key so very thankful to you and most importantly i got my account in the same way as your friend got so i too need to change my master password thanks for that suggestion and telling us all how to do.
GREAT Security System steemit has such a master stroke that is by the developers so sense of satisfaction too from the any kind of hacking.
Time to learn it from the start thanks again a lot and that christmas tree looks beautiful in the background don't remove that hahah :)
Cheers.
@exyle Thank You for reminding me AGAIN that I need to have my Keys copied down and in multiple secured places. You can NEVER be to SECURE !!
Due to the possibility to own Steem Power I have a much more secure feeling with steem than with many other crypto currencies. I had once 8 ETH stolen from me - I still do not know what happened... This cannot happen so easily with Steem - which is one of the reasons why I like Steem.
This where almost every one especially newbies make a lot of mistake thereby compromise and losing their password. A newbie once wrote the password down immediately she received it but surprisingly it didn't go through. This will be of great help
Sir @exyle thanks to you for these worthy information about the Security of our Steemit account.
To convert our payouts rewards in Steem Power is wonderful option for security,This is guideline for all specially me because i am not much aware about that. so again thanks.
Nice post, thanks for sharing
Agreed, doing it the same currently - increasing SP is what I aim for, have my BTC and IOTA locked and will not trade anything in the near future - maybe one currency soon - but here I stick to what I get and increase Steem Power.
yes i agree with you the posting key is best key for sign in the steemit site
steemit account security = steem save
this is very informative post for steemit tutorial
thanks ^^
@exyle
Mark, we are so lucky that we ony have 3 key's to take care for it. Why only 3; Just because of the fact that STEEM is the most important, as you say; in future we can do everything with our STEEM !
Oh my gosh! I didn't know I can log in with an active key. Thank you so much for posting this.
Oh yes is very important have the master key safe, is correct I have a problem similar with my account when change of computer I save my password in Google, Uphold, Airtm, Passwords but, this master key is inside of a chest with key, together to bitttrex and poloniex ha ha ha
Only the user who owns an account can authenticate actions such as commenting, voting, or transferring with their password or appropriate key. Each account has a set of private keys with different access privileges. The lowest security level key allows posting, commenting and voting, but not transfers of currency. Therefore, with a hierarchy of keys, it is possible to use other Steem faucets without risking a loss of funds or account control.
O really this is great information of steemit account security ..I appreciate y friend...
Thanks a lot for providing your great info..
Best of luck...
Extremely helpful :) there are lots of newbie here
There can be no better information than this, I agree with you completely. @exyle
I agree with you.
This is true , I captured my password , I wrote it on a paper and I put the capture on a stick not to loose my password :)
Good writing .I know if I forget my password never I get it at any cost.Your warning is very important for us .Few days ago my friend loss his password he didn't excess his blog. Full day he looking his password but he never found.He was up sad and hope less.After one day he found his password in his smartphone.Now he is happy.I am also happy.Thanks to sharing this kind of essential post.
Well @exyle
Thank You so so much for elaborating this issue regarding Basic Account Security. Yes I know about those 3 keys but did not know their perfect use you just thrown light upon it.
This is something new for me
You always try to bring awareness among Steemians especially the minnows and new comers who really need some guideline from the the old Steemians.
Thanks for your worth reading Blog, it cleared many confusions of mine
Stay Blessed, Steem On!