If you run a financial application and deploy a new security feature, it should probably be opt-out, not opt-in.
RT @fnxTX: -_-;
And the major non-client-side threat to @Blockchain arch—MITM. A known vuln; why allow Tor connxn to touch privkeys? @julia…
RT @fnxTX: @lopp @blockchain And even worse, the DEFAULT settings would screw you, unless you had perfect email security. Suboptimal on the…
RT @fnxTX: @lopp @blockchain Yep. So Blockchain itself isn’t insecure, but had serious Linux syndrome. Too many settings, too easy to screw…
RT @fnxTX: @lopp As for @blockchain, biggest (ongoing) mistake was post-Heartbleed. By default, new accts got emailed a single-factor recov…
@fnxTX @blockchain Goes to show that you can’t expect users to educate themselves about security.
.@blockchain’s reputation continues to slide. Have yet to hear a response for how they intend to improve. https://t.co/bsHgZVq1Rk