You are viewing a single comment's thread from:
RE: *YOU* are just begging to be hacked!
Well, if a third-party app is open source, you can host it yourself and audit the javascript provided you know how to. Otherwise, most of the sites just ask for the posting key, which yes, could be bad, but better than the active or owner key.
That is what is so awesome about SafePay and steem-browserify. They are open source and hosted in the browser so YOU DON'T NEED TO KNOW ANYTHING except that someone you trust (hopefully steemit.com) has audited it and is willing to host the audited version . . . .
Did you check out @digital-wisdom's post?
Yes, those are really useful for those one don't want to or know how to set up the cli_wallet or piston!