Another thing to do to secure the VPS would be to just automatically transfer out the timekoins. If there are no timekoins on the server to steal, what is the big deal?jambo58 wrote:Are there any implications or specific steps to required to setup ssl (self signed or certified) with the timekoin software? On apache2.
I'm a bit worried about sending clear text over the web to the vps timekoin server especially with private keys and passwords
Would be great to add that info to this tutorial if you have done that already
I've written "harvester" scripts in the past that collect timekoins from other public keys and move them to a single key. All you really need is the private key of the source and public of the destination. This script could run on any timekoin machine, i.e. your own desktop. It would just broadcast the transactions from your desktop instead of originating from VPS.