I and a number of witnesses have mentioned our node locations and hosting/non-hosting information in the Witness-only channels in Telegram and Slack. Does mentioning of our node locations in this public forum become an attack vector and compromises the bts network security? Are we giving the hackers, spammers, bad governments and other bad actors out there more information than we should?
agree. Do not post witness detail hosting information and vps location here?please use our telegram
Exactly. I think it would be wise to
assume the worst. Assume the NSA, Mi5, hackerboy123, etc has bots already tracking and trying to penetrate from every angle, and don't rule out their tracing methods or social engineering either:
https://www.youtube.com/watch?v=3VlyZIywY9c BitShares is going to change the world. Do not take our security lightly.
1. One human should not control more than 1 Witness account. That human should not be friends or even geo-located near another Witness-controlling human.
2. Amazon controls many webhosting providers. Amazon should not have access to more than 1 Witness. (ie: who owns namecheap? who owns godaddy? who owns digital ocean? etc)
3. No more than 1 Witness should be physically hosted in 1 country.