- This topic has 3 replies, 2 voices, and was last updated 5 years, 3 months ago by
.
-
Posts
-
Hello,
Extension is working fine, however when I enable TOR, I get the following error:
Bitcoin and Altcoin Wallets: CoinPayments Adapter failed to discover list of available coins: PHP curl returned error: SSL certificate problem: certificate has expired
Any ideas?Ok, solved by changing line 60 of wallets-cp.php from
const API_ENDPOINT_TOR_URL = 'https://coinpaymtstgtibr.onion/api.php';
to
const API_ENDPOINT_TOR_URL = 'http://coinpaymtstgtibr.onion/api.php';
I suppose there are no official certs that curl could verify against for onion domains.
In time: I don’t think TOR is safe for connecting to coinpayments API, as we must not restrict IP for that to work.
So, regular SSL connection and strong password should be more secure than TOR in this scenario, in my opinion.Hello,
Thank you for your feedback.
I was not aware of the certificate issue, but this looks like a problem that should be handled by CoinPayments. They list the official TOR URL with the https protocol, so it is likely that they should renew their certificate.
I added the TOR feature for a user who had requested this, but running WordPress securely over TOR is generally not easy. You can find guides on the web about this, but generally both WordPress and this plugin connect to a number of services as part of their routine operation.
So yes, it is likely not as easy as ticking a checkbox.
Ultimately, if you are concerned about privacy, I believe the best route would be to not rely on third-party services, but instead to set up a Monero full node and use this coin adapter.
with regards
- You must be logged in to reply to this topic.