Safety tips for ALL FARMERS

File: 238 KB, 1450x966, fb9676e6f299feb7966ced046e15004a.jpg [View same] [iqdb] [saucenao] [google]

Safety tips for ALL FARMERS Anonymous Tue Aug 18 21:29:59 2020 No.21608387 [Reply] [Original]

https://twitter.com/spreekaway/status/1295788578962837504

2/x I am not a security expert, this is nowhere near a substitute for a real professional audit, even following all of these steps you are at extreme risk whenever touching one of these pools. Do not put more than you can lose into any ETH smart contract.

3/x The first important thing you need to do is find the contract you will be interacting with. Sometimes this is easier than others. Often the best technique is to find the token you will be farming on etherscan, then look at the top holders.

/x Once you find the contract address on etherscan, you want to click on contract then look at the code. What I usually do is use https://diffchecker.com/diff to compare with the most similar "tested" contract (e.g. from SNX, YFI, YAM, etc.).

5/x What is usually ok to see: variable name changes, date/timing/supply changes, token contract address changes. What you don't want to see: upgradable contracts, a lot of new complicated logic, weird changes that you can't understand the purpose of, etc.

6/x Ok, so the contract looks good, so I can just head over to the website and throw in my life savings, right? WRONG. Regardless of the contract, we must keep in mind that a frontend can change the contracts you are interacting with at any time.

7/x An unscrupulous dev could even randomize or specifically target high value accounts connecting to his website to reduce the chances of others calling the alarm. This frontend attack is obvious, extremely easy to execute, and really only a matter of time before it is done.

8/x You have two options to protect yourself: 1) check the address of each and every transaction being sent from the front end and make sure it matches the contract address you already looked at, 2) do all contract interactions manually from etherscan.

thought this might do some good for ya'll

>>	Anonymous Tue Aug 18 21:49:02 2020 No.21608924 >>21608387 wow ok im just trying to be nice ok wow ok

>>	Anonymous Tue Aug 18 21:49:33 2020 No.21608938 >feeling unappreciated

>>	Anonymous Tue Aug 18 21:52:12 2020 No.21609021 >>21608387 bump most people here are probably too poor for yield farming

>>	Anonymous Tue Aug 18 21:53:11 2020 No.21609049 File: 46 KB, 480x480, 1593482577610.png [View same] [iqdb] [saucenao] [google] >>21608387 >>21608924 >>21608938 thanks op great post, any tips on interacting through etherscan interface?

>>	Anonymous Tue Aug 18 22:05:17 2020 No.21609393 File: 54 KB, 304x320, 695-6950937_frens-pepe-hd-png-download-obama-can-t.jpg [View same] [iqdb] [saucenao] [google] >>21609049 i have no idea what this post means i just copy paste from twitter

Advanced search
Text to find
Subject [?]Search by post subject. Leave empty for any.
Username [?]Search for user name. Leave empty for any user name.
Tripcode [?]Search for tripcode. Leave empty for any.
Email [?]Search by email. Leave empty for any.
Filename [?]Search by image filename. Leave empty for any.
From Date [?]Enter what date to start searching from. Format is YYYY-MM-DD
To Date [?]Enter what date to start searching until. Format is YYYY-MM-DD
Image hash
Search in	All Posts OPs Only
Deleted posts	Show all posts Show only deleted posts Only show non-deleted posts
Internal posts	Show all posts Show only internal posts Show only archived posts
Order	New posts first Old posts first
Capcode	All Posts Only by Users Only by Mods Only by Admins Only by Developers
Results	Posts Threads
Action	[ Simple ]

/biz/ - Business & Finance