commit 691adb0dfec3b22a8ac247dcd550eed65ef30d3e
parent b5938204d4cd8a7e19afec18ad836eba332d36cb
Author: Nick <nicholas.w.farrow@gmail.com>
Date: Sun, 10 Jan 2021 21:53:56 +1100
add security detail
Diffstat:
1 file changed, 3 insertions(+), 0 deletions(-)
diff --git a/README.md b/README.md
@@ -53,6 +53,9 @@ Now embed the donation button into your website:
```
Changing `YOUR_SERVER_IP` to the IP address of the machine you're running BTCPyment through. Optionally, you can redirect a domain to that IP and use that instead.
+## Security
+For maximum security, we recommend hosting on a machine where your node only has access to a **watch-only** wallet.
+
## Using HTTPS & Domains
Embedded iframes are easy if your site only uses HTTP. But if your site uses HTTPS, then you can likely see your donation button at `http://YOUR_SERVER_IP:8000/` but not in the embeded iframe. See [HTTPS instructions](docs/HTTPS.md).
