Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Some misc changes to the website #140

Merged
merged 6 commits into from
Dec 16, 2018
Merged

Some misc changes to the website #140

Show file tree
Hide file tree
Changes from 4 commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
e55a5f6
Some misc changes to the website
grctest Dec 14, 2018
60485ea
Missed css change
grctest Dec 14, 2018
26f9d03
Several additional changes
grctest Dec 14, 2018
b588197
Font Awesome bug fix
grctest Dec 15, 2018
89a4db4
Updated bitker logo
grctest Dec 15, 2018
1a2502f
added simple robots back
grctest Dec 16, 2018
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
248 changes: 0 additions & 248 deletions source/Community/BoincPublications.htm.erb
View file
Open in desktop

This file was deleted.

634 changes: 0 additions & 634 deletions source/Community/ProjectPublications.htm.erb
View file
Open in desktop

This file was deleted.

298 changes: 0 additions & 298 deletions source/Guides/3rdpartyapps.htm.erb
View file
Open in desktop

This file was deleted.

74 changes: 3 additions & 71 deletions source/Guides/security.htm.erb
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,80 +13,12 @@ description: "A brief security guide for Gridcoin users."
</p>
<h5>Wallet security recommendations:</h5>
<ul>
<li>Create a <a href="https://walletgenerator.net/">paper wallet</a> and store it in a waterproof, safe environment.</li>
<li>Backup the wallet.dat and gridcoinresearch.conf files on encrypted USB sticks and store them somewhere safe.</li>
<li>Alternatively, store an encrypted zip/rar/tar on any form of storage medium and keep it safe.</li>
<li>Regularly check that your backups work - if you encrypt your wallet then forget the pass, you're in trouble..</li>
<li>For long term storage, consider creating a <a href="https://walletgenerator.net/?currency=GridcoinResearch">paper wallet</a> and store it in a waterproof, safe environment.</li>
<li>Regularly backup the wallet.dat and gridcoinresearch.conf files and store them somewhere safe. Verify your backup system works.</li>
<li>Encrypt your Gridcoin wallet within the client, don't lose the password.</li>
<li>Read <a href="https://en.bitcoin.it/wiki/Securing_your_wallet">this wallet security guide</a> (for Bitcoin, but relevant to Gridcoin to some degree).</li>
</ul>
</div>
<div class="col-sm-12">
<h4>Securing your browser</h4>
<p>
One of the most common attack vectors is through your web browser, so take precautionary measures to minimize risk of loss of funds/exposure to malware.
</p>
<h5>Non-exhaustive browser security recommendation:</h5>
<ul>
<li>Stop using Internet Explorer! Switch to <a href="https://www.mozilla.org/en-US/firefox/desktop/">Firefox</a>, <a href="https://www.google.com/intl/en/chrome/browser/">Chrome</a>, or one of the many variants of the two.</li>
<li>Do not use the same password for multiple sites. NEVER re-use a password!</li>
<li>Use long passwords! <a href="https://xkcd.com/936/">the longer, the more difficult to crack.</a></li>
<li>Consider a password manager such as <a href="https://keepassxc.org/download/">KeePassXC</a> to create and store long/unique passwords.</li>
<li>Use 2 factor authentication like a <a href="https://www.yubico.com/products/yubikey-hardware/yubikey/">Yubikey</a>, or <a href="https://www.google.com/landing/2step/">GoogleAuth</a> on any website that offers it; it's a second layer of defence against phishing.</li>
<li>If you've been sent a shortened link, either use a <a href="https://unfurlr.com/">link preview service</a> or do not click it!</li>
<li>Disable any extensions that have been installed by 3rd party software - java/toolbars/etc, minus antivirus.</li>
<li>Keep plugins up-to-date (flash/java/etc).</li>
<li>Use <a href="https://www.startpage.com/">StartPage</a> instead of Google.</li>
</ul>

<h5>Browser extension recommendations for extra security:</h5>
<ul>
<li><a href="https://github.com/gorhill/uBlock/">uBlock Origin</a>: Eliminate adverts from the internet; adverts often are malicious! Both "AdBlock" extensions, Plus and Edge, are now considered out-of-date.</li>
<li><a href="https://addons.mozilla.org/en-US/firefox/addon/noscript/?src=hp-dl-mostpopular">NoScript</a>: Nerfs scripts on the internet; you have to manually allow sites to run scripts. Can help prevent malicious scripts running.</li>
<li><a href="https://addons.mozilla.org/en-us/firefox/addon/policeman/?src=cb-dl-toprated">Policeman</a>: Alternative to NoScript. Nerfs scripts on the internet.</li>
<li><a href="https://www.eff.org/https-everywhere">HTTPS Everywhere</a>: An extension made by the EFF; Enforces an https (SSL) connection on sites whenever possible.</li>
<li><a href="https://addons.mozilla.org/en-us/firefox/addon/requestpolicy/">requestpolicy</a>: Protects against CSRF (Controls cross-site requests).</li>
<li><a href="https://addons.mozilla.org/en-US/firefox/addon/cookie-controller/">Cookie Controller</a>: Manage site cookie permissions (browse &amp; remove cookies).</li>
<li><a href="https://code.google.com/p/https-finder/">https-finder</a>: Detects valid https pages as you browse.</li>
<li><a href="https://addons.mozilla.org/En-us/firefox/addon/refcontrol/">RefControl</a>: Hides/forges your referers.</li>
<li><a href="https://addons.mozilla.org/en-US/firefox/addon/lastpass-password-manager/?src=search">Lastpass</a>: Another secure password manager. Combine with a <a href="https://www.yubico.com/products/yubikey-hardware/yubikey/">Yubikey</a> and you'll have incredibly secure authentication online! Highly recommended!</li>
<li><a href="https://github.com/dillbyrne/random-agent-spoofer/">Random Agent Spoofer</a>: Adding all these extensions makes your browser stick out like a sore thumb! Spoof your fingerprints!</li>
<li><a href="https://decentraleyes.org/">Decentraleyes</a>: Local CDN Emulation</li>
</ul>
</div>
<div class="col-sm-12">
<h4>Securing your communications</h4>
<p>
It's crucial that your private communications online are not intercepted by any malicious entity; privacy is a human right, take yours back!
</p>
<ul>
<li><a href="https://arstechnica.com/tech-policy/2014/12/newly-published-nsa-documents-show-agency-could-grab-all-skype-traffic/">Do <b>not</b> use skype!</a></li>
<li>Use a VPN to evade censorship, MITM attacks &amp; totalitarian governments. <a href="https://torrentfreak.com/vpn-services-keep-anonymous-2018/">Find the best vpn for you.</a></li>
<li>Encrypt your private emails <a href="https://lifehacker.com/180878/how-to-encrypt-your-email">using PGP.</a></li>
<li>Always attempt to use multi-party encryption if performing group chat/conferences. At the very least, password protect chat rooms.</li>
<li>Use OTR for 1-1 secure communications <a href="https://securityinabox.org/en/pidgin_main">(Pidgin + OTR)</a>, keep an eye out for multi-party OTR in the future.</li>
<li>Don't share <b>ANY</b> of your personal information online. Use aliases.</li>
<li>Use encrypted texting apps e.g. <a href="https://guardianproject.info/apps/chatsecure">Chatsecure</a></li>
<li>Keep usage of social media to a minimum; if you're not paying for the service, <b><u>you're the product being sold.</u></b></li>
<li>Do not use an email provider based in USA, instead use a <a href="https://prxbx.com/email/">secure alternative (link to list)</a>.</li>
</ul>
</div>
<div class="col-sm-12">
<h4>Securing your computer</h4>
<p>
Most of these tips are a given, but it's good to remember that they are quite important to adhere to at all times.
</p>
<ul>
<li><a href="https://secunia.com/vulnerability_scanning/personal/">Use Secunia PSI</a> to keep software constantly up to date.</li>
<li>Keep your operating system up to date (Windows updates/Ubuntu apt-get upgrade/Fedora yum -y upgrade/etc) &amp; dont run a cracked version of your operating system (Good way to infect your PC &amp; be a victim of ID theft).</li>
<li>Keep usage of cracked/pirated software/games to an absolute minimum; keygens and pirate software can be (usually are) a source of malware.</li>
<li>If you must install insecure software, run it in a <a href="https://www.sandboxie.com/">sandbox</a>!</li>
<li>Install an antivirus program (<a href="https://www.bitdefender.co.uk/">Bitdefender</a> paid versions are good!). Scan all files that you download from the internet, especially from forums &amp; P2P sites/apps.</li>
<li>Keep offline backups of your important data.</li>
<li>Install theft prevention software on mobile devices, examples are: <a href="https://preyproject.com/">Prey</a>, <a href="https://lojack.absolute.com/en">Lojack</a>, etc.</li>
<li>Encrypt your devices' storage, especially if you've got a mobile wallet.</li>
<li>Do not share any of your account credentials to anyone, don't write them down, and don't store them insecurely on your PC.</li>
</ul>
</div>
</div>
</div>
</section>
Expand Down
36 changes: 18 additions & 18 deletions source/Guides/whitelist.htm.erb
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,7 +10,7 @@ description: "The Gridcoin whitelist is a list of community-approved BOINC proje
<div class="col-xs-12 col-sm-4">
<h5>Whitelist justification</h5>
<p>The whitelist was created to increase security and to focus user's resources on active projects.</p>

<h5>Discussion</h5>
<p><a href="https://cryptocurrencytalk.com/topic/29841-discussion-boinc-whitelist-monitoring/">CCT Whitelist thread</a></p>
<p><a href="https://cryptocurrencytalk.com/forum/2436-projects/">Projects subforum</a></p>
Expand All @@ -32,7 +32,7 @@ description: "The Gridcoin whitelist is a list of community-approved BOINC proje
<div class='col-xs-12 col-sm-12 text-center' style="">
<h3>Greylist</h3>
<p>When projects are running out of work or are offline for temporary maintenance they are placed on the Greylist. These projects will not reward Gridcoin until they meet the requirements to be placed back on the whitelist again. Please see various social media (Twitter, Facebook, Reddit, Slack) for notices about greylisted projects.</p>
<p>Please see <a href="https://gridcoin.ddns.net/pages/project-list.php">The official Greylist website</a> for daily updates on which projects are added and removed from the Greylist.</p>
<p>Please see <a href="https://gridcoin.ddns.net/pages/project-list.php">This Gridcoin greylist monitoring website</a> for daily updates on which projects are added and removed from the Greylist.</p>
<p><a href="https://gridcoin.ddns.net/pages/project-list-process.php">This document</a> outlines the Greylist procedure for all whitelisted projects.</p>
</div>
</div>
Expand Down Expand Up @@ -85,23 +85,23 @@ description: "The Gridcoin whitelist is a list of community-approved BOINC proje
</td>
<td>
<% if project.cpu == "yes" %>
<i class="fa fa-check" aria-hidden="true"></i>
<% else %>
<i class="fa fa-times" aria-hidden="true"></i>
✔️
<% else %>
<% end %>
</td>
<td>
<% if project.gpu == "yes" %>
<i class="fa fa-check" aria-hidden="true"></i>
<% else %>
<i class="fa fa-times" aria-hidden="true"></i>
<% end %>
✔️
<% else %>
<% end %>
</td>
<td>
<a href="<%= project.team %>" title="Gridcoin Team Link"><i class="fa fa-users" aria-hidden="true"></i></a>
<a href="<%= project.team %>" title="Gridcoin Team Link">📊</a>
</td>
<td>
<a href="<%= project.stats %>" title="Project stats"><i class="fa fa-list-ol" aria-hidden="true"></i></a>
<a href="<%= project.stats %>" title="Project stats">📈</a>
</td>
</tr>
<% end %>
Expand Down Expand Up @@ -138,17 +138,17 @@ description: "The Gridcoin whitelist is a list of community-approved BOINC proje
</td>
<td>
<% if project.cpu == "yes" %>
<i class="fa fa-check" aria-hidden="true"></i>
<% else %>
<i class="fa fa-times" aria-hidden="true"></i>
✔️
<% else %>
<% end %>
</td>
<td>
<% if project.gpu == "yes" %>
<i class="fa fa-check" aria-hidden="true"></i>
<% else %>
<i class="fa fa-times" aria-hidden="true"></i>
<% end %>
✔️
<% else %>
<% end %>
</td>
</tr>
<% end %>
Expand Down
12 changes: 12 additions & 0 deletions source/assets/css/index_hotfixes.css
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,12 @@
div.dropdown a {
text-decoration:none;
}

div.dropdown a.dropdown-header {
color:black !important;
}

div.footer_placeholder a {
text-decoration:none;
font-weight:normal;
}
2 changes: 1 addition & 1 deletion source/assets/css/table.css
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -21,4 +21,4 @@ td a:hover {
th {
color: #FFFFFF;
border-bottom-color: #434343 !important;
}
}
4 changes: 2 additions & 2 deletions source/contact.htm.erb
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,7 @@ description: "How to get in contact with the Gridcoin developers and community."
</div>
<div class="col-xs-12 col-sm-8 col-md-8 col-lg-8" style="margin-bottom:5px;">
<h3>How to get in contact with us!</h3>
<p>The Gridcoin community as of mid August has approximately 12k registered users in team Gridcoin, with approx 3k actively crunching. These users are spread across many platforms such as:</p>
<p>Our large userbase is spread the following chat platforms:</p>
<ul>
<li>
<a href="https://cryptocurrencytalk.com/forum/464-gridcoin-grc/" style="color:#7d00f4;">CryptoCurrencyTalk - Gridcoin Subforum</a>
Expand All @@ -37,7 +37,7 @@ description: "How to get in contact with the Gridcoin developers and community."
<p>If you're looking to report security concerns:</p>
<ul>
<li>See the official <a href="https://github.com/gridcoin-community/Gridcoin-Research/blob/master/VULNERABILITY_RESPONSE_PROCESS.md" style="color:#7d00f4;">Gridcoin Security Disclosure Document</a>.</li>
<li>Email "<a href="mailto:contact@gridcoin.us" style="color:#7d00f4;">contact@gridcoin.us</a>" to get Rob's attention (lead dev).</li>
<li>Email "<a href="mailto:contact@gridcoin.us" style="color:#7d00f4;">contact@gridcoin.us</a>" to get the team's attention.</li>
<li>Alternatively: Jump into the <a href="https://grcinvite.herokuapp.com/" style="color:#7d00f4;">Slack channel</a> or the <a href="https://t.me/gridcoin" style="color:#7d00f4;">Telegram channel</a> and ask for an administrator.</li>
</ul>
<p>If you have non-critical Gridcoin client issues/bugs you wish to raise awareness of then please <a href="https://github.com/gridcoin-community/Gridcoin-Research/issues" style="color:#7d00f4;">submit an issue on the GitHub repo</a>.</p>
Expand Down
Loading