Computer security

General questions
Server requirements
Mail on the server
Where to download the distribution
Where can I download the plugin or payment module distribution?
How to install the sсript
How to updаte the sсript
How to updаte a plugin or payment module
Site setup
Site Setup (Part 2)
Safety
Computer security
Internet safety
Apache Server Security Recommendations
Recommendations for securing the Nginx server
Script security
DDOS protection
SSL certificate for a domain
Brute force protection
Basics
The rk-hook.php file
The rk-config.php file
What is a cron job?
Website theme, website design
Front and personal account
Admin panel or admin panel
Where can I see the version of the sсript?
New Event Indicators
What is a distribution?
Settings page
Adding/Editing Elements
Sorting elements
Calculator with shortcodes element
Element "Password"
Color Selector Element
Date Picker Element
Encrypted Data Element
Data Selector element
sеlect from List Element
Element "URL-Image"
Text Editor Element
Text Field Element
What are shortcodes?
Editor shortcodes
Tables with elements
Table filters
Table display settings
Action buttons in the table
Uploading images
Merchants and automatic payments
Active choice
Checkbox element
Information Text Element
Warning element
Hint element
Site management
Change the website language
Maintenance mode
Test mode
Updаte mode
Authorization on the site
Admin panel address
Address for authorization in the admin panel
Creating the first administrator
Cron jobs
File for robots, robots.txt
XML sitemap file. sitemap.xml
Console. Widgets in the console
Change the admin panel language
Section "Plugins"
User Files Section
Images section
E-mail settings
Section "Settings"
User roles section
User authorization notification
Two-factor authentication
User authorization log
User editing
Adding a new user
Section "Users"
Widgets
Menu. Control
Section "Appearance"
Section "Pages"
Section "Migration"
Exchanger management
Exchange filters
Exchange table settings
Exchanger settings
Application section
Currency codes
Payment systems
Additional currency fields
Currencies
Additional fields for exchange directions
Exchange Direction Templates
Bulk editing of exchange directions
Exchange directions
Plugins
Converting numbers (beautynum)
User authorization (userlogin)
User password recovery (userlostpass)
User registration (userregister)
Copying additional modules (extcopy)
Proxy settings and Timeout of additional modules (extproxy)
News (news)
Articles (articles)
Form rules (formrules)
Tech support chat (techchat)
Telegram (telegram)
SEO (seo)
Logging administrator actions (admin_logs)
Personal account (useraccount)
Professional status customization (profistatus)
Reserve amount settings (reservedisplay)
Reserved Reserves (reservetieds)
Reserve limit for currencies (currencylim)
Links with crypto transactions and addresses (currexplorer)
User exchanges (userxch)
Export bids (export_bids)
Export contacts (export_contacts)
Setting the initial bid ID (setbidid)
Widget for checking the status of the application (checkstatus)
The effect of entering numbers in a calculator (beautyinput)
Financial statistics (finstats)
Log of additional modules (extlogs)
Card number with spaces in the admin panel (beautycard)
Error Page
Shortlinks (shortlinks)
PHPmailer (phpmailer)
E-mail mailopost.ru (email_mailopost)
Disabling CDN (nocdn)
Captcha for the site (captcha)
Website notifications (notices)
HTML sitemap (htmlmap)
Bookmarks for admin bar (fav)
Block partners (partners)
Email notification log (emaillogs)
Recalculation of exchange amount and course (bidrecalc)
Reviews (reviews)
Block with advantages (advantages)
Contact form (feedback)
301 redirects
Rates block
User comments (usercomments)
API (api)
Stylized email template (beautyemail)
Comments (comments)
Confirmation of e-mail before registration (confrmail)
Custom Shortcodes (indxs)
Currency pages (currpages)
Custom shortcodes from file (fileindxs)
Maintenance mode (maintenance)
Operator status (operator)
SMS (sms)
Formatting additional fields (fieldsformat)
Reserve adjustments (correserve)
Site parser (parsers)
BestChange parser (bestchangeapi)
Archiving exchange requests (archive)
Automatic user registration (autoreg)
Crypto transaction confirmation counter (bcc)
Phone verification before creating an application (confephone)
Confirming your email before creating an application (confemail)
Work operators (workoperators)
Request a reserve (zreserve)
Instruction shortcodes (txtshtds)
Exchange request editor (bidedit)
Log of application statuses (bidlogs)
Bid comments (bidscomment)
Custom bid statuses (bidstatus)
Direction of exchange commissions (dircom)
Copying directions (dircopy)
Direction groups (dirgroups)
Exchange filter for guests (dirguest)
Filter exchange directions by languages ​​(dirlangs)
Reserve limit in the direction of exchange (dirlim)
Redirect to exchange directions (dirredirect)
Direction of exchange reserve (dirreserve)
User restrictions (dirrestrictions)
Exchange amount multiple (kratn)
Check for a new user when exchanging (newuser)
Saving auto-payout coupons in the application (payout_coupons)
Automatic deletion of unpaid bids (bidsautodel)
Coupons for exchange discounts (coupons)
User discounts (discounts)
Bank card information (cardinfo)
GEO IP (geoip)
Blacklist bestchange (blacklistbest)
Money transfer number (transfernum)
Payment checks (transfercheck)
Blacklist (blacklist)
Setting up the output of exchange directions in an XML/TXT file (dirxml)
User accounts (userwallets)
Internal Account Module (intacc)
AML (aml)
Selecting a city in the direction of exchange (cities)
Cashback (cashback)
User verification (userverify)
VK Bot (vkbot)
Telegram Bot (tgbot)
Plugin for additional options in the menu (addmenuoptions)
Logging settings (logssettings)
Accepting deposits from an internal account (deposits)
Affiliate program (pp)
User security settings (usersecurity)
Merchants
Merchants
Creating a merchant
Automatic Payments
Automatic payments
Creating an auto-payment
300 140

Computer Security Rules for Cryptocurrency Business

The cryptocurrency business is a field where you are both the chief executive and your own bank. High returns are inextricably linked with extreme risks, the main one being digital security. Malicious actors from all over the world see market participants as their primary target.

This guide outlines a mandatory set of rules for protecting your computer and, consequently, your financial assets and business reputation. Adhering to these recommendations is not an option but a necessary condition for safe operation.

1. Foundation: Operating System and Software

1.1. Choosing an Operating System

Recommended: Modern versions of Windows 10/11 Pro or macOS. Their advantage is a wide range of supported professional software for trading, analysis, and wallet management.

For enhanced security: Consider Linux (e.g., Ubuntu, Fedora). This system is less popular among average users, making it a less interesting target for mass virus attacks.

Strongly not recommended: Using outdated OS (e.g., Windows 7, 8) that no longer receive security updates.

1.2. Regular Updates

Enable automatic updates for:

The Operating System

Antivirus Software

All installed software (especially browsers, wallets, trading platforms)

Software vulnerabilities are the main gateway for hackers. Manufacturers constantly patch these holes through updates, and your task is to install them.

1.3. Software Installation

Sources: Download programs only from official developer websites. Avoid pirated software, which often contains built-in trojans and miners.

Verification: Before installation, check downloaded files with your antivirus.

Minimalism: Do not install unnecessary programs, games, or dubious extensions on your work computer. Every extra application increases the potential attack surface.

2. Protection Against Malware

2.1. Antivirus and Firewall

Always use licensed antivirus software from a trusted vendor (Kaspersky, Bitdefender, Norton, etc.).

Never disable the built-in Windows/macOS firewall. It controls incoming and outgoing network traffic, blocking unauthorized connections.

2.2. Caution with Phishing

Links and Attachments: Never click on suspicious links in emails, messengers, or social media, even if they seem to come from a known sender. Do not open attachments without verification.

Website Verification: Before entering login and password on any website (especially exchanges or wallets), always check the browser's address bar for an exact match of the domain name. Malicious actors often create fake look-alike sites with similar addresses (e.g., myetherwaIlet.com instead of myetherwallet.com).

3. Access and Data Management

3.1. Principle of Least Privilege

Work in the system under a standard user account. Do not use an administrator account for daily tasks. This will prevent the installation of unwanted software and critical system changes without your knowledge.

3.2. Disk Encryption

Enable full disk encryption:

BitLocker (in Windows 10/11 Pro)

FileVault 2 (in macOS)

This will protect all your data in case of computer theft or loss.

3.3. Backups

Regularly create backups of all important data:

Wallet files (wallet.dat, keystore files)

Seed phrases and private keys (stored separately, see point 5)

Documentation, trade logs, tax reports

Use the 3-2-1 rule: 3 copies of data, on 2 different media, 1 copy is off-site (e.g., in encrypted cloud storage or on a USB drive in a safety deposit box).

4. Network Security

4.1. Secure Connection

At home: Use a strong password for your Wi-Fi router and keep its firmware up to date.

Away from home: Never connect to public Wi-Fi networks (in cafes, airports) to access exchanges or wallets. If necessary, use a licensed VPN service with a transparent no-logs policy.

4.2. Browser Security

Regularly clear cache, cookies, and history.

Use "Incognito" mode for sessions where you don't want the browser to remember data.

Disable automatic password saving in the browser for financial websites.

5. Crypto Specifics: Asset Protection

5.1. "Cold" Storage

The main capital should be stored in hardware wallets (Ledger, Trezor) or other forms of "cold" storage (paper wallets). This maximally isolates your private keys from the internet.

5.2. Managing Keys and Seed Phrases

Private keys and seed phrases are your money. Never disclose them to anyone.

Never store them digitally on your computer: not in files, not in the cloud, not in phone notes.

Write them down on paper or on special steel plates (cryptosteel) and store them in a reliable place, safe from fire and water. Make several copies and store them in different safes.

5.3. Environment Separation

Consider using a dedicated computer exclusively for cryptocurrency operations. This device should not have access to social networks, email, or other unrelated software.

Quick Security Checklist

  • Antivirus is installed and updated.
  • Automatic OS updates are enabled.
  • Disk encryption (BitLocker/FileVault) is activated.
  • Backups of important data are created and verified.
  • Work is done under a "Standard User" account.
  • Private keys and seed phrases are written down on paper and stored in a safe.
  • Main funds are stored on a hardware wallet.
  • Two-factor authentication is enabled on all exchanges and services.

Conclusion

Security in the cryptocurrency business is not a one-time action but a continuous process and a mindset. Paranoia in this matter is your best friend. Develop these habits, and you will significantly reduce risks, focusing on the main thing — growing your business.

Category: Safety
Back to Wiki

© 2025-2026 RichExchanger - professional, reliable, secure currency exchange sсript.

E-mail: support@richexchanger.com
Telegram news: @RichExchangerNews
Русский English

We use cookies to improve the functioning of the site and its interaction with users. By continuing to use the site, you consent to the use of cookies (find out more).

You can always disable cookies in your browser settings.