Close Menu

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    What's Hot

    Could a hostile takeover be the end of the line for Nakamoto?

    July 15, 2026

    On Anti-Pre-Revelation Games | Ethereum Foundation Blog

    July 15, 2026

    Ark Invest buys $13.9M in Circle shares while trimming Robinhood stake

    July 15, 2026
    Facebook X (Twitter) Instagram
    Block Buzz News
    • Bitcoin
    • Coinbase
      • Litecoin
      • Altcoins
    • Blockchain
    • Crypto
    • Ethereum
    • Lithosphere News Releases
    Facebook X (Twitter) Instagram YouTube
    Block Buzz News
    Home » Security Advisory [Insecurely configured geth can make funds remotely accessible]
    Ethereum

    Security Advisory [Insecurely configured geth can make funds remotely accessible]

    Sophia BrownBy Sophia BrownJuly 15, 2026No Comments2 Mins Read
    Share
    Facebook Twitter LinkedIn Pinterest Email


    Insecurely configured Ethereum clients with no firewall and unlocked accounts can lead to funds being accessed remotely by attackers.

    Affected configurations: Issue reported for Geth, though all implementations incl. C++ and Python can in principle display this behavior if used insecurely; only for nodes which leave the JSON-RPC port open to an attacker (this precludes most nodes on internal networks behind NAT), bind the interface to a public IP, and simultaneously leave accounts unlocked at startup.

    Likelihood: Low

    Severity: High

    Impact: Loss of funds related to wallets imported or generated in clients

    Details:

    It’s come to our attention that some individuals have been bypassing the built-in security that has been placed on the JSON-RPC interface. The RPC interface allows you to send transactions from any account which has been unlocked prior to sending a transaction and will stay unlocked for the entirety of the the session.

    By default, RPC is disabled, and by enabling it it is only accessible from the same host on which your Ethereum client is running. By opening the RPC to be accessed by anyone on the internet and not including a firewall rules, you open up your wallet to theft by anybody who knows your address in combination with your IP.

     

    Effects on expected chain reorganisation depth: none

    Remedial action taken by Ethereum: eth RC1 will be fully secure by requiring explicit user-authorisation for any potentially remote transaction. Later versions of Geth may support this functionality.

    Proposed temporary workaround: Only run the default settings for each client and when you do make changes understand how these changes impact your security.

     

    NOTE: This is not a bug, but a misuse of JSON-RPC.

     

    ADVISORY: Never enable JSON-RPC interface on an internet-accessible machine without a firewall policy in place to block the JSON-RPC port (default: 8545).

     

    eth: Use RC1 or later.

     

    geth: Use the safe defaults, and know security implications of the options.

    –rpcaddr  “127.0.0.1”. This is the default value to only allow connections originating on the local computer; remote RPC connections are disabled

    –unlock. This parameter is used to unlock accounts at startup to aid in automation. By default, all accounts are locked



    Source link

    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
    Sophia Brown

    Related Posts

    On Anti-Pre-Revelation Games | Ethereum Foundation Blog

    July 15, 2026

    devcon one postponed until further notice

    July 15, 2026

    Security Advisory [Implementation bugs in Go and Python clients can cause DoS – Fixed – Please update clients]

    July 15, 2026

    Security Alert – [Implementation bug in Go clients causing increase in difficulty – Fixed – Miners check and update Go clients]

    July 15, 2026
    Add A Comment
    Leave A Reply Cancel Reply

    Top Posts

    Tether became a political powerhouse in 2024

    May 16, 2026

    a16z says CLARITY Act’s Senate breakthrough could be crypto’s 1933 moment

    May 16, 2026

    Are North Korean hackers liquidated on HyperLiquid planning something?

    May 16, 2026

    Haliey Welch has ‘woken up’ weeks after Hawk Tuah crypto crash

    May 16, 2026
    Don't Miss
    Coinbase

    Could a hostile takeover be the end of the line for Nakamoto?

    By John SmithJuly 15, 2026

    Nakamoto has declined 98% since its May 22 peak. At such prices, what would it…

    On Anti-Pre-Revelation Games | Ethereum Foundation Blog

    July 15, 2026

    Ark Invest buys $13.9M in Circle shares while trimming Robinhood stake

    July 15, 2026

    Is Trezor’s ‘quantum-ready’ wallet a marketing stunt?

    July 15, 2026
    Stay In Touch
    • Facebook
    • Twitter
    • Pinterest
    • Instagram
    • YouTube
    • Vimeo

    Subscribe to Updates

    Get the latest creative news from SmartMag about art & design.

    About Us

    BlockBuzzNews: Your daily dose of the latest in cryptocurrency trends, insights, and updates!

    Our Picks

    Could a hostile takeover be the end of the line for Nakamoto?

    July 15, 2026

    On Anti-Pre-Revelation Games | Ethereum Foundation Blog

    July 15, 2026

    Ark Invest buys $13.9M in Circle shares while trimming Robinhood stake

    July 15, 2026
    Most Popular

    Tether became a political powerhouse in 2024

    May 16, 2026

    a16z says CLARITY Act’s Senate breakthrough could be crypto’s 1933 moment

    May 16, 2026

    Are North Korean hackers liquidated on HyperLiquid planning something?

    May 16, 2026

    Type above and press Enter to search. Press Esc to cancel.