Security is paramount to THW. We take extensive measures to protect our infrastructure, support the stability of the Solana network, and safeguard the interests of our stakers.
Access Management:
Access to servers is strictly limited to trusted personnel via passwordless SSH using Ed25519 keys for authentication.
Each user-server pair is assigned a unique SSH key, which is stored locally in an encrypted database.
Withdraw authority keys are kept entirely offline in secure cold storage.
Network Security:
All nodes are protected by strict firewalls and adhere to a default-deny network policy, exposing only essential ports.
We actively monitor for unauthorized access attempts and use fail2ban with highly aggressive rules to block repeat offenders.
DDoS mitigation is in place at the network level to defend against service disruption.
Infrastructure:
We operate a high availability (HA) configuration with a dedicated hot-spare node (non-voting) hosted in a separate datacenter for maximum redundancy and uptime.
