web3_http_address should replace web3_http_port in TrinConfig

[mrferris]

From #127:

@njgheorghita:

In order to communicate to our http server from outside of a docker container, we need to bind to 0.0.0.0 rather than 127.0.0.1. Though, I'm not sure if this opens up some security vulnerabilities as the new default? And instead should be controlled via cli flag / env var?

@lithp:

The long-term solution is probably to turn web3_http_port into web3_http_addr, and default to localhost. Right now this [hardcoding 0.0.0.0 instead of allowing the entire ip + port be configurable] is technically insecure because it defaults to turning any trin vulnerability into a vulnerability on a public open port.

[bhunter7]

Could you please tell me what you found out. I have emails and screenshots but I want to know what you found out. I have an Ethereum 2 in my account and I don’t know If they added back the $500 that was taken out before staking? I’m still losing on this I’m not earning the 5% for staking and I can’t do anything with Ethereum 2 to make any money with it. It seems they should pay the 5% till we can use the new Eth. and thefy mentioned coins for staking when it was done. I am appreciative of getting Ethereum 2 because it would have been wrong not too. I paid over $3,900 for it. The guy who emailed me and was one of the ones supposed to be working with my Ethereum first I was told pat of it was missing and he changed that and said it was stolen and it was my fault and I should just accept it. Then he went on to tell me what I shouldn’t have done and none of that was true. He was threatening me basically and I feel he should not be working with people’s valuable coins. He just didn’t seem like a very principled or honest person and I wouldn’t be surprised if someone else looses their coin if they haven’t already. Please figure out what happened before someone this happens to someone else. Thank you and I would appreciate it if you would get back with me. Blessings, Belinda Hunter Get Outlook for iOS<https://aka.ms/o0ukef>

…

________________________________ From: Nick Gheorghita ***@***.***> Sent: Tuesday, November 2, 2021 12:33:35 PM To: ethereum/trin ***@***.***> Cc: bhunter7 ***@***.***>; Mention ***@***.***> Subject: Re: [ethereum/trin] web3_http_address should replace web3_http_port in TrinConfig (#129) Closed #129<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.heygears.com%2Fethereum%2Ftrin%2Fissues%2F129&data=04%7C01%7C%7C979216951545485620fb08d99e26e69e%7C84df9e7fe9f640afb435aaaaaaaaaaaa%7C1%7C0%7C637714712177374858%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=mLAmCcMCcGgwmjcbdelMB7lfdwfQFYevh3lMNn5AoBU%3D&reserved=0> via #171<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.heygears.com%2Fethereum%2Ftrin%2Fpull%2F171&data=04%7C01%7C%7C979216951545485620fb08d99e26e69e%7C84df9e7fe9f640afb435aaaaaaaaaaaa%7C1%7C0%7C637714712177384846%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=TQRoiasbH8AF1%2FEgUMq4RN6H%2FzPcv9JbDjE2GsiwFL4%3D&reserved=0>. — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.heygears.com%2Fethereum%2Ftrin%2Fissues%2F129%23event-5557100379&data=04%7C01%7C%7C979216951545485620fb08d99e26e69e%7C84df9e7fe9f640afb435aaaaaaaaaaaa%7C1%7C0%7C637714712177384846%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=I3MlrkpKe1cV5fa1H6Tjr%2BjUTxdqT4HGmsIdrm%2FCzdA%3D&reserved=0>, or unsubscribe<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.heygears.com%2Fnotifications%2Funsubscribe-auth%2FAV2DZXANPRSQCMYWJ7DHJF3UKAVH7ANCNFSM5FURZCVQ&data=04%7C01%7C%7C979216951545485620fb08d99e26e69e%7C84df9e7fe9f640afb435aaaaaaaaaaaa%7C1%7C0%7C637714712177394835%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=fLkNsW%2FJKv7JRVlvFR%2BSgqcEFver4NfFAHVJL%2Bx9VyI%3D&reserved=0>. Triage notifications on the go with GitHub Mobile for iOS<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fapps.apple.com%2Fapp%2Fapple-store%2Fid1477376905%3Fct%3Dnotification-email%26mt%3D8%26pt%3D524675&data=04%7C01%7C%7C979216951545485620fb08d99e26e69e%7C84df9e7fe9f640afb435aaaaaaaaaaaa%7C1%7C0%7C637714712177404832%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=jhG8aQxvXE%2BIrSpOOBPghZXFx%2BdKSBVpthjJeDzjuhE%3D&reserved=0> or Android<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fplay.google.com%2Fstore%2Fapps%2Fdetails%3Fid%3Dcom.github.android%26referrer%3Dutm_campaign%253Dnotification-email%2526utm_medium%253Demail%2526utm_source%253Dgithub&data=04%7C01%7C%7C979216951545485620fb08d99e26e69e%7C84df9e7fe9f640afb435aaaaaaaaaaaa%7C1%7C0%7C637714712177414828%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=33T%2BAepeJ85IsDwNJKE%2B8GuaLZbwwfUDsIiUp8IrsCU%3D&reserved=0>.

[carver]

@bhunter7 We cannot provide any further help. It sounds like you've got a frustrating situation, and one that you don't fully understand.

None of us have the responsibility or capability to send you any Ethereum-based assets that you have sent away or lost.

We love to help in whatever small way that we can. We suggested other places to ask for help, but that seems to have been ignored.

To reiterate the most important lesson: do not trust people's claims about who they are, or what they will do with your assets. That's especially important when someone contacts you (rather than you contacting them). Note that you found real Ethereum developers by contacting us. Whoever initiated the conversation with you must be a scammer (and is not an actual Ethereum developer).

We wish you the best of luck in the future and are sorry for your loss.

This thread is now locked, as off-topic.