Security
Learn about CapaCloud's security measures and best practices
Authentication
CapaCloud uses wallet-based authentication:
No Passwords
Your Solana wallet is your identity
Message Signing
Login requires signing a message with your private key
Auto Registration
New users are registered on first login
Data Protection
HTTPS/TLS
All API communication encrypted
Secure Storage
Wallet addresses stored securely
No Private Keys
Never stored on servers
Local SSH Keys
Generated and managed locally
Container Isolation
Each rental gets an isolated Docker container:
Full Isolation
Complete separation from host system
Network Namespace
Separate network isolation
Resource Limits
Quotas and limits enforced
Auto Cleanup
Automatic cleanup on rental end
SSH Security
Key-based Authentication Only
No password authentication
Unique Keys Per Rental
Each rental gets its own SSH keys
Automatic Revocation
Keys automatically revoked when rental ends
Payment Security
Payment security measures:
Secure Tracking
Account balances tracked securely
Immutable History
Transaction history cannot be altered
Wallet Verification
All operations require wallet verification
Balance Checks
Balance verified before rental creation
Best Practices for Users
Never share your seed phrase
CapaCloud will never ask for it
Verify transactions before approving
Always check transaction details
Use hardware wallets for large amounts
Extra security for significant balances
Keep your wallet software updated
Latest security patches and features
Secure your SSH keys properly
Use proper file permissions (chmod 600)
Best Practices for Providers
Keep worker updated
Regularly update worker software
Monitor logs
Watch for suspicious activity
Use firewall rules
Restrict access appropriately
Rotate SSH keys
Regularly rotate SSH keys
Monitor system resources
Keep an eye on GPU health and system performance
Reporting Security Issues
If you discover a security vulnerability, please report it responsibly. Contact us through the Help & Support page.