According to TechFlow, on October 17, SlowMist Yuxian expressed its views on the previous Radiant Capital security incident, believing that the current smart contracts, cross-chain bridges and L2 solutions generally have the problem of excessive permissions for the project party. "The project party owner has too much permissions. If he wants to do evil, he can upgrade a contract with a backdoor and take away the user's funds. This problem of excessive permissions is too common in various smart contracts, bridges, L2 and other protocols, so that almost everyone chooses to be numb." In this regard, Shenyu (@bitfish1) said, "When it comes to sensitive permissions, especially the ability to use funds, why is there no industry standard practice of time lock (delayed execution mechanism) to ensure security?"
See original
Disclaimer: Includes third-party opinions. No financial advice. May include sponsored content. See T&Cs.
Replies 0