Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Krippenreiter Profile picture
@krippenreiter
Nov 25, 2022 11 tweets 7 min read Read on X
Scrolly
[1/11] "Token Allowances" sind integraler Bestandteil einer jeden #DeFi Applikation (Swap/#DEX), da mit der erteilten Freigabe, in deinem Namen Coins & Tokens, bis zu einer bestimmten Obergrenze hin, ausgegeben werden können.

Eine Anleitung und das Security 1 x 1 in einem 🧵
[2/11] Zuallererst muss man verstehen, dass eine "Allowance" keine Private-Keys klaut.

Vergleichbar mit einer Vollmacht (Allowance), ermächtigt (Approve TX) eine Person (Wallet) eine dApp als Bevollmächtigter (SmartC.) wirksam zu handeln & erhält dafür die Vertretungsmacht V o l l m a c h t Source: h...
[3/11] Eine Eigenschaft dieser Vertretungsmacht ist es im Namen des Wallet-Inhabers die vollständige Kontrolle der "approve(ten)" #Tokens zu übernehmen, um diese im Sinne des Smart Contracts zu #swapen/#traden, zu #staken oder zu #delegieren.

⚠️ Klingt gefährlich? Ist es auch 😅 ALLOWANCE bit2me ACADEMY So...
[4/11] Grundsätzlich werden die "Approves" meist mit der Obergrenze "Unlimited" signiert. Erteile ich dem SmartC. nun die #Allowance eine unlimit. Anzahl von $WSGB zu verwalten, möchte aber eig. nur 1000 $WSGB in den SmartC. legen, könnte ein Exploit die $WSGB vollst. leer räumen Don't let him steal your So...
[5/11] Dazu kommt, dass die #Allowance nicht auto. "#revoked" wird & im Hintergrund ein "vergessenes" Sicherheitsrisiko darstellen kann, wenn diese nicht limitiert o. besser gleich ganz widerrufen wird.

Die einzige Abhilfe für $SGB war es sonst, die Wallet gleich ganz aufzugeben
[6/11] Eine dieser "aufgegebenen #Wallets" werde ich nun mithilfe von @ftso_eu wiederbeleben ❤️🥳

Dabei handelt es sich um eine Allowance für einen SmartC. im @flrfinance Ökosystem, welcher "theoretisch" in der Lage wäre meine $CAND Tokens, im Falle eines Exploits, zu stehlen. Source: https://flr.finance/
[7/11] Schritt 1⃣ — $SGB Wallet mit MM verbinden Source: @krippenreiter
[8/11] Schritt 2⃣ — evmallowance.com öffnen EVMALLOWANCE Source: https:...
[9/11] Schritt 3⃣ — Eine Error Meldung bei Vivaldi und Brave erhalten 😥 Ooopsi! Source: https://evm...
[10/11] Schritt 4⃣ — Neu probieren mit Chrome, nicht aufgeben und die Allowance revoken (Auf 0 limitieren) Source: @krippenreiter MM
[11/11] Schritt 5⃣ — @ftso_eu bei Twitter folgen und sich bedanken 🥳❤️
(Optional) Schritt 6⃣ — @krippenreiter folgen 😉 Source: https://ftso.eu/

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Krippenreiter

Krippenreiter Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @krippenreiter

Krippenreiter Profile picture
Nov 6, 2025
[1/🧵] @Ripple Swell 2025 just happened, and an excessive number of news articles and press releases were published. 🥳

In case you've touched grass the last few days, here's a complete summary of all the official news you've missed.

It's happening on XRP. 👇 Source: https://ripple.com/events/swell/
[2/13] — Hidden Road / Ripple Prime —

🗓️ Date: Nov 03, 2025

Ripple Prime now offers spot prime brokerage services for digital assets to institutional clients based in the US. (Including XRP and RLUSD)

Clients can now:
🔸 Execute OTC digital asset spot transactions. Source: https://ripple.com/ripple-press/ripple-launches-digital-asset-spot-prime-brokerage-for-the-united-states-market/
[3/13] — RLUSD crosses $1B —

🗓️ Date: Nov 03, 2025

In about a year, the most trusted stablecoin for institutions on the XRP Ledger reaches a market cap of ...

🔸 $1,000,000,000

This achievement puts RLUSD in 11th place among all existing stablecoins. Source: https://x.com/Ripple/status/1985384072676266009
Read 14 tweets
Krippenreiter Profile picture
Sep 16, 2025
[1/🧵] Crashcourse XRP Ledger Permissioned DEX!

With the introduction of credentials, permissioned domains and permissioned DEXs the XRPL will evolve into a completely new type of beast!

No tech depth ahead, just the basics. 👇 Source: @krippenreiter
[2/21] — The Identity Tech Stack —

For pDEXs to exist and work as intended, three different features need to be active on the XRP Ledger:

🔸 (optional) DID ✅
🔸 Credentials ✅
🔸 Permissioned Domains ⏸️
🔸 Permissioned DEX ⏸️ Source: @krippenreiter
[3/21] — 1⃣ TL;DR —

The TL;DR is that pDomains are restricted environments on the XRPL that let users with permission use certain functions within the domain, like a DEX, in case the user owns the correct credentials. 🧐

Too much jargon, I know. 😅 Source: https://xrpl.org/docs/concepts/tokens/decentralized-exchange/permissioned-dexes#key-roles-in-a-permissioned-dex
Read 22 tweets
Krippenreiter Profile picture
Sep 12, 2025
[1/🧵] The bullrun seems to be just around the corner, and everyone is teasing us with yield and XRPFi protocols. 🧐

Regardless of whether you decide to hold or sell...

Let's take a look at "Lending" and check if it's worth it. 👇 Source: https://finematics.com/lending-and-borrowing-in-defi-explained/
[2/14] — 1⃣ Money Markets —

Before we do just that, let's quickly clarify a specific word first.

Behind the terms "Lending" and "Borrowing" actually hides another term that you will see from time to time:

🔸 Money Markets Source: https://chain.link/education-hub/decentralized-money-markets
[3/14] — 2⃣ Money Markets —

Besides AMMs, lending is currently the most important pillar for on-chain DeFi, as it removes the middleman in the pooling, management, and lending of funds.

The goal? 🤨

Positive yield or in other words, interest on the liquidity you provide. Source: https://www.investopedia.com/terms/i/interest.asp
Read 15 tweets
Krippenreiter Profile picture
Sep 8, 2025
[1/🧵] A MASSIVE attack on the JavaScript ecosystem is currently underway. ☹️

Since JavaScript is at the heart of what we use every day to browse the internet, you MUST be extra vigilant.

Let's take a look at a possible solution for the XRP ecosystem. 👇🧵 Source: https://xrplfirewall.com
[2/13] — 1⃣ First things first —

Although the entire JavaScript ecosystem is at risk, the malware appears to be targeting only a few blockchain ecosystems, based on the addresses it uses to steal funds:

‼️ At risk 👇 Source: https://jdstaerk.substack.com/p/we-just-found-malicious-code-in-the
[3/13] — 2⃣ First things first —

The reason this is such a big deal is because of the sheer volume of weekly downloads of the maliciously patched packages. Source: https://jdstaerk.substack.com/p/we-just-found-malicious-code-in-the
Read 14 tweets
Krippenreiter Profile picture
Jul 26, 2025
[1/🧵] You've probably heard about new yield opportunities with XRP that promise a return of around 20% APY. 🧐

How much truth is there to this, and what happens if you actually connect to @moremarketsxyz and deposit funds? 👇
[2/14] — 1⃣ First things first —

👉 I want you to repeat after me:

"I will not deposit all my XRP into completely new DeFi protocols right after their launch, no matter the yield" Source: @krippenreiter
[3/14] — 2⃣ First things first —

When you join any DeFi protocol, start with very small amounts (e.g., 1 XRP) to get a feel for how things work, and try to regularly withdraw everything to test whether you can realize your profits with the protocol or not. 👍 Source: https://app.moremarkets.xyz
Read 15 tweets
Krippenreiter Profile picture
Jul 7, 2025
[1/🧵] What's still upcoming and in the pipeline for the XRP Ledger? 🧐

My attempt to summarize what the brilliant @aanchalmalhotre "casually" laid out in a 25-minute talk at XRPL Apex this year. 👇 Source: https://www.youtube.com/watch?v=UzbHAbBtLXQ
[2/15] — 1⃣ Key-Challenges —

Privacy and compliance are at odds with each other, and balance is key.

A lot of what the TradFi world is used to and expects still doesn't exist or is purposefully different in blockchains, like transparent transactions or low confidentiality. Source: https://www.youtube.com/watch?v=UzbHAbBtLXQ
[3/15] — 2⃣ Key-Challenges —

Institutions also expect their on-chain operations, aka transactions, to be highly customizable and controllable because of factors like internal risk management.

👉 They expect the XRPL to be programmable for their dedicated policies. Source: https://www.youtube.com/watch?v=UzbHAbBtLXQ
Read 16 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us!

Send Email!

:(