# Security Practices

<!-- WARNING: THIS FILE WAS AUTOGENERATED! DO NOT EDIT! -->

## Raw IP vulnerability issue

![](/img/1557285608347.png)

---

### Do not use raw IP address as the web domain

In order to provide privacy and data integrity between the client and
our server, we adapted the SSL/TLS protocol to secure the point-to-point
communications, and we perform hostname verification during the
communications. Everything that your app communicates with our
server is completely safe. **However, our server cannot sign and verify
SSL/TLS certificates for a raw IP address. You will put yourself at risk
if you use a raw IP address as the web domain.**

To learn more about the SSL/TLS protocol, visit these links.

-   https://insights.sei.cmu.edu/blog/the-risks-of-ssl-inspection/
-   https://owasp.org/www-community/controls/Certificate_and_Public_Key_Pinning
-   https://support.globalsign.com/ssl/general-ssl/securing-public-ip-address-ssl-certificates

---