Hello IOTA Forum

Public node API security

https://forum.helloiota.com/Topic8164.aspx

By shakeshar - 9 Jan 2018

Hi,
I'm looking for some kind of best practice when it comes to running a full node and a public API.
e.g allowing "addNeighbors" (https://iota.readme.io/v1.2.0/reference) doesn't seem like a good idea, so any threads or recommendations about this subject?
/Stefan
By RelooM - 11 Jan 2018

Hi shakeshar,

you should use REMOTE_LIMIT_API in your IRI configuration fiile.
There is a small chapter about it in the IRI Playbook.

Have a look at it. There are additional security messures that can strenthen the security of your node.

Greetings,
Alex
By shakeshar - 11 Jan 2018

Alexander Baese - 11 Jan 2018
Hi shakeshar,

you should use REMOTE_LIMIT_API in your IRI configuration fiile.
There is a small chapter about it in the IRI Playbook.

Have a look at it. There are additional security messures that can strenthen the security of your node.

Greetings,
Alex

sweet, thanks!