2FA #4624
Comments
|
I strongly support this feature. One of my nodes was compromised for months and I did not notice. I recently discovered this and change the password and remove the UI from being exposed to the internet. I thought the password was pretty complex but I guess not complexed enough. There are a lot of application development in Web3 competing with Web2 but I fear they lack focus on the security layer. Anything that involves assets or funds should have a secondary or third authentication method to protect them from intruders. And if the UI can't be protected with 2FA, perhaps it is worth moving the wallet address set function from the node's UI to https://mystnodes.com/ and secure it there. |
|
Put the node UI behind a firewall or in my case a CF tunnel where I need to authenticate. Do not expose the node UI port without a good random password or protection in place. |
would be nice to have a 2FA (email or auth.) for the NODE UI and / or Node Network page.
would sleep peacefully knowing that no one can access the nodes without the 2FA Codes (email or auth.)
The text was updated successfully, but these errors were encountered: