Security info and prevention measures

openaspace · February 10, 2020, 11:14pm

Monitoring the connections to the storj instance I have found some IP address that are present in the some abuse IP website database that trying to connect to the open Port of storj.
Now I can’t see if this IP’s are store j nodes… But what about software security of storj?

For other my web applications I limit connections using Geo IP with a firewall and ips.

What security measures are used in the docker storj software?

Thank you.

Alexey · February 11, 2020, 8:24am

It used a digital signature to communicate with peers. I don’t see a security problem here.
If peer doesn’t have a valid signature, it will be rejected.
The only problem if you used a DMZ instead of port forwarding and/or have a firewall disabled