Layers of security measures
Protection recommendations for different deployment methods:
- local deployment: Configure firewall rules to restrict LAN access to port 3000, suggest using VPN to access the management interface, and suggest using the supporting redplanet-encrypt plug-in for encrypting memory data.
- Cloud Service Protection: Enable two-factor authentication, API_TOKEN needs to be changed every 90 days, and sensitive content nodes can be set to view passwords
- data transmission: Enforce HTTPS for local communication with the cloud, add SSL_CERT_PATH in .env to specify the path of the certificate
- <strong]
Regularly audit the abnormal access records in logs, and reset the key immediately when multiple authentication failures are found. It is recommended to adopt the hybrid mode of "local storage + manual synchronization" for business-critical data.
This answer comes from the articleCore: a tool for personalized memory storage for large modelsThe
May not be reproduced without permission:AI productivity tools " How can I prevent sensitive information from being leaked in Core?
English 
简体中文 
日本語 
Deutsch 
Português do Brasil