Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
S
S
Stepgor2020-07-31 19:44:57
Node.js
Stepgor, 2020-07-31 19:44:57

File access on Ubuntu?

I am new to ubuntu and have a question.
1. I heard that there are vaults for passwords, apikeys, etc. But I have not seen a single example of the interaction of such a storage with nodejs. Let's say my server was hacked and an attacker can simply open a nodejs script, write console.log's and get all the information, so you also need to run nodejs with pm2 with the necessary access rights.
I would like to read about protection on ubuntu specifically with nodejs.
I thought about loading the pm2-config.json file, which I will run with all the necessary arguments and then delete it from the server (probably not working and inadequate approach).

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
K
ky0, 2020-07-31
@Stepgor

If the server is hacked, the hacker will either get all your keys directly from the unencrypted storage, or intercept at the moment of transfer from the encrypted storage to the application (more difficult), or from the process memory (even more difficult, but quite feasible).
The method of protection in your case is to prevent hacking, and not to pile up unnecessary entities.

Similar questions
M
mmmq2021-07-13 19:09:52
Multithreading in Nodejs? 1Reply
F
First name Last name2015-11-11 14:34:39
SetTimeout not working in nodeJs, why? 1Reply
V
Vladislav2021-07-15 01:24:33
What is my bot error and how to fix telegraf? 0Reply
F
First name Last name2015-11-12 18:59:34
Sails JS: what is the unique validator for? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question