StarkWare Eco Chief: Fractal Bitcoin May Have Security Issues
In a post on X, StarkWare's Ecodirector said that Fractal Bitcoin may have security issues.
RPC credentials are hard-coded, not configurable via environment variables, and the RPC server is publicly exposed and vulnerable to attack;
Allowing RPC connections from any IP address is also dangerous, exposing users' nodes to potential attacks from anywhere;
Certain settings that allow ZeroMQ connections from any IP pose a security risk; removing the limit on the number of connections can lead to resource exhaustion;
Official GitHub organisations or repositories are difficult to identify, etc.
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.