Security Hardening Suggestions
- MindStudio Insight is a development tool. You are advised to start it locally instead of using it through X protocol forwarding.
- MindStudio Insight must be used as a whole package. Do not perform secondary development or call internal APIs.
- MindStudio Insight is a local tool and is secure by default. If you need to enable the port, be aware of the security risks of remote communication.
- For security purposes, do not start MindStudio Insight as the root user on Linux and macOS. If you need to start MindStudio Insight as the root user, run the./MindStudio-Insight --allow-root command.
- When using MindStudio Insight in Linux or Unix, ensure that umask of the current user is set to 0027 or stricter to ensure that the generated files (such as files generated after pip dependency installation) meet the minimum permission security requirements.
Parent topic: Appendixes