Web Development

General discussion

Which are the best security practices for NodeJS?

By kosha1 ·
Eradicating Brute force attacks and Preventing data leak are the best Node.js security practices. What's your suggestions?

Promotional url removed by moderator.
Thread display: Collapse - | Expand +

All Comments

Collapse -

The recurring theme here.

by rproffitt Moderator In reply to Which are the best securi ...

Is to reduce the exposure and attack surfaces. The less you expose the less you have to protect. NodeJS itself is not the problem here. Definition of the problem is first, then we can look at the system under inspection.

For example there would be little data security if you allowed Facebook to interact and monitor the user interaction. But others may need such for monetization. Again, you must define what security you want to talk about and you failed to detail that in this discussion.

Collapse -

best security practices for NodeJS?

by bracknelsonforume In reply to Which are the best securi ...

It also the security practice for NodeJS:
Implement strong authentication.
Validate user input to limit SQL injections.

Collapse -

Best Security Practices For Node.JS

by sparity In reply to Which are the best securi ...

Best Node.js Security Practices:
1. Validate user input to limit SQL injections and XSS attacks.
2. Implement strong authentication.
3. Avoid errors that reveal too much.
4. Run automatic vulnerability scanning.
5. Avoid data leaks.
6. Set up logging and monitoring.
7. Use security linters.
8. Avoid secrets in config files.

Related Discussions

Related Forums