As a Cardano Stakepool Operator who followed coincashew guide, i have to be sure that my nodes have a robust security, on top of being correctly configured. That is why i decided to work on a tool that would help me check if everything is fine on my servers 🙂
I made a script that runs several checks like :
- Environnement Variables
- Systemd cardano-node file verification and parsing
- Cardano startup script verification and parsing
- Node operation mode (Block Producer ? Relay ?)
- Topology mode (p2p enabled ?)
- Topology configuration
- Keys
- SSHD hardening
- Null passwords check
- key services running
- Firewalling rules extract
This script can help any Cardano SPO that’d like to check if their cardano node are secured. It’s designed for a coincashew installation, but it could be adapted to suit any other kind of installation.
It’s still a work in progress and i intend to add more features and checkpoints to it ! You can check it out on my github repository
Enjoy 🙂