(blogs.cisco.com)

166 points rldjbpin | 1 comments | 03 Sep 25 08:18 UTC | HN request time: 0.199s | source

Show context

alexandru_m ◴[03 Sep 25 10:25 UTC] No.45114142[source]▶

Apparently, protecting the API is not planned: https://github.com/ollama/ollama/issues/849

For my own purposes I either restrict ollama's ports in the firewall, or I put some proxy in front of it that blocks access of some header with some predefined api key is not present. Kind of clunky, but it works.

replies(5): >>45114147 #>>45114943 #>>45114992 #>>45117832 #>>45120566 #

1. ozim ◴[03 Sep 25 21:23 UTC] No.45120566[source]▶

>>45114142 #

I don’t think proxy is clunky. I would expect that should be quite fine solution.

Problem is people don’t know that it’s a good solution.

↑

Finding thousands of exposed Ollama instances using Shodan