When running a private ipfs node with a private swarm key in the cloud, is it reasonably safe to leave port 4001 open to the internet?
We want to use ipfs to redistribute assets within our company.
We have already created a private ipfs network spanning a local machine and some android devices (i386 as well as arm). Other than some android issues, it was very straightforward.
It would be very convenient to have a cloud-based node that is reachable over the internet. However, I am a bit unsure about the security implications.
Can somebody point me to some documentation describing how the swarm key is used? If it is very insecure, we could always do this via an ssh tunnel. But I would like to avoid that.