khoj
khoj copied to clipboard
Web UI is not protected with authentication
Jupyter notebook generates a token and uses it to authenticate browser session, so only the user who started the web server process can use the web UI.
With khoj everyone on the same machine with access to http://127.0.0.1:42110/ can change settings to point to index any files (e.g. the whole home directory) and then search it.