Running OpenClaw myself. The default bind-to-0.0.0.0 is wild. I have been hardening mine - firewall rules, auth tokens, no exposed ports. But most people just docker-compose up and forget. The Moltbook virality made it worse - everyone rushing to set up without reading the security docs. Would love to see a hardening checklist from you.