Via renaming of the original account I created my personal account. But exactly because of the thinking of @TotallyInformation I now created a separate user, which just runs Node-RED. I became kind of fluent with Linux, so I now also like some nerdy stuff there 
And this new user needed to support this as well.
And the original anxiety, which sparked my whole topic is exactly, what you described here: Happy New Year (well maybe for some) ... A security warning Of course I will also take additional measures, when ever making Node-RED accessible from the internet. But I like multiple safety nets, especially for such a mighty thing as Node-RED, which I have not yet understood and therefore cannot assess the risk and potential mitigation strategies.
