zlacker

[return to "I read the federal government’s Zero-Trust Memo so you don’t have to"]
1. uncomp+ow[view] [source] 2022-01-27 17:33:44
>>EthanH+(OP)
> “Enterprise applications should be able to be used over the public internet.”

Isn’t exposing your internal domains and systems outside VPN-gated access a risk? My understanding is this means internaltool.faang.com should now be publicly accessible.

◧◩
2. enriqu+Dy[view] [source] 2022-01-27 17:44:01
>>uncomp+ow
As I understand it, this sentence says that the application should be safe even if it was exposed to the public internet, not that it needs to be exposed. It is a good practice to securize everything even if visible only internally. The "perimeter defense" given by a VPN can be a plus, but never the only line of defense.
◧◩◪
3. jaywal+qz[view] [source] 2022-01-27 17:47:56
>>enriqu+Dy
No, the memo pretty clearly says that VPNs need to go away.
◧◩◪◨
4. MattPa+OD[view] [source] 2022-01-27 18:08:14
>>jaywal+qz
It says that VPNs and other network tunnels should not be relied on.

Where does it say they should go away?

[go to top]