zlacker

[return to "I read the federal government’s Zero-Trust Memo so you don’t have to"]
1. uncomp+ow[view] [source] 2022-01-27 17:33:44
>>EthanH+(OP)
> “Enterprise applications should be able to be used over the public internet.”

Isn’t exposing your internal domains and systems outside VPN-gated access a risk? My understanding is this means internaltool.faang.com should now be publicly accessible.

◧◩
2. rodger+cq1[view] [source] 2022-01-27 21:20:36
>>uncomp+ow
The thing is that over-focus on perimeter security is still a huge problem, and one reason that e.g. ransomware owns orgs with depressing regularity. There's nothing wrong with perimeter controls in and of themselves. But they become a substitute for actually security what's on the internal network, so once you've bypassed the perimeter, it's all too easy to roam at will.

The people over-relying on perimeter security are the folks buying a big sixties car and assuming that seatbelts and traction control are no substitute for chrome bumpers.

[go to top]