5 comments

[ 4.2 ms ] story [ 22.2 ms ] thread
We've all taken that risk at some point. Glad you found a solution!
Awesome solution addressing something very relevant!
>From that day forward and for years and years and years… I never open a port to a back-end system again.

nice. not just that you changed behavior but that you did it in a 'zero trust' manner (not the marketing definition of zero trust), e.g. not creating other problems of bastions, vpns, key management, etc.

I would for sure know, which dev engineer has access to which resource over a network that is dark and can't be hacked via IPs / ports that are listening for traffic.