>From that day forward and for years and years and years… I never open a port to a back-end system again.
nice. not just that you changed behavior but that you did it in a 'zero trust' manner (not the marketing definition of zero trust), e.g. not creating other problems of bastions, vpns, key management, etc.
I would for sure know, which dev engineer has access to which resource over a network that is dark and can't be hacked via IPs / ports that are listening for traffic.
5 comments
[ 4.2 ms ] story [ 22.2 ms ] threadnice. not just that you changed behavior but that you did it in a 'zero trust' manner (not the marketing definition of zero trust), e.g. not creating other problems of bastions, vpns, key management, etc.