Jan. 10th, 2009 @ 06:50 pm
There have been a number of recent reports of break-ins to popular Web2.0 sites. These security measures/suggestions are something I've been talking about for some time now. Twitter broke rule one. Do you?|
"SEGMENTED INTERFACES. For the love of all things holy, do not, DO NOT, DO NOT, DO NOT expose management interfaces over the internet. ..."
Update: More information http://www.codinghorror.com/blog/archives/001206.html
There are way too many websites that do this.
Especially ones that use Java/Tomcat.
Its really not all that hard to create a separate maintenance instance of these freaking appserver piles of shit, but nobody ever does... its all stupid.
|Top of Page
||Powered by LiveJournal.com|