Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
kerng
on March 15, 2020
|
parent
|
context
|
favorite
| on:
Zero Trust Networks
Internet exposed bastion hosts to production, that have no IP whitelisting are not the best idea, unfortunately not uncommon nowadays.
closeparen
on March 15, 2020
|
next
[–]
That's what a VPN server is.
kerng
on March 16, 2020
|
parent
|
next
[–]
Organizations that have high value assets would deploy multiple layers of these, not just one, basically depending on value of assets.
closeparen
on March 16, 2020
|
root
|
parent
|
next
[–]
You're gonna get some pretty fun pathological networking behaviors tunneling VPNs on VPNs.
xxpor
on March 16, 2020
|
prev
[–]
You need always need multiple layers of security. Using the network itself as one was never necessary, although it has been convenient.
Nowadays U2F based 2fa authentication and need to know based authorization are usually superior.
kerng
on March 16, 2020
|
parent
[–]
Applying both is better, then just depending on one of them.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
