On 05/05/2011 06:57 PM, Luke S Crawford wrote:
> but yeah. I like to avoid jelly donut security as much as practical. > For me, the "trusted network" is something I can almost entirely get rid of. Practical is a matter of definition and in my book it is always a product of usefulness and price. Do you really want to spend any time and resources (read: money) to run VPN from the load balancer to the frontend server just because its easy(er) when most of the breaches happen by users picking up malware? Sort out the low hanging fruit first. _______________________________________________ Tech mailing list Tech@lists.lopsa.org https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
