I get the impression cloudstack was really designed for internal clouds. Does anyone have recommendations for securing a publicly facing install?
I saw recently there was a patch for rate limiting to mitigate some attacks and we can have some network devices do some basic things in front of the UI/API like ssl etc.
