Well. Misconfiguration happens, and sadly, quite often.
Comment on Keep Tier-One Applications Out of Virtual Environments
CameronDev@programming.dev 3 months ago
If the hypervisor or any of its components are exposed to the Internet
Lemme stop you right there, wtf are you doing exposing that to the internet…
umami_wasbi@lemmy.ml 3 months ago
CameronDev@programming.dev 3 months ago
Sure, but the author makes it sounds like thats its their standard way of doing things, which is insane.
And if you do have a misconfiguration, the rational thing is to fix that, not dump the entire platform.
terminhell@lemmy.world 3 months ago
True horrors
Like, that’s what vpns and jump boxes are for at the very least.
CameronDev@programming.dev 3 months ago
Wanna bet they expose SSH on port 22 to the internet on their “critical” servers? 🤣
terminhell@lemmy.world 3 months ago
Ive been tempted to setup a Honeypot like this lol
CameronDev@programming.dev 3 months ago
You’ll definitely get lots of login attempts. I used to have a port 22 ssh, hundreds of attempts per day.
Would be interesting to see what post login behavior was.
redfox@infosec.pub 3 months ago
Lol, even in 2024 with free VPN/overlay solutions…they just won’t stop public Internet exposure of control plane things…