with properly limited access the breach is much, much less likely, and an update bringing down an important service at the bad moment does not need to be a thing
I don’t disagree with any of that, I’m merely making a different value judgement - namely that a breach that could’ve been prevented by automatic updates is worse than an outage caused by the same.
I will however make this choice more explicit in the articles and outline the risks.
WhyJiffie@sh.itjust.works 5 days ago
ikidd@lemmy.world 4 days ago
Don’t expose anything outside of the tailnet and 99% of the potential problems are gone. Noobs should not expose services across a firewall. Period.