Comment on Google pays $250K for Linux vulnerability allowing guest VM escapes
nibbler@discuss.tchncs.de 1 day agoThe selfhosted guys are correct with that. Of course its not a magic pill, but it can help to minimize the attack surface immensely with little effort.
atzanteol@sh.itjust.works 1 day ago
See what I mean?
As if a proxy blindly passing traffic directly to a backend server “reduces attack surface” in any meaningful way. 🙄
nibbler@discuss.tchncs.de 1 day ago
Did you just add ‘blindly passing traffic’ to your statement? Did you read my comment about can help?
Move on, joker.
atzanteol@sh.itjust.works 1 day ago
Sorry - which part of your comment added anything of value? “can help to minimize the attack surface”? 99% of the time a proxy just passes traffic through. Unless you’re talking about a WAF which is a) a different thing and b) NOT what any home gamers are talking about when they recommend nginx, traefic, etc. to newbs.
nibbler@discuss.tchncs.de 1 day ago
Lol