|
|
|
|
|
|
by noir_lord
1924 days ago
|
|
|
> If you have a machine on the switch, you know you've captured all the packets that were in-flight. Same applies if someone takes over the firewall, machine on the last hop before they hit port 22. In a world where stuff like this https://www.helpnetsecurity.com/2020/09/01/zero-day-cisco-en... routinely happens there is a benefit to forgoing all of that when it makes sense. |
|
|