|
|
|
|
|
|
by dx034
1460 days ago
|
|
|
> Real people directly in your infra is probably best avoided. But I've yet to see a company where no one ever needs to ssh into a server. Using these ACLs to give a contractor access (and even visibility) to only the servers they're supposed to see is probably a big advantage over OpenVPN, where a contractor automatically becomes part of the inner network and can theoretically see all machines? |
|
|