Hacker News new | ask | show | jobs
by Corrado 1262 days ago
This is a good reminder to always follow least-permission best practices.
1 comments
danw1979 1262 days ago
I’d add drift detection on everything IAM / SCP / Org to this list too.

A session token with only a few minutes validity can be enough for someone to make their access permanent.

link