|
|
|
|
|
|
by snowstormsun
685 days ago
|
|
|
> First, you have to copy all production data. It’s expensive, and a reckless breach in privacy and security, but it’s doable. So, what does "doable" mean in this context? We unnecessarily increased the attack surface for production data and until today haven't suffered a data breach because of it? A staging env with actual prod data now needs be treated as a production environment. A system is only as secure as its weakest link, so an attacker will have an easier time getting into that "staging" environment where things are tested out, no? |
|
|
https://www.youtube.com/watch?v=kYdQuuLzg2A