Hacker News new | ask | show | jobs
by SahAssar 511 days ago
> You aren’t supposed to have it on a public subnet.

That's an incredibly bad assumption. To have defaults assume that you are on a protected network (what does that even mean? like what permissions are assumed just because you are on the same network? admin?) is just bad practice.
1 comments
ceejayoz 511 days ago
Private networking for internal things like databases has been the standard best practice for a long, long time.
link
SahAssar 510 days ago
Safe default configuration has been the standard practice for even longer.
link
ceejayoz 510 days ago
I’m all for both.
link