|
|
|
|
|
|
by noinsight
429 days ago
|
|
|
> allow better network management Yeah, this would definitely block that. DNS-based (hostname) allowlisting is just starting to hit the market (see: Microsoft's "Zero Trust DNS" [1]) and this would kill that. Even traditional proxy-based access control is neutered by this and the nice thing about that is that it can be done without TLS interception. If you're left with only path-based rules you're back to TLS interception if you want to control network access. [1] https://techcommunity.microsoft.com/blog/networkingblog/anno... |
|
|