|
|
|
|
|
|
by debarshri
277 days ago
|
|
|
Audits and bad practice are second-order things. My argument is that generally everyone has access to all the logs. If you restrict the access and add guardrails around it, you can minimize the surface area and also ways it can be leaked out. If you take a defensive approach towards, you have to assume that some secret is getting logged somewhere. The goal then becomes a way to reduce the surface area or blast radius of this possible leakage. |
|
|