Y
Hacker News
new
|
ask
|
show
|
jobs
by
rrix2
250 days ago
a static site is served by a webserver, but the software to generate it runs elsewhere.
1 comments
manmal
250 days ago
Yes. And a web server has an attack surface, no?
link
mikepurvis
250 days ago
I think it’s reasonable to understand that nginx/caddy serving static files (or better yet a public s3 bucket doing so) is way, way less of a risk than a dynamic application.
link
manmal
250 days ago
Of course, that’s true for those web servers. If kept up to date. If not, the attack surface is actually huge because exploits are well known.
link
63stack
249 days ago
What are these huge attack surfaces that you are talking about? Any links?
link