All the cloud services I’ve used had virtual network firewalls for internal traffic. Security Groups for AWS, Cloud Firewall for GCP, etc. That’s typically how lateral traffic gets managed. Defense in depth is good, but as I said I haven’t used host firewalls in forever, and we get audited for security certificates every year, and no auditor has asked about them that I recall.
- 0 Posts
- 4 Comments
- hypna@lemmy.worldtoTechnology@lemmy.world•Linux Firewalls: How to Actually Secure a Cloud Server (iptables, nftables, firewalld, ufw)English32·1 day ago
- hypna@lemmy.worldtoTechnology@lemmy.world•Linux Firewalls: How to Actually Secure a Cloud Server (iptables, nftables, firewalld, ufw)English311·1 day ago
These firewall tools are interesting, but I honestly haven’t needed them in years. The premise is a little out of date. Who puts cloud servers on the open internet these days? Everything I see uses a public load balancer and a WAF service.
- hypna@lemmy.worldtopolitics @lemmy.world•Mitch McConnell mystery deepens as health questions remain unanswered6·2 days ago
What’s the advantage of pretending McConnell isn’t dead or incapacitated? The Kentucky legislature already took the power to appoint vacancies from the Governor when a Democrat won. Who wants to delay or avoid a special election? I don’t get it.
Maybe that’s the context. All of my cloud hosting work is very large corporate systems in the big three clouds. You’re talking about Hostinger or Scalahosting type services, yes?