Post AHi0K3LSTYYjsj89ia by Ent@infosec.exchange
(DIR) More posts by Ent@infosec.exchange
(DIR) Post #AHi0K2qyIuAmMAroCO by thegibson@hackers.town
2022-03-23T14:33:37Z
0 likes, 0 repeats
Okta is what happens when you go zero-trust... attackers just go for the bigger targets.
(DIR) Post #AHi0K3LSTYYjsj89ia by Ent@infosec.exchange
2022-03-23T15:39:21Z
0 likes, 0 repeats
@TheGibsonCentralized trust isn't zero trust...
(DIR) Post #AHi7hnaHQRJZd4Kix6 by adam@hax0rbana.social
2022-03-23T17:02:06Z
1 likes, 0 repeats
@Jetengineweasel @erosdiscordia @thegibson I was only kinda a cipherpunk in the 90s (just because I wasn't exposed to info about it) but it's still mind boggling to see the mainstream just now discovering the benefits of zero trust and talking about them like this hasn't been around for a quarter century. But, hey, wecome abord, I say.Zero trust has always seemed like just applying the least privilege principle to architectures to me. 🤷♂️
(DIR) Post #AHi8S4CjxoC8UsNw4u by adam@hax0rbana.social
2022-03-23T17:10:28Z
0 likes, 0 repeats
@Jetengineweasel @erosdiscordia @thegibson There are certainly things that zero trust makes harder. Like making sure all accounts are disable when someone leaves the organization, making sure all instances have multi-factor authentication turned on, and so forth. They are tractable problems, but it takes a good deal of effort to get confidence that these issues are solved.I still think zero trust is worth it on account of minimizing the damage of errors
(DIR) Post #AHiB9OZoIQhK2YxqJE by thegibson@hackers.town
2022-03-23T17:40:41Z
0 likes, 0 repeats
@adam @Jetengineweasel @erosdiscordia Sparkling RBAC
(DIR) Post #AHiBC3qVpR68c930ka by thegibson@hackers.town
2022-03-23T17:41:08Z
0 likes, 0 repeats
@adam @Jetengineweasel @erosdiscordia The concept is good... but vendors need to stop acting like they have it.