Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Almost every server sits on the internet and has one or two (sometimes a couple more) ports open listening for their apps internet traffic.

What the traffic is seems irrelevant to 99.99% of servers out there, imo. Yes there's some questions of what deployments look like and what capabilities operators have but those are details outside the general concern of being safely online. IMO.



> Almost every server sits on the internet ...

Nope. Not by a long shot.

> What the traffic is seems irrelevant to 99.99% of servers out there, imo. Yes there's some questions of what deployments look like and what capabilities operators have but those are details outside the general concern of being safely online. IMO.

The following vulnerabilities listing just for the week of 2023-07-17 prove otherwise:

https://www.cisa.gov/news-events/bulletins/sb23-205


> Almost every server sits on the internet

I'm going to counter that the overwhelming majority of hosts in existence do not, in fact, "sit on the internet".


Ideally the traffic would be siphoned thru a load balancer/reverse proxy of some kind rather than the dest service endpoint/port being directly exposed to the internet


Sure. But everyone else here was talking about servers. Which, you know,... serve. Are in some way on the internet.


Host/Servers are in the above case the same thing. And servers can "serve" also on local lan, no internet required




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: