This concept is related to PAM. You often have to do ops on infra and need some DMZ to do the ops. I...

debarshri • yesterday at 3:32 PM • 1 reply • view on HN

This concept is related to PAM. You often have to do ops on infra and need some DMZ to do the ops. In regulated industry you have to record every operations done by the person and have to follow principle of least privilege. This what should happen in an ideal world.

Replies

embedding-shape • yesterday at 3:39 PM

> You often have to do ops on infra and need some DMZ to do the ops.

This makes sense, "bastion" hosts and similar things is fairly common too. What's not common is calling those "airgapped", because they're clearly not.

➕ show 2 replies

alt Hacker News

Replies