Email or username:

Password:

Forgot your password?
Top-level
Tom Bellin :picardfacepalm:

@GossiTheDog No critical infrastructure should run 3rd party services that perform unsupervised automatic remote updates. The OS is irrelevant.

Also, not every server needs to have ends point protection. (For example, the kiosk displaying arrivals and departures.)

8 comments
Kevin Beaumont

@tob almost all cyber insurance and regulatory standards say the exact opposite of your toot.

DELETED

@tob @GossiTheDog
Your kiosk most certainly requires endpoint protection. In fact, every node on your network needs it in one form or another.

Tom Bellin :picardfacepalm:

@ProfessorGumby @GossiTheDog What is the operational risk of a compromised arrivals kiosk?

If an unauthorized user can gain critical access to your systems via your arrivals kiosk, your problem isn't going to be fixed by running a kernel level endpoint protection service.

DELETED

@tob @GossiTheDog if a malicious actor sets up camp on an unprotected endpoint, they can use that as a base of operations inside your enclave completely out of your visibility. From there they can do reconnaissance, data collection, exfiltration, etc. They can't do that from an appropriately protected endpoint.

Tom Bellin :picardfacepalm:

@ProfessorGumby @GossiTheDog We're just going to have to disagree.

[Waves vaguely] There are obvious problems with your model of "maximum security on everything" that you don't seem to be grappling with.

DELETED

@tob @GossiTheDog okay just lock *some* of the doors of your house tonight

Go Up