Email or username:

Password:

Forgot your password?
Kevin's posts Post Back to profile
Top-level
Tom Bellin :picardfacepalm:

@GossiTheDog No critical infrastructure should run 3rd party services that perform unsupervised automatic remote updates. The OS is irrelevant.

Also, not every server needs to have ends point protection. (For example, the kiosk displaying arrivals and departures.)

20 July at 0:08 | Wall-to-wall | Open on hachyderm.io
8 comments
Kevin Beaumont

@tob almost all cyber insurance and regulatory standards say the exact opposite of your toot.

20 July at 0:10 | Open on cyberplace.social
DELETED

@tob @GossiTheDog
Your kiosk most certainly requires endpoint protection. In fact, every node on your network needs it in one form or another.

20 July at 0:28 | Open on social.stlouist.com
Tom Bellin :picardfacepalm:

@ProfessorGumby @GossiTheDog What is the operational risk of a compromised arrivals kiosk?

If an unauthorized user can gain critical access to your systems via your arrivals kiosk, your problem isn't going to be fixed by running a kernel level endpoint protection service.

20 July at 0:39 | Open on hachyderm.io
DELETED

@tob @GossiTheDog if a malicious actor sets up camp on an unprotected endpoint, they can use that as a base of operations inside your enclave completely out of your visibility. From there they can do reconnaissance, data collection, exfiltration, etc. They can't do that from an appropriately protected endpoint.

20 July at 2:30 | Open on social.stlouist.com
Tom Bellin :picardfacepalm:

@ProfessorGumby @GossiTheDog We're just going to have to disagree.

[Waves vaguely] There are obvious problems with your model of "maximum security on everything" that you don't seem to be grappling with.

20 July at 2:38 | Open on hachyderm.io
DELETED

@tob @GossiTheDog okay just lock *some* of the doors of your house tonight

20 July at 2:40 | Open on social.stlouist.com
Go Up