Random Thread - Anything Goes
-
-
The things that make you scream in your sleep!
-
-
@Texkonc said in Random Thread - Anything Goes:
The things that make you scream in your sleep!
I discovered a while back our previous database admin did that too all the pc's that had his software on them that he managed:(
-
@jmoore said in Random Thread - Anything Goes:
@Texkonc said in Random Thread - Anything Goes:
The things that make you scream in your sleep!
I discovered a while back our previous database admin did that too all the pc's that had his software on them that he managed:(
That person deserves to be in the 7th circle of hell.
-
@Dashrender lol yep
-
Do internal Web Servers need to be on HTTPS??
e.g. Zabbix
We only access it from inside of the company. If i'm out and about i VPN in and then access the server
-
@hobbit666 said in Random Thread - Anything Goes:
Do internal Web Servers need to be on HTTPS??
e.g. Zabbix
We only access it from inside of the company. If i'm out and about i VPN in and then access the server
That depends - do you worry about network level security? if so, then yes, HTTPS, if not, the skip it.
-
@hobbit666 said in Random Thread - Anything Goes:
Do internal Web Servers need to be on HTTPS??
e.g. Zabbix
We only access it from inside of the company. If i'm out and about i VPN in and then access the server
NEED TO BE? No
SHOULD BE? Yes
Any good reason to avoid it? No.
-
@scottalanmiller said in Random Thread - Anything Goes:
@hobbit666 said in Random Thread - Anything Goes:
Do internal Web Servers need to be on HTTPS??
e.g. Zabbix
We only access it from inside of the company. If i'm out and about i VPN in and then access the server
NEED TO BE? No
SHOULD BE? Yes
Any good reason to avoid it? No.
This was going to my answer. It's so easy to setup HTTPS that it makes no sense not to.
-
@coliver said in Random Thread - Anything Goes:
@scottalanmiller said in Random Thread - Anything Goes:
@hobbit666 said in Random Thread - Anything Goes:
Do internal Web Servers need to be on HTTPS??
e.g. Zabbix
We only access it from inside of the company. If i'm out and about i VPN in and then access the server
NEED TO BE? No
SHOULD BE? Yes
Any good reason to avoid it? No.
This was going to my answer. It's so easy to setup HTTPS that it makes no sense not to.
It's nearly a default. Okay not quite. but basically.
-
-
@coliver said in Random Thread - Anything Goes:
This was going to my answer. It's so easy to setup HTTPS that it makes no sense not to.
Ok so next level. Use a Certificate from an internal CA? As you can't use something like Letsencrypt
Or just use HTTPS
-
@hobbit666 said in Random Thread - Anything Goes:
@coliver said in Random Thread - Anything Goes:
This was going to my answer. It's so easy to setup HTTPS that it makes no sense not to.
Ok so next level. Use a Certificate from an internal CA? As you can't use something like Letsencrypt
Or just use HTTPS
Why wouldn't Let'sEncrypt work? Do these systems not have access to the internet at all?
-
@coliver said in Random Thread - Anything Goes:
@hobbit666 said in Random Thread - Anything Goes:
@coliver said in Random Thread - Anything Goes:
This was going to my answer. It's so easy to setup HTTPS that it makes no sense not to.
Ok so next level. Use a Certificate from an internal CA? As you can't use something like Letsencrypt
Or just use HTTPS
Why wouldn't Let'sEncrypt work? Do these systems not have access to the internet at all?
Some devices are not online just internal and they wouldn't do HTTP confirmation but they could do DNS confirmation.
-
@coliver said in Random Thread - Anything Goes:
Why wouldn't Let'sEncrypt work? Do these systems not have access to the internet at all?
At the moment no. Trying to work out if it's worth the trouble to get them online if they don't need to be accessed externally just to get a cert.
Thinking I should just get them on HTTPS only
-
-
-
-