Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

For every 1 of those crazy high security companies, there’s probably 1000’s that couldn’t secure MongoDB instances.


Perimiter security is not vouge but its better than publicly accessible on the Internet. I would argue if are not comfortable with security take it off the Internet and put it in a dmz. You still need security, but it's a more forgiving environment if you get it wrong between setup and pen test.


And they will host it on Amazon, Google or Azure where their firewall admin won't possibly notice..


They could if the spent the $ and recruited experienced people.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: