Wouldn't that mean any computer connected to the internet shares that risk?

slt2021 · on May 7, 2020

yeah, that's why in an average on-prem setup you usually would have firewalls, DMZs, IDS/IPS and all the good stuff - and people have been doing on-prem security for decades and accumulated an enormous wealth of knowledge and practice.

in cloud - it all new. people are still figuring out how to deploy their software so that it works both for users and developers. That's why on average onprem is more secure than cloud.

Jonnax · on May 8, 2020

"new" the cloud is not new. AWS was launched in 2006.

Also firewalls/DMZ/IDS has nothing to do with a SaaS offering from GitHub. That on prem setup you mentioned would be practiced by GitHub.

My opinion of general on-prem security is that it's often haphazard and updates are almost never applied.

But also a lot of on prem security practices hamper developers and users. Because they rely on decades old outdated ways of working.

Also your comment makes no sense as this is likely to be a hack through stolen credentials.

duxup · on May 7, 2020

Maybe I'm crazy but I'm not sure all that security makes things more secure than the cloud.

I feel like the hacks I hear about are pretty evenly distributed between cloud and on prem type setups... and most of the big ransomware attacks are almost exclusive to on prem.