Henry Nebrensky <[log in to unmask]> writes:
> my view is that we should be going towards having the WNs totally
> sandboxed off from the rest of the world with all interactions going
> through the local service nodes...
I don't think that's necessarily a good idea. What you gain is chiefly
some extra time to patch your nodes for remote vulnerabilites. (You
*have* to keep your nodes secure anyway!)
On the other hand, not having general network connectivity for the
nodes means you lose the ability to do all sorts of nifty things. I'm
not sure it's worth it.
--
Leif Nixon - Systems expert
------------------------------------------------------------
National Supercomputer Centre - Linkoping University
------------------------------------------------------------
|