I am a Developer Advocate for Security in Mobile Apps and APIs at approov.io.
Another passion is the Elixir programming language that was designed to be concurrent, distributed and fault tolerant.
Location
Scotland
Education
Self teached Developer
Work
Developer Advocate for Mobile and API Security at approov.io
A production system should not have this endpoint at all. This is bad as a security practice and means that your automation as failed or does not exist at all.
Please if you really need it just expose it from the command line.
NOTE: having ssh access to a production system also means failure in you automation pipeline.
A production system should not have this endpoint at all. This is bad as a security practice and means that your automation as failed or does not exist at all.
Please if you really need it just expose it from the command line.
NOTE: having ssh access to a production system also means failure in you automation pipeline.
You raise a good point: this feature is obviously to support development, not for production