dlapiduz
commented
8 years ago Maybe we can have a (private?) repo that lists IPs and a terraform job in concourse that updates a SG.
Closed dlapiduz closed 8 years ago
dlapiduz
commented
8 years ago Maybe we can have a (private?) repo that lists IPs and a terraform job in concourse that updates a SG.
dlapiduz
commented
8 years ago @LinuxBozo says we should only this for nessus
mogul
commented
8 years ago @dlapiduz Is this still necessary? @sharms is saying he thinks the necessary restrictions are already in place.
dlapiduz
commented
8 years ago Not in govcloud...
mogul
commented
8 years ago Ah, but in E/W? Then I'll leave it prioritized as-is.
dlapiduz
commented
8 years ago Just to be clear:
mogul
commented
8 years ago Okay!
sharms
commented
8 years ago
In order to improve security-in-depth in case the Nessus Manager is compromised, we want to restrict the set of IP address which can access Nessus