undefined | Better HN

0 pointsthrowawaygh4y ago0 comments

> What’s the alternative given that most small/medium-sized companies know very little about IT security?

Removing the "remote" from "remote administration". It's more expensive but probably still not cost-prohibitive -- driving around to client sites and installing updates is not particularly skilled labor. Plus even the worst-case scenarios are far less worse because you already have a local workforce who can do site visits to manually recover systems locked down by ransomware attacks. Data might get stolen, but at least you have continuity of business.

0 comments

2 comments · 2 top-level

markzzerella4y ago

They could even have a 'reverse shell' type button that the client has to explicitly click to enable temporary remote access.

twistedpair4y ago

What if you could somehow rate limit it? e.g. you can access N remote offices per day, but not all of them. Like the time lock on a safe, to prevent these pervasive smash and grabs.

j / k navigate · click thread line to collapse