Zero Trust Hosting

[Artashes]

This is not the first time that I've heard of the term "zero trust architecture", especially in light of increased cyber attacks, but a first good in-depth look into what may be the web hosting architecture of tomorrow, built on the principle of "never trust, always verify", as opposed to "trust, but verify".

Zero Trust Hosting and Reverse Proxy via Cloudflare, SWAG and Authelia

Zero Trust Hosting and Reverse Proxy via Cloudflare, SWAG and Authelia

www.linuxserver.io

Do you believe software architecture needs to change? Can it be effective in decreasing the number of attacks?

 

[easyhostmedia]

Cloudflare may reduce things like DDOS attacks, but it increases SPAM/Counterfeit websites, where the fraudsters hide behind Cloudflare IPS

 

[bigredseo]

Being a pioneer in "zero trust" doesn't sound like a good thing

 

[ughosting]

You can always check the X-Forwarded for head from Cloud-Flare or the equivalent. If you've ever used nginx or varnish proxies, you'll probably find your logging will already log this header when present rather than the connecting IP.

 

[Stephanie_Sy]

As long as internet access was managed, it was possible to protect, monitor, and control the data that flowed through it.