Quote:
Originally Posted by Lightspeed
That would be part of a secure implementation of such services, wouldn't it?
|
Bluntly, nothing is secure. You allow data to pass between the Internet and some systems, no matter how indirect, and there will be a way to attack it.
But looking past that, sure, isolation of roles is a fairly common band-aid to mitigate and contain risks, but it's not a be-all-end-all solution. It's not a magic bullet which fixes everything else wrong with your setup. And you could build something which was actually more secure on a single server than a poorly implemented tiered approach.
Pretty sure Sony had more than one server, didn't do them a shitload of good did it?