undefined | Better HN

0 pointsartyom3mo ago0 comments

I don't think the article implied that the client was for some sort of internal server-to-server communication, or that the Redis instance was directly exposed to the internet.

So no, I don't think they run these clients themselves. If the code runs out there, it's open to inspection.

0 comments

tpurves3mo ago

Either way, you are right to point out that it important to only a try a pattern like this if your clients are highly trusted (or/and have additional compensating controls against DDOS threats). It would be beneficial if the OP made more explicit what their client/server relationships and also flagged the risk you mentioned for general audiences not to go implementing such a solution in the wrong places.

j / k navigate · click thread line to collapse

0 pointsartyom3mo ago0 comments

I don't think the article implied that the client was for some sort of internal server-to-server communication, or that the Redis instance was directly exposed to the internet.

So no, I don't think they run these clients themselves. If the code runs out there, it's open to inspection.

0 comments

tpurves3mo ago

j / k navigate · click thread line to collapse