• AmbiguousProps
        link
        fedilink
        English
        arrow-up
        2
        ·
        edit-2
        5 months ago

        😭 why though? I assume that if you are smart enough to setup redis, you’d be smart enough to use VPNs (or similar) as to never expose it

        • sugar_in_your_tea@sh.itjust.works
          link
          fedilink
          English
          arrow-up
          2
          ·
          edit-2
          5 months ago

          Our prod exposed Redis until I noticed. Apparently we had to reset caches after releases, and our devOPs forgot to remove access to it after creating scripts to handle that.

          It happens, but it really shouldn’t. At least ours was at a different subdomain (something like app-region-redis.domain.com or whatever).