Bob Lord πŸ” Dec 20, 2022

After acquiring a technology product, we've all had to find, and then implement the guidance in the product's hardening guide (or a third party's guide in some cases). You know, to change the unsafe defaults to safer ones.

What's your favorite example of a hardening guide (for an SMB or enterprise product) that clearly shows how dangerous the product was as it left the factory.

Links to the guide and some commentary would be most welcome! (Or you can DM me, if I can figure out how those work here)

Please boot for reach. πŸ”β€‹πŸ™β€‹

Show threadsayrer
@boblord Google Advanced Protection is the best one I know. It is such a giant pain. I even keep a separate insecure account so I can print stuff at Kinkos.
Dec 20, 2022 at 10:49pmWeb
Show threadBob Lord πŸ” Dec 20, 2022
@sayrer That’s an example of security defaults that sometimes break things. I don’t think I’ll find too many examples of that. πŸ˜†
Show threadsayrerDec 20, 2022
@boblord It's a net win, covered well in Reply All #130 (you won't learn anything, but it's a good user story). I will never go back.