Whenever we work with a 3rd party vendor and run through the efforts to harden the systems, they freak out because it always breaks their app.
Then we go through the whole handholding process of getting their apps to work within our hardened environment. It ends with them not taking anything into account. App works, system is hardened.
Then when it’s time to update the system, they get involved and it’s always back to square one.
Like get the fuck on board with security if you are selling a software product. It’s mind boggling thinking about how all their other customers just let them away with such exposed shitty communication and unencrypted passwords.
It’s shocking.
Whenever we work with a 3rd party vendor and run through the efforts to harden the systems, they freak out because it always breaks their app. Then we go through the whole handholding process of getting their apps to work within our hardened environment. It ends with them not taking anything into account. App works, system is hardened. Then when it’s time to update the system, they get involved and it’s always back to square one.
Like get the fuck on board with security if you are selling a software product. It’s mind boggling thinking about how all their other customers just let them away with such exposed shitty communication and unencrypted passwords.