Comment by oofbey
7 days ago
Oh they’re logically separated. Thanks for explaining that. Now I’m certain nothing could possibly go wrong.
/s
7 days ago
Oh they’re logically separated. Thanks for explaining that. Now I’m certain nothing could possibly go wrong.
/s
"logically separated" as opposed to "physically separated" (pretty rare in the Cloud world)
If you want more details, read their open source codebase or ask them specifically what documentation would boost your confidence, instead of leaving snarky comments.
I would argue that saying the accounts are logically separated is a snarky comment. It’s akin to patting the reader on the head and saying “don’t you worry your pretty little head”. Logically separated says nothing. Distinct VMs are logically separated, containers are logically separated, as are storing data in different files which self-modifying PHP code which doesn’t check its inputs tries to keep distinct. It’s basically just saying their engineers do their best but any single bug leaks data. Which is better than saying their engineers don’t even try? Not really. It’s a completely empty statement.
Also, for people who actually care about security in the cloud, physically separated is not uncommon. Side channel attacks are real. Dedicated instances are not that hard if you really care about security.
My choice of the word "logically separated", was meant to specifically answer the question the reader asked:
> If someone else's account is compromised, how do I know I won't be?
If you have other questions, you can feel free to ask, and I'd be happy to answer in more detail.
2 replies →