Fork me on GitHub

Our security team is concerned about "dirty pipe" exploit. Do we have any guidance on which remediation to apply?


Do you allow shell access to the Datomic nodes?


We don't (not that I know of) We are worried about the bastions in particular

Joe Lane21:03:09

Hi @m0smith, if the bastions are your primary concern you can upgrade your Datomic Cloud system to the latest release which doesn't have bastions anymore.


What about the other EC2?

Joe Lane21:03:58

@m0smith Why don't you open up a support ticket with us and forward your security team's concerns to us.