Hacker News new | past | comments | ask | show | jobs | submit login

has no one replied that any VM that handles HTTP(s) traffic MUST open ports to start functioning, and is therefore fully vulnerable? what am I missing here

Opening http(s) ports != opening all ports, or even the ones that the management services run on

Open ports to webservers like Apache,nginx etc. aren't affected by this issue.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact