boost as ssh-only tool
STUB
- we get lots of hackery/spammy traffic in our nginx from random IPs probing us for vulns
- but the only reason we even have ports 80 & 443 open is for (1) twilio webhooks and (2) our
boost
tool - what if we modified the
boost
tool to ssh onto the box (and make its http calls to localhost) and then only accepted http traffic from twilio.com? (easy way to close lots of vulns!)