How do you arrange to deploy a new project on to an old server, without opening up a raft of vulnerabilities?
The answer to that is, unsurprisingly, “with difficulty”
