" Security & trust
If running the front-end of your site and the Ghost admin client on the same domain, there are certain permissions escalation vectors which are unavoidable.
Ghost considers staff users to be “trusted” by default - so if you’re running in an environment where users are untrusted, you should ensure that Ghost-Admin and your site’s front-end run on separate domains."
I have many writers that will be writing on my publication on Ghost, I would not consider them “trusted”. What is the best way to go about this, so I am as safe as possible?