To the maximum extent possible, all access to each external connection should be centralized through a single access point. This minimizes the likelihood of security issues in code that accesses external connections.