Hacker News new | past | comments | ask | show | jobs | submit login

You don't run any services where more than one person shares responsibility for managing that service? E.g. kubernetes. That is just one guy holding it up?



In an on-prem cluster, yes one guy or a few sysadmins who either share passwords or can somehow put their keys in the authorized keys file and ssh.

In the cloud, AWS/GCP let or not let an IAM user reach a server.


That's convenient but doesn't scale and really not too great for security for a bunch of reasons, but it can work great for smaller teams and minimize friction.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: