I'm not sure I'd even go that far. A set of commands showing how to lock down ac... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		SpenserJ on May 13, 2013 \| parent \| context \| favorite \| on: Show HN: Automatic account and SSH access provisio... I'm not sure I'd even go that far. A set of commands showing how to lock down account permissions would work just as well, while allowing me to remain in control. That is a good point though, as Bastio would be able to create unrestricted administrative users anyway. Where are your encryption keys stored in relation to our connection data?

skyraider on May 13, 2013 [–]

There are multiple layers of encryption and the keys are distributed in such a way that the client must login and provide the data facet we store in the browser. The combination of this and other data facets provides the combination that unlocks the private key we use to conduct deployments.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact