Well, yes, pick your poison. But for just getting access to role accounts then I... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		blipvert 34 days ago \| parent \| context \| favorite \| on: SSH certificates: the better SSH experience Well, yes, pick your poison. But for just getting access to role accounts then I find it a lot nicer than distributing public keys around. And for everything else, a periodic Ansible :-)

gnufx 34 days ago [–]

Public keys (for OpenSSH) can be in DNS (VerifyHostKeyDNS) or in, say, LDAP via KnownHostsCommand and AuthorizedKeysCommand.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact