6·
5 months agoArchive link: https://archive.is/9b3tn
- 0 Posts
- 7 Comments
Joined 2 years ago
Cake day: June 1st, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
2·6 months agoArchived copy: https://archive.is/XkFzR
Yevgeny “Eugene” Vindman, twin brother of Alexander Vindman.
61·1 year agoCyberArk is a commercial product that attacks this problem space. It puts an agent process on the host next to your app. Only processes whose fingerprint matches those authorized to access a credential are allowed to fetch it. That fingerprint can be based on the host (known list of production hosts), the os user ID that owns the pid, the path to the executable for the pid, and probably a few more items.
Under that model your app just needs to know the environment that it wants (inject however you want) and the userid it wants to use. At runtime it reaches out to the local cyberark agent to obtain the password secret.
81·1 year agoAfter a dramatic filibuster effort earlier this year NE changed their abortion law to a ban that starts at 12 weeks.
To anyone that hasn’t yet seen the movie Idiocracy, watch it now. Best documentary you’ll ever watch.