HackerTrans
TopNewTrendsCommentsPastAskShowJobs

gfisher

no profile record

Submissions

Ask HN: How do you manage AWS root MFA in a remote work environment?

13 points·by gfisher·vor 4 Jahren·12 comments

comments

gfisher
·letzten Monat·discuss
But that is how deed restrictions are enforced. If you didn't have that mechanism, then they would just not exist upon death, etc.
gfisher
·vor 3 Jahren·discuss
Thank you for posting this - I couldn't figure out the intent of the initial post without this comment.
gfisher
·vor 3 Jahren·discuss
I'm there for my kids, and I am consistent. Consistency is something that I felt I never had from my dad, and it's so important to just do what you promise. Kids have good days and bad - they're volatile as they are growing. You just have to be the ever-present dad.
gfisher
·vor 4 Jahren·discuss
I hadn't considered outside council. That's a good idea. The issue with everybody being remote is that our corporate safe is difficult to get into (we are on a two-key system), but an outside entity is worth looking into.
gfisher
·vor 4 Jahren·discuss
That's an interesting idea, thanks. And I agree- we do not use the root accounts for anything. I'm much more concerned about the bus factor with physical key access.
gfisher
·vor 4 Jahren·discuss
Yes, you are totally correct. We don't use our root account now, and we keep our our corporate Yubikeys in a safe with a 2-key access lock. The issue is that fewer and fewer people have access to the safe due to geography. I'm worried about our in-city bus factor.