HackerTrans
トップ新着トレンドコメント過去質問紹介求人

gfisher

no profile record

投稿

Ask HN: How do you manage AWS root MFA in a remote work environment?

13 ポイント·投稿者 gfisher·4 年前·12 コメント

コメント

gfisher
·先月·議論
But that is how deed restrictions are enforced. If you didn't have that mechanism, then they would just not exist upon death, etc.
gfisher
·3 年前·議論
Thank you for posting this - I couldn't figure out the intent of the initial post without this comment.
gfisher
·3 年前·議論
I'm there for my kids, and I am consistent. Consistency is something that I felt I never had from my dad, and it's so important to just do what you promise. Kids have good days and bad - they're volatile as they are growing. You just have to be the ever-present dad.
gfisher
·4 年前·議論
I hadn't considered outside council. That's a good idea. The issue with everybody being remote is that our corporate safe is difficult to get into (we are on a two-key system), but an outside entity is worth looking into.
gfisher
·4 年前·議論
That's an interesting idea, thanks. And I agree- we do not use the root accounts for anything. I'm much more concerned about the bus factor with physical key access.
gfisher
·4 年前·議論
Yes, you are totally correct. We don't use our root account now, and we keep our our corporate Yubikeys in a safe with a 2-key access lock. The issue is that fewer and fewer people have access to the safe due to geography. I'm worried about our in-city bus factor.