HackerTrans
TopNewTrendsCommentsPastAskShowJobs

gfisher

no profile record

Submissions

Ask HN: How do you manage AWS root MFA in a remote work environment?

13 points·by gfisher·4 года назад·12 comments

comments

gfisher
·в прошлом месяце·discuss
But that is how deed restrictions are enforced. If you didn't have that mechanism, then they would just not exist upon death, etc.
gfisher
·3 года назад·discuss
Thank you for posting this - I couldn't figure out the intent of the initial post without this comment.
gfisher
·3 года назад·discuss
I'm there for my kids, and I am consistent. Consistency is something that I felt I never had from my dad, and it's so important to just do what you promise. Kids have good days and bad - they're volatile as they are growing. You just have to be the ever-present dad.
gfisher
·4 года назад·discuss
I hadn't considered outside council. That's a good idea. The issue with everybody being remote is that our corporate safe is difficult to get into (we are on a two-key system), but an outside entity is worth looking into.
gfisher
·4 года назад·discuss
That's an interesting idea, thanks. And I agree- we do not use the root accounts for anything. I'm much more concerned about the bus factor with physical key access.
gfisher
·4 года назад·discuss
Yes, you are totally correct. We don't use our root account now, and we keep our our corporate Yubikeys in a safe with a 2-key access lock. The issue is that fewer and fewer people have access to the safe due to geography. I'm worried about our in-city bus factor.