Ask HN: How do you manage user permissions on production servers?
Do you allow root access to production servers? or full sudo access?
Do you allow particular tasks to be run with sudo? Which ones?
Do you grant users temporary superuser permissions?
What do you do in case of emergencies?
Do you completely forbid users from sshing to production servers?
Do you audit/monitor superusers activity?
1 comment
[ 3.7 ms ] story [ 20.5 ms ] thread