Skip to content
Better HN
Top
Best
Ask
Show
New
Jobs
Search
⌘K
0 points
noAnswer
2mo ago
0 comments
Save
Share
The long-lived credentials life inside a stripped down machine. Cron/lego/Ansible handles the renewal. The machines on the edge can't renew their keys themselves.
0 comments
1 comments · 1 top-level
top
newest
oldest
XCSme
2mo ago
Oh, this makes sense, so instead of "the app is rotating its keys" is more like "the keys in our app are being rotated by an external service".
j
/
k
navigate · click thread line to collapse
