|
|
|
|
|
|
by ultramancool
3820 days ago
|
|
|
Not only that, but everything here except for the engineers question can also be solved by simply hosting these things yourself. You don't need 3rd party code hosting on Github, just use Gitlab or JIRA. You don't need some external CI service, run your own Jenkins node. Chat and email should also be internal (we use XMPP, a local Mattermost instance would be an alternative) and SSL-only. You can do all of this with basically 1 docker command per install on your own dedicated hardware with a fairly underpowered machine. And this prevents leaking of all sorts of information, not just production database passwords. If you don't trust your engineers, you have bigger problems, as another poster pointed out, if they can modify your software to simply report the password back to them, or just login to production and decrypt it, you're dead in the water. |
|
|
External service SLA can be joke. It's always aftermath thought. Damage control is always on the customer side because customer has to rotate / invalidate leaked credentials, so first step for me is to have a process to invalidate credentials as often as possible.