Hacker News new | ask | show | jobs
by tptacek 2714 days ago
1. This is very, very cool looking.

2. We would never in a million years sign off on any usage of this at any of our clients.

I think there's something of pretty great value here, but am skeptical of the multitenant SAAS packaging it has now. No serious firm can reasonably hand off SSH access to a third party like this.

Also: where's your security page? What verification work has been done on this?
2 comments
angerson 2714 days ago
Thank you for saying so. We've put a lot of work into just getting to this state, and next for us comes a lot more work on both features and security, like you said.

Our focus right now is on independent users who are looking for convenience, since we can't expect to fully support larger groups who have extremely high standards that we can't yet meet.

Edit: Apologies, I didn't intend to dismiss rightfully high security expectations as "extremely high standards". To put it another way, we have to start somewhere, and we've put plenty of work already into the basics, but our obvious next steps are to step up on security while also supporting users who are already willing to use Shellvault as-is. My above comment should have said that we don't yet have the resources to properly support enterprise-grade security concerns.

link
shawkinaw 2714 days ago
Dismissing such basic security concerns as "extremely high standards" is quite off-putting. You need to earn a very, very high level of trust to successfully run such a service, as the other comments in this thread clearly show, and this comment does the opposite, at least for me.
link
wstuartcl 2714 days ago
It is hard to imaging that you interviewed any potential users of such a system before building it. You are solving a problem users do not have in a way that creates problems for users.
link
pugz 2714 days ago
I'm planning on launching something similar-ish in the next couple of weeks, so your feedback would be tremendously appreciated.

> I think there's something of pretty great value here

What specifically do you think has great value? Is it the nice web-based UX? Something else?

link
brokenmachine 2714 days ago
Anyone who works for the NSA or a hacker group would agree that all that free user data has pretty great value.
link