|
|
|
|
|
|
by traceroute66
1817 days ago
|
|
|
> Putting a human in the loop for our otherwise fully automated release process is a non-starter. I don't follow. The purpose of storing keys in hardware is to irreversibly protect the key. If you then wish to be silly and hardcode the PIN to the hardware in your release scripts, then that is your prerogative. If its the cost of an HSM you're alluding to, even that is a non-issue with a Yubikey or Nitrokey. |
|
|