Hacker News new | ask | show | jobs
by NateEag 1486 days ago
I guess that's not ideal, though I'm not clear what attack surface area is increased by storing creation/ deletion metadata in public.

I guess it lets an attacker know that you're using Terraform, which might help them target their attacks.
1 comments
bpicolo 1486 days ago
Terraform stores secrets in state. Generated database password, etc.
link
NateEag 1486 days ago
Oh, gotcha. I've not used Terraform yet.

Yes, if that's the case, then TXT records could easily be unsuitable. Depends exactly what metadata needs to be attached to your DNS records.

link