Hacker News new | ask | show | jobs
by bandrami 22 days ago
That's why we don't let the developers run system package manager install scripts as root. We do let them run npm inside containers, which is still more access than I'd like them to have.
1 comments
icedchai 22 days ago
Is this one of those places where it takes 6 to 12 weeks to get something new installed on your machine?
link
bandrami 22 days ago
You mean directly on the machine? Not in a container? That would be a recklessly fast timeline. The configuration control board meets quarterly and it usually takes 4 or 5 meetings to clear a piece of software.
link
icedchai 22 days ago
Interesting. How about in a container? What industry is this, just curious?
link
bandrami 22 days ago
Defense. Containers on our normal network are the wild west, but anything that touches the secure network has to be signed off on by the clients.
link