29 messages
General Discussions
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Madu valentine
- @Owen
- @Daniel Grzelak
- @jedi
- @Yangci Ou
- @Christopher McGill
- @ravioli code
Good to have you here =)
- @Madu valentine
- @Owen
- @Daniel Grzelak
- @jedi
- @Yangci Ou
- @Christopher McGill
- @ravioli code
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Luis Orlando Cabrera Aldui
Good to have you here =)
- @Luis Orlando Cabrera Aldui
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Adnan S
- @Chris Engelbert
- @Nathan Henry
- @Ciprian
Good to have you here =)
- @Adnan S
- @Chris Engelbert
- @Nathan Henry
- @Ciprian
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @U06MVCRS7SN
- @ilkan
- @GoodGod Okorie
- @U06NP6N9PBJ
- @Joshua Tessier
Good to have you here =)
- @U06MVCRS7SN
- @ilkan
- @GoodGod Okorie
- @U06NP6N9PBJ
- @Joshua Tessier
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @gubuda
- @Judith Chebet
- @Jamey
- @Vitalii Samofal
- @Zack
- @Rebecca Izuchukwu
Good to have you here =)
- @gubuda
- @Judith Chebet
- @Jamey
- @Vitalii Samofal
- @Zack
- @Rebecca Izuchukwu
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Oz Hidiroglu
- @Greatness Akuma
- @Kornelia
- @Steve Sperandeo
Good to have you here =)
- @Oz Hidiroglu
- @Greatness Akuma
- @Kornelia
- @Steve Sperandeo
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Sean Wright
- @Sumz
- @Mike Vink
- @Matias Palermo
- @Steve Severinghaus
Good to have you here =)
- @Sean Wright
- @Sumz
- @Mike Vink
- @Matias Palermo
- @Steve Severinghaus
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Cris Nevares
- @zohir damene
Good to have you here =)
- @Cris Nevares
- @zohir damene
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Gokul Ks
Good to have you here =)
- @Gokul Ks
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Node
- @mshiin
- @Karthik G
Good to have you here =)
- @Node
- @mshiin
- @Karthik G
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @prwnd9
- @gaurav grover
Good to have you here =)
- @prwnd9
- @gaurav grover
Good to have you here =)
prwnd9almost 2 years ago
Hello, thanks!
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @topher
- @glashio
- @Enrique
Good to have you here =)
- @topher
- @glashio
- @Enrique
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Val
- @bessey
- @Marty Haught
Good to have you here =)
- @Val
- @bessey
- @Marty Haught
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Dan
Good to have you here =)
- @Dan
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Michael Pruitt
- @Shivam s
Good to have you here =)
- @Michael Pruitt
- @Shivam s
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Marat Bakeev
- @Alexander Pankratiev
Good to have you here =)
- @Marat Bakeev
- @Alexander Pankratiev
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Ercan Ermis
- @Ozan Gazi
- @Ozan GAZΔ°
- @Samantha Upegui
Good to have you here =)
- @Ercan Ermis
- @Ozan Gazi
- @Ozan GAZΔ°
- @Samantha Upegui
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @William
- @ph
- @Olatokunbo Ogunlade
Good to have you here =)
- @William
- @ph
- @Olatokunbo Ogunlade
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Amaia
- @nardev
- @Jonas MariΓ«n
- @Ian-Taylor
- @riccardo
Good to have you here =)
- @Amaia
- @nardev
- @Jonas MariΓ«n
- @Ian-Taylor
- @riccardo
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Monish Devendran
- @Anil Choudhary
Good to have you here =)
- @Monish Devendran
- @Anil Choudhary
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Jesse Pitts
Good to have you here =)
- @Jesse Pitts
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Adithi Nayak
- @Mark DeBaets
- @U06RDDSP49G
Good to have you here =)
- @Adithi Nayak
- @Mark DeBaets
- @U06RDDSP49G
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @IBK
- @Aditya
- @Roy
- @Krishan
- @mark washburn
- @Lucca
Good to have you here =)
- @IBK
- @Aditya
- @Roy
- @Krishan
- @mark washburn
- @Lucca
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Sharique
- @Ankit
- @Flavio Briz
- @Ray
Good to have you here =)
- @Sharique
- @Ankit
- @Flavio Briz
- @Ray
Good to have you here =)
alanalmost 2 years ago
hi I'm not sure what channel is right for this question, so please let me know if I should delete it.
I'd love to hear how to handle secrets when deploying servers at a cloud provider that doesn't provide any IAM or secrets management services like I'm used to from AWS. I'm trying to keep things as simple as possible as I'm solely responsible for managing 10s of servers. At the moment I deploy servers using cloud-init and follow an immutable approach, so any changes means redeploying/reinstalling the server after I make changes to the cloud-init config. This works great, but I need a better way to handle secrets than current manual approach.
On AWS I'd use an instance's role to grant it permissions to write/read secrets in parameter store or secrets manager. I'm lost as to how to approach the lack of these two fundamental services. I know hashicorp vault is popular but 1) I don't want to deploy and manage vault 2) it seems overkill for my needs.
I've looked at mozilla sops but every blog post talks about using it with kubernetes or on the big cloud providers and using their kms services. I'm unsure how this would work for my use-case.
To provide some more background, I have two types of needs when it comes to servers:
1. First launch of a new server, secrets are generated on the server. I need to store these secrets centrally in case the server is destroyed.
2. If the server is re-deployed it should check if there's already a secret available before generating a new one.
I know secrets management is a complicated topic, but if anyone has any experience or ideas for how to solve this when a cloud provider doesn't offer it as a service I'd love to chat. Again I'm looking to KISS :)
I'd love to hear how to handle secrets when deploying servers at a cloud provider that doesn't provide any IAM or secrets management services like I'm used to from AWS. I'm trying to keep things as simple as possible as I'm solely responsible for managing 10s of servers. At the moment I deploy servers using cloud-init and follow an immutable approach, so any changes means redeploying/reinstalling the server after I make changes to the cloud-init config. This works great, but I need a better way to handle secrets than current manual approach.
On AWS I'd use an instance's role to grant it permissions to write/read secrets in parameter store or secrets manager. I'm lost as to how to approach the lack of these two fundamental services. I know hashicorp vault is popular but 1) I don't want to deploy and manage vault 2) it seems overkill for my needs.
I've looked at mozilla sops but every blog post talks about using it with kubernetes or on the big cloud providers and using their kms services. I'm unsure how this would work for my use-case.
To provide some more background, I have two types of needs when it comes to servers:
1. First launch of a new server, secrets are generated on the server. I need to store these secrets centrally in case the server is destroyed.
2. If the server is re-deployed it should check if there's already a secret available before generating a new one.
I know secrets management is a complicated topic, but if anyone has any experience or ideas for how to solve this when a cloud provider doesn't offer it as a service I'd love to chat. Again I'm looking to KISS :)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @V.S
- @Yaniv Y
- @Nick Sandar
- @Kellie Mackey
- @alan
- @Ashish
Good to have you here =)
- @V.S
- @Yaniv Y
- @Nick Sandar
- @Kellie Mackey
- @alan
- @Ashish
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Kunal Kumar
- @James Gibbard
Good to have you here =)
- @Kunal Kumar
- @James Gibbard
Good to have you here =)
Zapieralmost 2 years ago
Hey everyone, give a warm welcome to our newest members!
- @Narayan Ubale
- @Dakotah Hurda
- @Surya Pendyala
Good to have you here =)
- @Narayan Ubale
- @Dakotah Hurda
- @Surya Pendyala
Good to have you here =)