https://redmine.dataone.org/https://redmine.dataone.org/favicon.ico2015-12-15T22:58:22ZDataONE TasksInfrastructure - Story #7559: Develop plan for securing application passwords in the CN stackhttps://redmine.dataone.org/issues/7559?journal_id=267222015-12-15T22:58:22ZBen Leinfelderleinfelder@nceas.ucsb.edu
<ul><li><strong>Related to</strong> <i><a class="issue tracker-5 status-5 priority-4 priority-default closed parent" href="/issues/7545">Task #7545</a>: Secure test service passwords in LDAP configuration</i> added</li></ul> Infrastructure - Story #7559: Develop plan for securing application passwords in the CN stackhttps://redmine.dataone.org/issues/7559?journal_id=267332015-12-16T21:12:34ZDave Vieglaisdave.vieglais@gmail.com
<ul></ul><p>One option is to replace our current password "manager" gpg files with the "pass" tool. <a href="http://www.passwordstore.org/">http://www.passwordstore.org/</a></p>
<p>Initial evaluation suggests it seems to work fairly well for our needs as it still uses gpg (can keep using all our keys), provides for hierarchical arrangement of entries, has integrated support for git, and can be used in scripts.</p>
<p>This at least helps with the password management and enables easy distribution to the servers (pass can be installed from apt).</p>
<p>Minor hassle is that it requires gnu-getopt on OS-X which needs to be installed through brew, which most of us probably use anyway.</p>
Infrastructure - Story #7559: Develop plan for securing application passwords in the CN stackhttps://redmine.dataone.org/issues/7559?journal_id=295592018-01-17T19:34:11ZDave Vieglaisdave.vieglais@gmail.com
<ul><li><strong>Assignee</strong> changed from <i>Matthew Jones</i> to <i>Dave Vieglais</i></li></ul> Infrastructure - Story #7559: Develop plan for securing application passwords in the CN stackhttps://redmine.dataone.org/issues/7559?journal_id=295602018-01-17T19:34:20ZDave Vieglaisdave.vieglais@gmail.com
<ul><li><strong>Sprint</strong> set to <i>Infrastructure backlog</i></li></ul>