[rancid] Can clogin prompt for a password?
Alan McKinnon
alan.mckinnon at gmail.com
Thu Aug 4 20:57:01 UTC 2016
On 04/08/2016 18:54, Brandon Ewing wrote:
> On Thu, Aug 04, 2016 at 05:46:29PM +0200, Alan McKinnon wrote:
>>
>> are the admins of that central system willing to give you a rancid
>> system account? That's usually a routine corporate request and can be
>> locked down in a way that will satisfy the auditors
>>
>
> We do have a system account for making configuration backups. However, we
> also use centralized syslogging to fire off per-router rancid runs with a
> custom change author to allow coarse attribution of changes to individual
> users/git blame log. Utilizing a shared account would defeat that purpose.
Ah, OK. I never had that problem myself. For us it was always the team
as a whole took the glory and blame for root-level actions. We refused
to let the company single out individuals for blame (a mistake usually
meant I hadn't done enough mentoring).
Internally, we'd expect individuals to fess up to mistakes but it was
very much ring-fenced.
--
Alan McKinnon
alan.mckinnon at gmail.com
More information about the Rancid-discuss
mailing list