undefined | Better HN

0 pointsonion2k3y ago0 comments

Years ago when I actually did any devops running services without a password was common. They would configured to only be accessible using SSH from a locked down IP range. It's far more secure than password based access (if you get it right).

0 comments

9887473y ago

Yes, but that was a design/security choice. What OP described seems like a pure negligence ("setting up authentication is hard, so let's skip it").

j / k navigate · click thread line to collapse

0 pointsonion2k3y ago0 comments

Years ago when I actually did any devops running services without a password was common. They would configured to only be accessible using SSH from a locked down IP range. It's far more secure than password based access (if you get it right).

0 comments

9887473y ago

Yes, but that was a design/security choice. What OP described seems like a pure negligence ("setting up authentication is hard, so let's skip it").

j / k navigate · click thread line to collapse