>>
>> i'd like to see a way of asking factotum "please save your keys to
>> secstore",
>> although there's some difficulty getting it right, as there are
>> potentially many factotums
>> to one secstore, or even worse, several secstores.
>>
>
> Plumbing? May not help with multiple secstores and/or factotums but
> having multiples of these seems like a bother. Should there be some
> way to safely consolidate the services? Or am I just being security
> naive?
>
> -eric
one would generally have multiple factotums if logged into two terminals at
the same time.
the cpu hostowner has one factotum per cpu server. coraid, for example, has
~5 main cpu servers.
one would generally have one secstore per authentication domain.
i can't reasonablly merge my home secstore server and the one at work,
even if the network were perfectly reliable.
that being said, i don't think that there really is a problem if the process
of moving keys from factotum to secstore were manually driven, as in
echo dumpkeys secstore.example.com>/mnt/factotum/ctl
another solution would be a command line tool that generates and prints
the long-term key so it can be manually intered into secstore.
i like this solution better because it keeps the information flow
unidirectional. one can trust a factotum too much.
- erik
