What’s the current best practice for auth on ToolForge? I have a passphrase on my public ssh key. I’ll be accessing toolforge from my MacBook which is protected with Apple’s Touch ID fingerprint scanner. I’ll be nailing up a tmux session.
So, most of the time, there will be an active ssh session into wfmlabs protected only by my fingerprint touch. If the ssh session goes down (i.e. reboot or network change), it’ll be a touch plus my ssh passphrase. Is this considered an appropriate level of protection for this environment? _______________________________________________ Cloud mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/cloud
