On 21.05.2015 15:10, Alan McKinnon wrote: > I didn't realize you want to deploy keys for root. Is that root on your > local machine, or root on the remote machines?
both ... mixed and grown setup > Either way, that part *does* need some thinking through. yes! I knew it ;-) > For automation involving root permissions, I prefer to use a remote > system (non-root) account and give it the needed permissions in > /etc/sudoers, being careful to disallow sudo -i, sudo su, and friends hm. so much work all around.
