#1154: Allow signed manifests to eliminate single point of compromise
--------------------------+-------------------------------------------------
Reporter: jgoldschrafe | Owner: luke
Type: enhancement | Status: new
Priority: normal | Milestone:
Component: library | Version:
Severity: normal | Resolution:
Keywords: | Stage: Needs design decision
Patch: None | Complexity: Unknown
--------------------------+-------------------------------------------------
Comment (by rladams):
Given my efforts to use puppet across customer networks (ie: managed
remotely over the net) I've been working on using encrypted and signed
manifests from tarball distributed outside puppet. Unfortunately since the
responses from the puppetmaster are dynamically generated it makes signing
impractical. I sidestepped the issue by not using puppetmaster and just
running puppet locally from authenticated manifests.
I am very interested in seeing where this discussion leads.
--
Ticket URL: <http://reductivelabs.com/trac/puppet/ticket/1154#comment:5>
puppet <http://reductivelabs.com>
Puppet - Portable System Automation
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"Puppet Bugs" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at
http://groups.google.com/group/puppet-bugs?hl=en
-~----------~----~----~----~------~----~------~--~---
