Date: Tue, 9 Dec 2008 21:09:30 +0100 From: Henrik Brix Andersen <brix@FreeBSD.org> To: freebsd-embedded@freebsd.org Subject: Re: How to notify for maintenance Message-ID: <20081209200929.GA42936@tirith.brixandersen.dk> In-Reply-To: <DE033AA5-3C9A-443E-98EB-D313F8BF13EA@jump-ing.de> References: <DE033AA5-3C9A-443E-98EB-D313F8BF13EA@jump-ing.de>
index | next in thread | previous in thread | raw e-mail
[-- Attachment #1 --] On Tue, Dec 09, 2008 at 07:11:29PM +0100, Markus Hitter wrote: > The small problem now is, this box needs some moderately complex > maintenance from time to time which I want to do from the outside > (another computer). Storing root keys and software to use it on the > same computer running lighttpd doesn't make me feel good. > > The question is: How would I securely notify another computer to do > this (automatic) maintenance? Whatever I think of, this requires at > least an ssh certificate and is pretty universal allowing it to be > used to trigger harmful things as well. Turn the scenario the other way around and have the trusted 'remote' computer initiate the maintenance at given intervals? Brix -- Henrik Brix Andersen <brix@FreeBSD.org> [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (FreeBSD) Comment: GnuPG signed iEYEARECAAYFAkk+0HkACgkQv+Q4flTiePgYoQCgr8YEV4ImvZAGKmI/aTqhi3y4 vkwAn3eBGyQ/Niq3N9RKIt6kKtyAUvmd =kJiR -----END PGP SIGNATURE-----help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20081209200929.GA42936>