Essentially all machines need access to some secrets such as API keys or database passwords. This, combined with increased automation and cloud solutions requires automated tools for managing those secrets. They need to be stored securely, mechanisms for rotation need to be present and access need to be audited and controlled. Various solutions such as chef-vault, KeyWhiz and Vault already exist and solve parts of the problem. secretd is a new take on the problem and, in the author's opinion, solves some problems the other solutions don't.
This talk will both include an exploration of the problem space as well as a presentation of secretd: everything from language choice through tradeoffs made and lessons learned.
Tollef has been involved in various free software projects over the years, most notably he's been a Debian Developer for 15 years where he currently serves on the Technical Committee. He is also involved in smaller projects such as pkg-config and wee-slack.
Geelong is Victoria's second largest city, located on Corio Bay, and within a short drive from popular beach-front communities on the Bellarine Peninsula as well as being the gateway to the famous Great Ocean Road
linux.conf.au is widely regarded by delegates as one of the best community run Linux conferences worldwide and is the largest Linux and Open Source Software conference in the Asia-Pacific.
Our Sponsors help make linux.conf.au become the awesome conference everyone comes back to year after year. Come see who's on board this year, or find out how to get in contact with us