More secure deployments via ssh

2020-08-21 Infrastructure Linux Deployment Niclas Roßberger

If we deploy an application automatically we have to grant the CI (Continuous Integration) access to the server. Common practice is to do that via a GitLab Runner or an ssh account on the server. Personally I would not recommend using a GitLab Runner for deployments, because you have to maintain it. Another potential issue is, that you normally register runners for your whole GitLab instance or groups. That results in a scenario in which everyone can use that runner and accidentally (or not) destroy, for example, your production server. Continue reading

Automatic VirtualBox module signing for UEFI

These steps are for all those people who hate to sign the Virtualbox modules every time and don’t want to disable UEFI.