https://nidomiro.de/tags/security/ Recent content in security on nidomiro Hugo -- gohugo.io en-us Fri, 21 Aug 2020 12:00:00 +0000 https://nidomiro.de/code/more-secure-deployments-via-ssh/ Fri, 21 Aug 2020 12:00:00 +0000 https://nidomiro.de/code/more-secure-deployments-via-ssh/ If we deploy an application automatically we have to grant the CI (Continuous Integration) access to the server. Common practice is to do that via a GitLab Runner or a ssh account on the server. Personally I would not recommend to use a GitLab Runner for deployments, because you have to maintain it. Another potential issue is, that you normally register runners for your whole GitLab instance or groups. That results in a scenario in which everyone can use that runner and accidentally (or not) destroy, for example, your production server.