On Mon, 13 Apr 2020 at 18:41, Levente Polyak via arch-devops <arch-devops@lists.archlinux.org> wrote:
On 3/30/20 8:19 PM, Levente Polyak via arch-devops wrote:
> On 3/30/20 8:11 PM, Giancarlo Razzolini wrote:
>> Em março 30, 2020 15:07 Levente Polyak via arch-devops escreveu:
>>> Hey folks,
>>> we have been discussing this in a small round and want to transition the
>>> hetzner billing directly to SPI. This requires them to access the
>>> account once to insert the billing data in the accounting page.
>>> All this will be done in a secure manner, however even through we have
>>> two-factor in place we may want to change the password afterwards.
>>> cheers,
>>> Levente
>> Did we ever explore the virtual card number option with them, at all? I'm
>> not comfortable with this, but as long as there's no other option, we do it
>> and change password and 2FA master seed.
>> Regards,
>> Giancarlo Razzolini
> Neither do I, but no, there is no virtual credit card or other option
> available. We won't hand over the 2FA seed so nobody will need to change
> their 2FA setup.
> I tried finding a better way, but there is none :S We already trust SPI
> with our value, so I don't think this is really an issue if we swap the
> first-factor afterwards.
> cheers,
> Levente

The Hetzner SPI payment handover has been finished. I've changed our
password before the online meeting to something temporary and handed it
out via PGP to SPI. I've changed it back to the original password now,
so there won't be any actions required on devops member side and the
password inside the vault is the functional one.


Thanks Levente!