On 3/30/20 8:19 PM, Levente Polyak via arch-devops wrote:
On 3/30/20 8:11 PM, Giancarlo Razzolini wrote:
Em março 30, 2020 15:07 Levente Polyak via arch-devops escreveu:
we have been discussing this in a small round and want to transition the hetzner billing directly to SPI. This requires them to access the account once to insert the billing data in the accounting page.
All this will be done in a secure manner, however even through we have two-factor in place we may want to change the password afterwards.
Did we ever explore the virtual card number option with them, at all? I'm not comfortable with this, but as long as there's no other option, we do it and change password and 2FA master seed.
Regards, Giancarlo Razzolini
Neither do I, but no, there is no virtual credit card or other option available. We won't hand over the 2FA seed so nobody will need to change their 2FA setup.
I tried finding a better way, but there is none :S We already trust SPI with our value, so I don't think this is really an issue if we swap the first-factor afterwards.
FYI: The Hetzner SPI payment handover has been finished. I've changed our password before the online meeting to something temporary and handed it out via PGP to SPI. I've changed it back to the original password now, so there won't be any actions required on devops member side and the password inside the vault is the functional one.