[arch-devops] Hetzner billing handover to SPI
Hey folks, we have been discussing this in a small round and want to transition the hetzner billing directly to SPI. This requires them to access the account once to insert the billing data in the accounting page. All this will be done in a secure manner, however even through we have two-factor in place we may want to change the password afterwards. cheers, Levente
Em março 30, 2020 15:07 Levente Polyak via arch-devops escreveu:
Hey folks,
we have been discussing this in a small round and want to transition the hetzner billing directly to SPI. This requires them to access the account once to insert the billing data in the accounting page.
All this will be done in a secure manner, however even through we have two-factor in place we may want to change the password afterwards.
cheers, Levente
Did we ever explore the virtual card number option with them, at all? I'm not comfortable with this, but as long as there's no other option, we do it and change password and 2FA master seed. Regards, Giancarlo Razzolini
On 3/30/20 8:11 PM, Giancarlo Razzolini wrote:
Em março 30, 2020 15:07 Levente Polyak via arch-devops escreveu:
Hey folks,
we have been discussing this in a small round and want to transition the hetzner billing directly to SPI. This requires them to access the account once to insert the billing data in the accounting page.
All this will be done in a secure manner, however even through we have two-factor in place we may want to change the password afterwards.
cheers, Levente
Did we ever explore the virtual card number option with them, at all? I'm not comfortable with this, but as long as there's no other option, we do it and change password and 2FA master seed.
Regards, Giancarlo Razzolini
Neither do I, but no, there is no virtual credit card or other option available. We won't hand over the 2FA seed so nobody will need to change their 2FA setup. I tried finding a better way, but there is none :S We already trust SPI with our value, so I don't think this is really an issue if we swap the first-factor afterwards. cheers, Levente
On 3/30/20 8:19 PM, Levente Polyak via arch-devops wrote:
On 3/30/20 8:11 PM, Giancarlo Razzolini wrote:
Em março 30, 2020 15:07 Levente Polyak via arch-devops escreveu:
Hey folks,
we have been discussing this in a small round and want to transition the hetzner billing directly to SPI. This requires them to access the account once to insert the billing data in the accounting page.
All this will be done in a secure manner, however even through we have two-factor in place we may want to change the password afterwards.
cheers, Levente
Did we ever explore the virtual card number option with them, at all? I'm not comfortable with this, but as long as there's no other option, we do it and change password and 2FA master seed.
Regards, Giancarlo Razzolini
Neither do I, but no, there is no virtual credit card or other option available. We won't hand over the 2FA seed so nobody will need to change their 2FA setup.
I tried finding a better way, but there is none :S We already trust SPI with our value, so I don't think this is really an issue if we swap the first-factor afterwards.
cheers, Levente
FYI: The Hetzner SPI payment handover has been finished. I've changed our password before the online meeting to something temporary and handed it out via PGP to SPI. I've changed it back to the original password now, so there won't be any actions required on devops member side and the password inside the vault is the functional one. cheers, Levente
On Mon, 13 Apr 2020 at 18:41, Levente Polyak via arch-devops < arch-devops@lists.archlinux.org> wrote:
On 3/30/20 8:11 PM, Giancarlo Razzolini wrote:
Em março 30, 2020 15:07 Levente Polyak via arch-devops escreveu:
Hey folks,
we have been discussing this in a small round and want to transition
On 3/30/20 8:19 PM, Levente Polyak via arch-devops wrote: the
hetzner billing directly to SPI. This requires them to access the account once to insert the billing data in the accounting page.
All this will be done in a secure manner, however even through we have two-factor in place we may want to change the password afterwards.
cheers, Levente
Did we ever explore the virtual card number option with them, at all? I'm not comfortable with this, but as long as there's no other option, we do it and change password and 2FA master seed.
Regards, Giancarlo Razzolini
Neither do I, but no, there is no virtual credit card or other option available. We won't hand over the 2FA seed so nobody will need to change their 2FA setup.
I tried finding a better way, but there is none :S We already trust SPI with our value, so I don't think this is really an issue if we swap the first-factor afterwards.
cheers, Levente
FYI: The Hetzner SPI payment handover has been finished. I've changed our password before the online meeting to something temporary and handed it out via PGP to SPI. I've changed it back to the original password now, so there won't be any actions required on devops member side and the password inside the vault is the functional one.
cheers, Levente
Thanks Levente!
On 13/04/2020 18:41, Levente Polyak via arch-devops wrote:
On 3/30/20 8:19 PM, Levente Polyak via arch-devops wrote:
On 3/30/20 8:11 PM, Giancarlo Razzolini wrote:
Em março 30, 2020 15:07 Levente Polyak via arch-devops escreveu:
Hey folks,
we have been discussing this in a small round and want to transition the hetzner billing directly to SPI. This requires them to access the account once to insert the billing data in the accounting page.
All this will be done in a secure manner, however even through we have two-factor in place we may want to change the password afterwards.
cheers, Levente
Did we ever explore the virtual card number option with them, at all? I'm not comfortable with this, but as long as there's no other option, we do it and change password and 2FA master seed.
Regards, Giancarlo Razzolini
Neither do I, but no, there is no virtual credit card or other option available. We won't hand over the 2FA seed so nobody will need to change their 2FA setup.
I tried finding a better way, but there is none :S We already trust SPI with our value, so I don't think this is really an issue if we swap the first-factor afterwards.
cheers, Levente
FYI: The Hetzner SPI payment handover has been finished. I've changed our password before the online meeting to something temporary and handed it out via PGP to SPI. I've changed it back to the original password now, so there won't be any actions required on devops member side and the password inside the vault is the functional one.
Nice! Thanks for the keeping arch rolling :)
participants (4)
-
Giancarlo Razzolini
-
Jelle van der Waa
-
Levente Polyak
-
Sven-Hendrik Haase