Displaying 1 result from an estimated 1 matches for "4fdc5ecd".
2018 Oct 02
2
Per host key authentication
Definitely considered that. Running different VPNs and even running
different instances of the daemon on different ports. But, as you
rightly pointed out: *additional complexity*.
It basically comes down to: what if you have a bad actor who needs
credentials revoked immediately?
We have a way of doing this already, but it can take up to 5 minutes to
cycle through every machine on the network -