This event has ended. Visit the official site or create your own event on Sched.
Venue Map: Click here
Back To Schedule
Thursday, October 12 • 2:15pm - 3:00pm
How Yelp Learned to Trust Puppet Agent Security in a Cloudy World – Kyle Anderson, Yelp

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Puppet autosigning should send a chill up any security-minded Operations engineer. It does for me. If you can't trust the Puppet Agent, then you can't trust the security of anything *deployed* by Puppet. In this session you will watch Yelp's journey from using naive autosigning (and not trusting anything from Puppet) to a real autosigning policy that we can trust. Once in place, we can move all of the poorly-implemented alternative security and secret mechanisms into something sane: Puppet. Once you can trust Puppet again, you don't have to fight your tools, and you can instead build on top of them!

avatar for Kyle Anderson

Kyle Anderson

Site Reliability Engineer, Yelp
Kyle is an SRE at Yelp.

Thursday October 12, 2017 2:15pm - 3:00pm PDT
Track 5: Imperial Ballroom A