Seriously, Stop Using RSA (2019)

[YATA0]

>From what I can tell, Vault doesn't handle generating SSH keys in the first place

Nor should it. That's managed by ssh-keygen. Hello UNIX philosophy!

>so reading the docs or finding an expert on the allegedly easiest security tech wouldn't be of much help.

If you're not an expert or feel confident in secops, find someone who is. Security is obviously something that shouldn't be taken lightly.

[YATA0]

>Then using HashiCorp Vault isn't the silver bullet

Except it practically is.

That's like saying Linux isn't a silver bullet because ls doesn't make filesystems... You wouldn't use Vault to create SSH keys, nor should it. You wouldn't use ls to make filesystems, nor should it.

[dang]

We've banned this account for repeatedly breaking the site guidelines. Could you please not create accounts to do that with?

https://news.ycombinator.com/newsguidelines.html