[RPKI-Discuss] [Community-Discuss] 06 April 2019 RPKI incident - Postmortem report
Amreesh Phokeer
amreesh at afrinic.net
Wed Apr 10 19:25:04 UTC 2019
Hi Noah,
> On 10 Apr 2019, at 23:13, Noah <noah at neo.co.tz> wrote:
>
> Just curious could a bash/python script + cron locally on the Offline CA box achieve the same level of automation monthly without any manual intervention from humans.
>
> The human manual involvement can still be automated local to the same offline box imho.
No because:
(1) the Offline CA is kept offline (shutdown) in a secured environment and brought up only at the time of the refresh.
(2) the box is not physically connected, so the CRLs and MFTs files need to be copied manually to the online repository.
—
Amreesh
More information about the RPKI-Discuss
mailing list