From mboxrd@z Thu Jan  1 00:00:00 1970
Message-ID: <2423e34dee842afe8e50088e1150889e@quintile.net>
From: "Steve Simon" <steve@quintile.net>
Date: Mon, 10 Aug 2009 10:55:58 +0100
To: corey@bitworthy.net, 9fans@9fans.net
In-Reply-To: <200908100246.38055.corey@bitworthy.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"
Content-Transfer-Encoding: 7bit
Subject: Re: [9fans] machine key, secstore key, hostowner password
Topicbox-Message-UUID: 3f6a3034-ead5-11e9-9d60-3106f5b1d025

The machine key _is_ the hostowners password, DES encrypted with
the hostowner's name, the details are in the code.

the secstore key is just that, it us useful for storing account
details that the hostowner may need - for example I keep my
sources account in hostowner's secstore so I can cpu -u bootes
to become hostowner and then do a pull.

I have to type in the hostowner's secstore key about once a year - though
it is read from the nvram un onlock the hostowners secstore on every boot
of my cpu/auth/file server.

I use the hostowner's key once a week or so to cpu in to do a pull or if
I need access to the server's /dev/kmesg or devices.

-Steve