On Thu, 14 Mar 2019 at 07:09, Adam Goryachev <
user-92fd6827f6ae@xymon.invalid> wrote:
...
I mostly understand, and think I agree with most of the above. At the end
of the day, the solution needs to be:
a) backwards compatible, so you can still accept plain, unsigned,
unencrypted connections from the coffee maker in the corner
b) simple to install and maintain, and robust. If it's too hard to install
or maintain, then people won't want to use it.
...
I agree with the recent comments, but I will just add:
c) automatable - we have automated client deployment and adding of the
appropriate config to the server via Ansible, and it would be good to be
able to continue to use Ansible in the future.
Kind regards,
SebA