Updated: Jan 24, 2020 by Pradeep Gowda.


Immutable Infrastructure

Generally – Mirage.IO etc.,

Interesting practice:

Approx. 6 months ago, a couple of the DevOps team from the BBC came and delivered a talk at UCL. It turns out that they do exactly this. In fact, they take it a step further: all SSH is proxied via an authentication agent. Then, when the SSH session has terminated, the box is scrubbed and rebuilt from a fresh image. It’s quite cool, and I think a really nice way to isolate your servers from one another, and from any rogue employee (or ex-employee) with or without intent to cause damage. Via HN