alina🐾💖✨🏳️‍⚧️May 4
i dont want to leave my prometheus (metrics, not dashboard) endpoints unsecured and i cant decide which layer i should implement it on so i'll just do whatever the result of this poll is gonna be
oauth2
26.3%
LDAP??
7.9%
route between VRFs with bird2 and hope no one gets into the network namespace
5.3%
tun/tap wireguard p2p interfaces per namespaced systemd service squared (been there, done that)
23.7%
mTLS (by abstracting lego with nix)
21.1%
mTLS but cert-manager in k8s
15.8%
Poll ended at .
Show threadRyan Castellucci (they/them) May 4
@alina I don't know what you're working on, but mTLS is a mistake.
Show threadalina🐾💖✨🏳️‍⚧️May 4

@ryanc how so?

i want to safely scrape prometheus exporters with victoriametrics across the internet and stuff that into grafana without worrying about exposed metrics endpoints

Show threadRyan Castellucci (they/them) May 4
@alina it's just a massive pain in the arse to work with
Show threadDenys Holius
@ryanc @alina what do you mean? :D
May 11 at 3:02pmWeb