What is a Bastion?

In our efforts to constantly improve the stability and security of our platform we have moved towards using bastions for restricted, logged, secure, 2FA access to resources like EC2 instances and MySQL DBs. Bastions are centralized access points to those resources, and help us be more secure by enabling standard access controls for all resources through bastions.

Why?

Initially we had a SSH authentication workflow for developers using SSH pub-keys and roles. With the impending release of GDPR on May 25th, we looked to revamp our access process to be more secure, in particular making sure developers only have access to…

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store