Hi - I run atuin on several personal computers and love the syncing approach but has anyone deployed atuin on production servers of any kind that they need to ssh into to work on ?
What risks are there in doing this ?
1 Like
In PRD and multiple users, i always prefer to do the simple, always!
1 Like
I do! Only on the machines that are more like “pets” than cattle, though.
It obviously depends on your risk profile, but there shouldn’t be much to worry about.
Imo the main risk is data exfiltration - if someone has Atuin installed, it’s pretty easy to copy small snippets of text cross-machine. Otherwise if one of the machines connected to your account becomes compromised, it could be possible that someone would add hostile commands that LOOK legitimate, in the hope you would execute them by mistake.
Equally, they could do the same with curl.