Automate your DevOps environment with hyper.sh and a Yubikey
Author
Hilton D
Date Published
Hyper.sh containers make a great devops workstation for a number of reasons:
You can shut them down when not in use which saves money and also reduces the attack surface.
Hyper.sh containers have a private Layer 2 segment which can be fire-walled using security groups and which are not shared with other customers.
Hyper containers have better isolation than Docker containers (hardware isolation, just like a VM)
However starting your devops workstation every time you start the day is painful, that is why I created a little python script that uses osquery to start up my workstation when I plug in my yubikey.
Requirements
Osquery (not sure if you just need the python module or the binary as I have both)
Python (tested on 2.7)
A Yubikey, however you can change the script to use any USB device
Getting started
Install dependencies (OSX)
1sudo pip install osquery --ignore-installed six
Download hyper_saver from Github
1git clone https://github.com/hilt86/hyper_saver.git
hyper_saver takes two arguments :
1> hyper_saver.py containerName fipName
Where containerName is the name you have given your Hyper.sh container and the fipName is the name given to your floating IP!
As long as hyper_saver is running and your Yubikey is inserted to your computer’s USB port your container will run, and not run when you are not at your computer!
1Container : running ||| Yubikey : inserted