automount cray on flip

[ktugan]

make/put a script as a cronjob which periodically checks if cray is mounted, if not, do it.

[hmoenck]

This might be a security risk, as it uses Ben's key to sign in into cray. Which means, his credentials need to be saved on flip and are hence exposed to all administrators, at least.

[timlandgraf]

create new user on cray (and key) exclusively for mounting, distribute the password for the key with members of the group

[ktugan]

Steps to success

1. use namespaces for docker (idea from @walachey)
2. limit root access to specific personell
3. make ssh key for cray only (if not already done)
4. make script which mounts the cray
5. chmod 400 automount_cray.sh + chmod u+s automount_cray.sh on the script
6. put it into a cronjob
7. ...?
8. profit

This will reduce the risk to sudo-people only. Advisable is to check all people who currently have root and reevaluate the need for it.