dstack is an open-source alternative to Kubernetes, designed to simplify development, training, and deployment of AI across any cloud or on-prem. It supports NVIDIA, AMD, and TPU.
At the moment, it's not possible to use passphrase-protected (i.e. encrypted) SSH keys in the on-prem fleet configuration. Unencrypted SSH keys have a greater security risk.
Solution
There should be a way to securely deliver SSH keys and/or passphrases to the dstack server, at least without using unencrypted keys stored on the disk on the client's side.
Workaround
No response
Would you like to help us implement this feature by sending a PR?
Problem
At the moment, it's not possible to use passphrase-protected (i.e. encrypted) SSH keys in the on-prem fleet configuration. Unencrypted SSH keys have a greater security risk.
Solution
There should be a way to securely deliver SSH keys and/or passphrases to the dstack server, at least without using unencrypted keys stored on the disk on the client's side.
Workaround
No response
Would you like to help us implement this feature by sending a PR?
No