Currently, the Toolforge cluster allow:
- Administrators to login as root to all nodes
- Toolforge users to login to all nodes (Grid & Kubernetes), besides just the bastions
This situation creates a few problems:
- It's hard to audit who is using the root account
- Users can run processes outside the standard channels (jsub/jstart & k8s deployments), which makes it hard to audit/account for as well