This ticket is for discussing the implications of deploying a Ganeti write-capable user. There may be some issues with having this in the wild even if it's in Spicerack which is already semi-cordoned, but it gives anyone with sudo ability in spicerack the ability to manipulate Ganeti things which may present an issue.
Discuss!