DevOps Stack Exchange
DevOps Stack Exchange

Questions tagged [four-eyes]

For questions about the four-eye principle (also known as the two-man rule), a security precaution that requires at least two separate people to perform an action. Use this tag for questions about implementing and using the four-eye principle in the context of DevOps.

The four-eye principle or two-man rule is a security precaution that requires at least two separate people to perform an action. It is often used to mitigate the risk of an individual acting in their own interests.

3 questions
24
votes
3 answers

What are possible implementations (or examples) of the four-eyes principle?

Michael Grünewald recently posted this comment: A very important method you do not mention is the “four-eyes principle” which is used in the finance – either as a regulatory obligation or as a safe-guard. In the software industry it is implemented…
Pierre.Vriens
  • 7,225
  • 14
  • 39
  • 84
13
votes
2 answers

How to implement the four-eyes principle for emergency fixes?

Consider this scenario (any comparison with real world situations is purely by accident): 3:07 am: incoming support call "Something in production went down, I need your help!". 3:12 am: connected to the system (logon accepted) ... and no time for…
Pierre.Vriens
  • 7,225
  • 14
  • 39
  • 84
8
votes
1 answer

Can GitHub's Pull Request model be used for implementing post approvals?

The accepted answer to "What are possible implementations (or examples) of the four-eyes principle?" suggests that GitHub's Pull Request model is a possible implementation. And my own answer to "How to implement the four-eyes principle for emergency…
Pierre.Vriens
  • 7,225
  • 14
  • 39
  • 84