zlacker

[return to "Ask HN: How do you safely give LLMs SSH/DB access?"]
1. JoshTr+Vp[view] [source] 2026-01-14 20:24:50
>>nico+(OP)
Don't.

Among the many other reasons why you shouldn't do this, there are regularly reported cases of AIs working around these types of restrictions using the tools they have to substitute for the tools they don't.

Don't be the next headline about AI deleting your database.

◧◩
2. coding+0R[view] [source] 2026-01-14 21:59:05
>>JoshTr+Vp
You need to secure the account an LLM-based app runs under, just like you would any user, AI or not. When you hire real people, do you grant them full privileges on all systems and just ask them not to touch things they shouldn't? No, you secure their accounts to the specific privileges they need, and no more. Do the same with AI.
[go to top]