Collaborate Disseminate
On my system (Ubuntu 22.04) I have encrypted my private key with a passphrase and added it to the ssh agent with ssh-add.
On use of the key, I am prompted with the option "Automatically unlock this key whenever I’m logged in".
In… Continue reading Auto-unlock private key: which implications?
What can you do with a cheap Linux machine with limited flash and only a single free GPIO line? Probably not much, but sometimes, just getting root to prove you …read more Continue reading Getting Root on Cheap WiFi Repeaters, the Long Way Around
Maybe it’s a bit of a dumb question, but at one point I had made an FTP server, and I learned that FTPS and FTPES are FTP over a TLS connection.
So I took a look at SSH expecting that it would be basically telnet over TLS, similar to how H… Continue reading Why wasn’t SSH implemented as just telnet over TLS? [closed]
runZero published new research on Secure Shell (SSH) exposures and unveiled a corresponding open-source tool, SSHamble. This tool helps security teams validate SSH implementations by testing for uncommon but dangerous misconfigurations and software bug… Continue reading SSHamble: Open-source security testing of SSH services
I want to have a server where I can connect many computers and open reverse tunnels, and then when I want to connect to those tunnels, I will SSH into the server and forward my local connection to it, therefore not exposing the reverse tun… Continue reading Is it a good idea to run openssh-server into a docker container?
This is a follow up on When I use SSH tunneling, can I assume that the server does not need to be trusted?
When I am using an intermediate server I to connect to my endpoints via SSH tunnels, is it better if I don’t leave their ports open … Continue reading Is it better to leave my SSH reverse tunnels exposed on a server, or expose them through tcp forwarding?
I’m evaluating what is the better technique for SSHing into my machines securely, without trusting third parties.
I can connect to my machines through an SSH tunnel, but I need a server in between.
As far as I understood, the target local … Continue reading When I use SSH tunneling, can I assume that the server does not need to be trusted?
I need to programmatically configure a router. However, none of our routers support ssh! Which kind of sucks!
I’m putting together a suite of full regression tests looking at wifi connectivity. For this, it would be hugely useful to be abl… Continue reading Router with good remote access (SSH etc) [closed]
We are performing regular reinstallations of our systems which keeps on changing the servers sshd private keys due to regeneration at the end of the OS installation.
Due to this our automated systems and my users have deactivated StrictHos… Continue reading sshd HostKey hardcoding implementation
In GitHub’s Enterprise Cloud docs it says:
To use an SSH key with an organization that uses SAML single sign-on (SSO), you must first authorize the key.
I understand that organization admins could have the power to invalidate individual … Continue reading What’s the point of users having to authorize their SSH keys and tokens they created themselves when SAML single sign-on is enabled on GitHub?