KonsolentieRJan 11

Apache Guacamole ist ein Open Source Remote Desktop Gateway, welches Remote Sessions wie SSH oder RDP in einem Web Browser zur Verfügung stellt. In diesem Blog Post zeige ich, wie Apache Guacamole in einem lokalen Netzwerk als Jump-Host für RDP- und SSH-Verbindungen genutzt werden kann.

#guacamole #gateway #jumphost

Apache Guacamole Remote Access Gateway als lokaler Jump-Host
https://www.thierolf.org/de/posts/2026/apache-guacamole-remote-access-gateway-als-lokaler-jump-host/

Apache Guacamole Remote Access Gateway als lokaler Jump-Host

Apache Guacamole ist ein Open Source Remote Desktop Gateway, welches Remote Sessions wie SSH oder RDP in einem Web Browser zur Verfügung stellt. In diesem Blog Post zeige ich, wie Apache Guacamole in einem lokalen Netzwerk als Jump-Host für RDP- und SSH-Verbindungen genutzt werden kann.

thierolf.org
Der CleverAdmin BlogNov 19

Kennwort ändern im Remote-Desktop (RDP) – mein schneller Trick dafür

Du kennst das: Du sitzt per RDP (oder über Citrix, Wallix, Jump-Host) auf einem fremden Rechner oder Server und musst dein Benutzerkennwort erneuern. Manchmal reagiert der gewohnte Shortcut nicht, weil das Tastaturkürzel auf dem lokalen Rechner landet ode...

https://www.cleveradmin.de/blog/2025/11/rdp-passwort-aendern-cmd-trick/
#Scripte #Windows #administration #cmd #jumphost #passwort #powershell #rdp #windows

Show thread🆘Bill Cole 🇺🇦Jun 24, 2025

@clacke Yes and no…
Instead of the overhead of containers, my 'jump' machines bind specific keys to the ssh commands that do the specifically authorized next hops and (where possible) restrict to specific client IPs. The OS of those machines are only accessible over a VPN or (for some VMs) a tightly secured web interface that has VNC over WebSockets inside a private network to their virtual consoles.

#infosec #bastion #jumphost
#ssh #sshd #OpenSSH

clacke: exhausted pixie dream boy 🇸🇪🇭🇰💙💛Jun 24, 2025

When you have an ssh jumphost, the trivial setup is one that conflates OS access and application access.

The application is ssh, providing the jump to the privileged network, but ssh also allows OS access, potentially allowing privilege escalation within the jumphost.

Are people taking this seriously and e.g. running an unprivileged sshd inside a container? Access the OS over port 22 to the privileged sshd, restricting that to the segregated admin network, access the jumping over port 2222 and minimize the attack surface on the outer host?

#infosec #bastion #jumphost
#ssh #sshd #OpenSSH

1977erJan 25, 2025
ssh #jumphost|s are fun! 😀
MacLemonJun 7, 2024

Today‘s SideQuest involves debugging an #OpenSSH connection via a containerized #jumphost where some jumps fail.

In that case sshd on the jumphost logs that it cannot resolve the target host. Checking on the host shows that it can correctly resolve that hostname and even successfully connect to it.

I guess somewhere between the container and the container host, some hostname resolutions seem to fail causing SSH jumping to fail.

It involves #DNS and #SSH, yet keeps me puzzled.

#SysadminLife

SiNKMay 29, 2024

Have You used vps from ionos ?
is it any good?

#vps #publicip #remote #proxy #reverse-proxy #vpn #webserver #www #ssh #jumphost

EINGFOAN  May 20, 2023

Just discovered an #openSource #jumphost software that is really nice….

https://guacamole.apache.org/

Apache Guacamole®