Hey all, to follow up on everyone’s how it works questions - teleconsole is a demo project built a while ago by Ev, our CEO to showcase the capabilities of https://github.com/gravitational/teleport
Does the user have to trust the service provider, and can the service provider conceivably distribute malware or take control of the user's machine through this tool?
Cool question actually. We don’t terminate SSH, the server is used to distribute trust, so while technically possible that this could change, or there is some attack vector we did not think of, the implementation is careful to avoid that.
Wouldn't this require you to setup your own SSH session? Or does tmux have remote sessions built-in?
Edit: I just realized you can join a session through the browser, meaning the opposite party wouldn't need teleconsole / tmux / screen installed. And you can even port forward for web development which is really nice. Not trying to attack tmux. I'm just trying to find the benefits of this.
[+] [-] alexk|6 years ago|reply
[+] [-] pmoriarty|6 years ago|reply
Does the user have to trust the service provider, and can the service provider conceivably distribute malware or take control of the user's machine through this tool?
[+] [-] alexk|6 years ago|reply
[+] [-] rabidrat|6 years ago|reply
[+] [-] ossworkerrights|6 years ago|reply
[+] [-] throwaway744678|6 years ago|reply
[+] [-] mfontani|6 years ago|reply
[+] [-] nih0|6 years ago|reply
[+] [-] AtticHacker|6 years ago|reply
Edit: I just realized you can join a session through the browser, meaning the opposite party wouldn't need teleconsole / tmux / screen installed. And you can even port forward for web development which is really nice. Not trying to attack tmux. I'm just trying to find the benefits of this.
[+] [-] peter_retief|6 years ago|reply
[+] [-] nullc|6 years ago|reply
[+] [-] Xophmeister|6 years ago|reply
[+] [-] VeninVidiaVicii|6 years ago|reply
[+] [-] sys_64738|6 years ago|reply
[+] [-] enriquto|6 years ago|reply