Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://libranet.de/objects/0b6b25a8-2068-5a6e-2834-e1b070979224">clacke (clacke@libranet.de)'s status on Tuesday, 24-Jun-2025 21:05:33 JST</a><a href="https://libranet.de/profile/clacke" title="clacke@libranet.de"><img src="https://gnusocial.jp/theme/gnusocialjp/default-avatar-stream.png" width="48" height="48" alt="clacke" style="position: absolute; left: 0; top: 0;">clacke</a></section><article><p>When you have an ssh jumphost, the trivial setup is one that conflates OS access and application access.</p><p>The application is ssh, providing the jump to the privileged network, but ssh also allows OS access, potentially allowing privilege escalation within the jumphost.</p><p>Are people taking this seriously and e.g. running an unprivileged sshd inside a container? Access the OS over port 22 to the privileged sshd, restricting that to the segregated admin network, access the jumping over port 2222 and minimize the attack surface on the outer host?</p><p><a href="https://libranet.de/search?tag=infosec" rel="tag">#infosec</a> <a href="https://libranet.de/search?tag=bastion" rel="tag">#bastion</a> <a href="https://libranet.de/search?tag=jumphost" rel="tag">#jumphost</a><br><a href="https://libranet.de/search?tag=ssh" rel="tag">#ssh</a> <a href="https://libranet.de/search?tag=sshd" rel="tag">#sshd</a> <a href="https://libranet.de/search?tag=OpenSSH" rel="tag">#OpenSSH</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/5249994#notice-10301476">In conversation</a><time datetime="2025-06-24T21:05:33+09:00" title="Tuesday, 24-Jun-2025 21:05:33 JST">about 5 months ago</time> <span>from <span><a href="https://libranet.de/display/0b6b25a8-2068-5a6e-2834-e1b070979224" rel="external" title="Sent from libranet.de via ActivityPub">libranet.de</a></span></span><a href="https://libranet.de/display/0b6b25a8-2068-5a6e-2834-e1b070979224">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
clacke (clacke@libranet.de)'s status on Tuesday, 24-Jun-2025 21:05:33 JST clacke
When you have an ssh jumphost, the trivial setup is one that conflates OS access and application access.
The application is ssh, providing the jump to the privileged network, but ssh also allows OS access, potentially allowing privilege escalation within the jumphost.
Are people taking this seriously and e.g. running an unprivileged sshd inside a container? Access the OS over port 22 to the privileged sshd, restricting that to the segregated admin network, access the jumping over port 2222 and minimize the attack surface on the outer host?
#infosec #bastion #jumphost
#ssh #sshd #OpenSSH
In conversationabout 5 months ago from libranet.depermalink

Public

Embed Notice

HTML Code

Corresponding Notice