Add support for OpenSSH user configuration files
Closed this issue · 2 comments
arjan-s commented
In my case I can only reach my servers through a ProxyJump in my SSH configuration. It seems there currently isn't a way to run ssh-audit against those servers behind a jump host.
I would like to request a feature to support this scenario.
jtesta commented
Hi. Two things:
1.) this project does not seem to be maintained anymore (see issue #42).
I've continued development on this project here:
https://github.com/jtesta/ssh-audit.
2.) if you can expose a tunnel to each server, then ssh-audit can scan
it. I don't so much know how ProxyJump works under the hood, but I
suspect that getting ssh-audit to work automatically through it would
take a lot of work; it would be easier to just start a tunnel, run the
scan, then stop the tunnel.
…On 10/5/20 11:38 AM, arjan-s wrote:
In my case I can only reach my servers through a ProxyJump in my SSH
configuration. It seems there currently isn't a way to run ssh-audit
against those servers behind a jump host.
I would like to request a feature to support this scenario.
—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub
<#48>, or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AAWYA64EMMDNHLN7SHREW3DSJHR55ANCNFSM4SE3G3EQ>.
--
Joseph S. Testa II
Founder & Principal Security Consultant
Positron Security
arjan-s commented
Whoops, thanks for pointing me to the right project!
And thanks for your answer. I will work around it with a script then.