Closed arjan-s closed 3 years ago
Hi. Two things:
1.) this project does not seem to be maintained anymore (see issue #42). I've continued development on this project here: https://github.com/jtesta/ssh-audit.
2.) if you can expose a tunnel to each server, then ssh-audit can scan it. I don't so much know how ProxyJump works under the hood, but I suspect that getting ssh-audit to work automatically through it would take a lot of work; it would be easier to just start a tunnel, run the scan, then stop the tunnel.
On 10/5/20 11:38 AM, arjan-s wrote:
In my case I can only reach my servers through a ProxyJump in my SSH configuration. It seems there currently isn't a way to run ssh-audit against those servers behind a jump host. I would like to request a feature to support this scenario.
— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub https://github.com/arthepsy/ssh-audit/issues/48, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAWYA64EMMDNHLN7SHREW3DSJHR55ANCNFSM4SE3G3EQ.
-- Joseph S. Testa II Founder & Principal Security Consultant Positron Security
Whoops, thanks for pointing me to the right project! And thanks for your answer. I will work around it with a script then.
In my case I can only reach my servers through a ProxyJump in my SSH configuration. It seems there currently isn't a way to run ssh-audit against those servers behind a jump host. I would like to request a feature to support this scenario.