(orth.uk)

319 points SpaghettiX | 1 comments | 10 Feb 22 09:18 UTC | HN request time: 0s | source

Show context

perakojotgenije ◴[10 Feb 22 12:31 UTC] No.30285198[source]▶

shameless self-promotion: https://sshreach.me

We have a ssh reverse-forwarding based solution. And unlike the Cloudflare solution you don't need to "give the keys of your house" (as someone here commented) to reach your private machines.

You can remotely open and close the tunnels through our web interface or our web API.

Plus, we have web API-based automated deployment solution if you have many clients.

replies(2): >>30285472 #>>30295186 #

op00to ◴[10 Feb 22 13:05 UTC] No.30285472[source]▶

>>30285198 #

“Your server creates a forwarding ssh tunnel to one of our publicly visible forwarding servers” seems like a huge risk for somebody else to own these “forwarding servers”. Worse than giving keys to your house? I dunno.

replies(1): >>30288892 #

1. perakojotgenije ◴[10 Feb 22 16:49 UTC] No.30288892[source]▶

>>30285472 #

Your internal computer is still protected by password and/or public/private key-pairs, so even when the tunnel is open nobody can enter your computer without having those.

It is _your_ computer that makes connection to our servers, so you are in control of everything and there is literally nothing on our forwarding servers that would allow anybody to enter your computer.

↑

SSH into private machines from anywhere using Cloudflare Tunnel