I noticed at my customer's organisation that there is a proxy breaking the https flow. Certificates do not belong to the https web site, but to the organisation itself. They are using it for scanning data and avoid viruses and guess other things.
I provide some cloud services, which I manage through Shell in a Box: an Ajax terminal emulator, over https. Obviously, the passwords I use will be read in clear text thanks to the proxy.
How can I avoid this weakness? Could we imagine to implement end-to-end encryption at Shell in a Box level?
Hi, I have installed SIAB 2.20 version in redhat linux server to use the CGI mode using shell script which works fine. But, when I do the same in Ubuntu 18.04 server its throwing "Unable to connect" error in browser. It's development environment so I even disabled firewall.
Here is the link I followed to set up SIAB: https://www.tecmint.com/shell-in-a-box-a-web-based-ssh-terminal-to-access-remote-linux-servers/
my shell script similar to this one: shellinabox/shellinabox#260
command I'm using in script: shellinaboxd -t --cgi -s /:SSH:$parms
URL to access script: http://<server-ip>/cgi-bin/ssh.sh?<destination-server-ip>