Hide use of jump host

jpmens1 · March 10, 2020, 3:26pm

Is there a preferred/documented/correct way of hiding the fact that an SSH jump host is being used? I’d like to avoid having to use, say, a group variable ansible_ssh_common_args, and the only other method which has worked for me is to add a configuration to /etc/ssh/ssh_config.d/90-jpmens.conf and adding IdentityFile and ProxyCommand for Host *

Any other suggestions?

-JP

Kadel-Garcia_Nico · March 12, 2020, 8:17pm

Define “hiding the fact”. It’s possible to do quite a lot with $HOME/ssh/config, for example, or /etc/ssh/ssh_config. But “hiding the SSH jumpgate” is kind of like “hiding the man-in-th-middle monitor from your browser”. It creates a raft of security issues.

Nico Kadel-Garcia

Senior DevOps Engineer

Cengage Learning

200 Pier Four Blvd.

Boston, MA 02210

nico.kadel-garcia@cengage.com

Topic		Replies	Views
AWX credential to access jumphost used in proxycommand directive AWX Project awx	7	5	December 5, 2022
SSH ProxyCommand on AWX without writing SSH key in plain text to awx_task container? AWX Project awx	2	2	February 18, 2019
How to use jump/gateway hosts Ansible Project	12	3	October 5, 2013
Isolated nodes workaroud using jump hosts AWX Project awx	5	4	January 9, 2019
Can you use a Bastion Host / Jump Host without an ssh key for network device access in AWX? AWX Project awx , aws	0	9	July 8, 2020

Hide use of jump host

Related topics