Posts

Showing posts from July, 2022

MeshCentral - CrowdSec, LDAP, CAPTCHA, DNS Multi-Relay and more

Image
MeshCentral has kept up its evolution with many more security related improvements. The big one this week is the integration of a CrowdSec bouncer that is now built-into MeshCentral to allow rapid and collective reactions to internet threats. We also have an improved LDAP integration with account images, optional CAPTCHA for new accounts on the login screen, a powerful improvement to DNS web relay to allow multiple HTTP/HTTPS session at the same time and more improvements to MeshCentral Router and the MeshCentral web site. On a personal note, I will be taking vacations from September 7th to October 19th to mostly travel and relax in Europe. In any case, here are this week’s developments in detail: CrowdSec bouncer integration . CrowdSec is a French company that runs a free, open source, community driven IP address reputation service. Servers install the CrowdSec agent and notify the CrowdSec server of detected threats and from what IP addresses they are coming from which is then sen

MeshCentral - Web Relay, Per-Account SSH, Web-RDP mouse cursor and more

Image
The big new MeshCentral feature this week is web relay, which makes it easy to access any web site that is on any private network that has a MeshAgent is running on it without using any routing software or VPN. This has been a feature that was requests by the community for a long time, since MeshCentral runs within a browser and can route traffic to any network when a MeshAgent is running, it should be possible to click on a link and access remote sites. However, this is much more difficult than it would first appear since the MeshCentral server needs impersonate a remote site. On top of web relay, we have a laundry list of new features including pre-account SSH credentials, improvements to Web-RDP, mouse wheel configuration and more. In detail: Web Relay . We have a video demonstration of this feature here . This new feature allows the MeshCentral server to “impersonate” a remote web site and route all the requests thru a remote agent to a designated target. It allows users to quickly