teleport
The easiest, and most secure way to access and protect all of your infrastructure.
AGPL-3.0 License
Published by russjones about 5 years ago
This release of Teleport contains a bug fix.
Description
- Fixed issue where Web UI could not connect to older nodes within a cluster. #2993
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones about 5 years ago
This release of Teleport contains a bug fix.
Description
- Fixed issue where Web UI could not connect to older nodes within a cluster. #2993
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones about 5 years ago
Warning
Pre-releases are not production ready, use at your own risk!
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download
Published by russjones about 5 years ago
This release of Teleport contains two bug fixes.
Description
- Fixed issue where new versions of tsh could not connect to older clusters. #2969
- Fixed trait encoding to be more robust. #2970
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones about 5 years ago
This release of Teleport contains two bug fixes.
Description
- Fixed issue where new versions of tsh could not connect to older clusters. #2969
- Fixed trait encoding to be more robust. #2970
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones about 5 years ago
This release of Teleport contains two bug fixes.
Description
- Fixed issue where new versions of tsh could not connect to older clusters. #2969
- Fixed trait encoding to be more robust. #2970
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones about 5 years ago
Warning
Pre-releases are not production ready, use at your own risk!
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download
Published by russjones about 5 years ago
Warning
Pre-releases are not production ready, use at your own risk!
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download
Published by russjones about 5 years ago
This release of Teleport contains a bug fix.
Description
- Fixed issue introduced in 4.0.5 that broke session recording when using the recording proxy. #2957
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones about 5 years ago
This release of Teleport contains a bug fix.
Description
- Fixed issue introduced in 3.2.8 that broke session recording when using the recording proxy. #2957
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones about 5 years ago
This release of Teleport contains a bug fix.
Description
- Fixed issue introduced in 3.1.10 that broke session recording when using the recording proxy. #2957
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones about 5 years ago
This release of Teleport contains multiple security fixes.
Description
As part of a routine security audit of Teleport, several security vulnerabilities and miscellaneous issues were discovered in Teleport 4.0, 3.2, and 3.1. We strongly suggest upgrading to the latest release.
Details
The most serious vulnerabilities (with severity high and medium) were centered around incorrect handling of session data. If an attacker is able to gain valid x509 credentials of a Teleport node, they could use the session recording facility to read/write arbitrary files on the Auth Server or potentially corrupt recorded session data.
This vulnerability can be only exploited using credentials from a previously authenticated client, there is no known way to exploit this vulnerability outside the cluster by non-authenticated clients.
Actions
To mitigate these issues, upgrade all nodes, proxies, and auth servers. Upgrades should follow the normal Teleport upgrade procedure: https://gravitational.com/teleport/docs/admin-guide/#upgrading-teleport.
Download
Download one of the following releases to mitigate the issue:
Enterprise 4.0.5
Enterprise 3.2.8
Enterprise 3.1.10
All current and previous releases of Enterprise can be downloaded from https://dashboard.gravitational.com.
Published by russjones about 5 years ago
This release of Teleport contains multiple security fixes.
Description
As part of a routine security audit of Teleport, several security vulnerabilities and miscellaneous issues were discovered in Teleport 4.0, 3.2, and 3.1. We strongly suggest upgrading to the latest release.
Details
The most serious vulnerabilities (with severity high and medium) were centered around incorrect handling of session data. If an attacker is able to gain valid x509 credentials of a Teleport node, they could use the session recording facility to read/write arbitrary files on the Auth Server or potentially corrupt recorded session data.
This vulnerability can be only exploited using credentials from a previously authenticated client, there is no known way to exploit this vulnerability outside the cluster by non-authenticated clients.
Actions
To mitigate these issues, upgrade all nodes, proxies, and auth servers. Upgrades should follow the normal Teleport upgrade procedure: https://gravitational.com/teleport/docs/admin-guide/#upgrading-teleport.
Download
Download one of the following releases to mitigate the issue:
Enterprise 4.0.5
Enterprise 3.2.8
Enterprise 3.1.10
All current and previous releases of Enterprise can be downloaded from https://dashboard.gravitational.com.
Published by russjones about 5 years ago
This release of Teleport contains multiple security fixes.
Description
As part of a routine security audit of Teleport, several security vulnerabilities and miscellaneous issues were discovered in Teleport 4.0, 3.2, and 3.1. We strongly suggest upgrading to the latest release.
Details
The most serious vulnerabilities (with severity high and medium) were centered around incorrect handling of session data. If an attacker is able to gain valid x509 credentials of a Teleport node, they could use the session recording facility to read/write arbitrary files on the Auth Server or potentially corrupt recorded session data.
This vulnerability can be only exploited using credentials from a previously authenticated client, there is no known way to exploit this vulnerability outside the cluster by non-authenticated clients.
Actions
To mitigate these issues, upgrade all nodes, proxies, and auth servers. Upgrades should follow the normal Teleport upgrade procedure: https://gravitational.com/teleport/docs/admin-guide/#upgrading-teleport.
Download
Download one of the following releases to mitigate the issue:
Enterprise 4.0.5
Enterprise 3.2.8
Enterprise 3.1.10
All current and previous releases of Enterprise can be downloaded from https://dashboard.gravitational.com.
Published by russjones about 5 years ago
This release of Teleport contains a bug fix.
Changes
- Fixed a memory leak in the cache module. #2892
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones about 5 years ago
This release of Teleport contains multiple bug fixes.
Changes
- Reduced keep-alive interval to improve interoperability with popular load balancers. #2845
- Fixed issue where non-RSA certificates were rejected when not in FIPS mode. #2805
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones over 5 years ago
This release of Teleport contains multiple bug fixes.
Changes
- Fixed an issue that caused active sessions not to be shown. #2801
- Fixed further issues with host certificate principal generation. #2812
- Fixed issue where fetching CA would sometimes return not found. #2805
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones over 5 years ago
This release of Teleport contains multiple bug fixes.
Changes
- Fixed issue that caused processes to be spawned with an incorrect GID. #2791
- Fixed host certificate principal generation to only include hosts or IP addresses. #2790
- Fixed issue preventing tsh 4.0 from connection to 3.2 clusters. #2784
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
Published by russjones over 5 years ago
This is a major Teleport release which introduces support for Teleport Internet of Things (IoT). In addition to this new feature this release includes usability, performance, and bug fixes listed below.
New Features
Teleport for IoT
With Teleport 4.0, nodes gain the ability to use reverse tunnels to dial back to a Teleport cluster to bypass firewall restrictions. This allows connections even to nodes that a cluster does not have direct network access to. Customers that have been using Trusted Clusters to achieve this can now utilize a unified interface to access all nodes within their infrastructure.
FedRamp Compliance
With this release of Teleport, we have built out the foundation to help Teleport Enterprise customers build and meet the requirements in a FedRAMP System Security Plan (SSP). This includes a FIPS 140-2 friendly build of Teleport Enterprise as well as a variety of improvements to aid in complying with security controls even in FedRAMP High environments.
Improvements
- Teleport now support 10,000 remote connections to a single Teleport cluster. Using our recommend hardware setup.
- Added ability to delete node using
tctl rm. #2685 - Output of
tsh lsis now sorted by node name. #2534
Bug Fixes
- Switched to
xdg-opento open a browser window on Linux. #2536 - Increased SSO callback timeout to 180 seconds. #2533
- Set permissions on TTY similar to OpenSSH. #2508
The lists of improvements and bug fixes above mention only the significant changes, please take a look at the complete list on Github for more.
Upgrading
Teleport 4.0 is backwards compatible with Teleport 3.2 and later. Follow the recommended upgrade procedure to upgrade to this version.
Note that due to substantial changes between Teleport 3.2 and 4.0, we recommend creating a backup of the backend datastore (DynamoDB, etcd, or dir) before upgrading a cluster to Teleport 4.0 to allow downgrades.
Notes on compatibility
Teleport has always validated host certificates when a client connects to a server, however prior to Teleport 4.0, Teleport did not validate the host the user requests a connection to is in the list of principals on the certificate. To ensure a seamless upgrade, make sure the hosts you connect to have the appropriate address set in public_addr in teleport.yaml before upgrading.
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download
Published by russjones over 5 years ago
Warning
Pre-releases are not production ready, use at your own risk!
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download