What does HackerNews think of teleport?

The easiest, most secure way to access infrastructure.

Language: Go

#7 in Go
#5 in Go
#2 in Kubernetes
#3 in PostgreSQL
#5 in Security
I work on the Desktop Access feature for Teleport: https://goteleport.com/docs/desktop-access/getting-started/

The tool itself is open core: https://github.com/gravitational/teleport

Most of the desktop access stuff is open source. (The only desktop related thing that's proprietary is our tool that allows for access to machines not connected to Active Directory). A sizeable chunk of the desktop access code is even Written In Rust™: https://github.com/gravitational/teleport/tree/master/lib/sr...!

Very reminiscent of the Teleport access proxy which started out as a SSH proxy but now also supports a bunch of other protocols: https://github.com/gravitational/teleport
Because it's not so easy to setup and manage? Maybe it will become more popular with tools like https://github.com/gravitational/teleport
Sasha, CTO @ Teleport here.

I agree, our enterprise product is quite expensive. Let me explain why:

* We are going through several security audits by third party agencies several times per year. We are trying to hire the best security agencies to audit our code and it is quite expensive.

* We are recruiting globally and try to place our comp at 90th+ percentile of the compensation as listed in opencomp.com and other sources we have access to.

* Our sales process also takes time, and the sales team employs sales engineers, sales and customer success specialists to assist with deployments of such a critical piece of the infrastructure.

* For all our employees we have wellness benefits for home office improvement, personal development, healthcare packages.

All of these factors above add up and we charge a lot for building a quality security product supported 24/7 across the globe.

However, this might not work for everyone, and we have a completely free and open source version that people can use without ever talking to our sales team:

https://github.com/gravitational/teleport

Teleport (YC S15) | Backend Engineer | US, Europe, Canada | https://goteleport.com

Do you enjoy building security and deployment tools for other engineers? Join us to hack on https://github.com/gravitational/teleport anywhere in the U.S, Canada, UK, Ireland, Portugal, Australia, and Poland. Most of our code is Go, we have very little technical debt, our codebase is clean and small.

We expect you to be comfortable with the following:

* Go or Rust * Linux, networking. * Scalability or security experience for systems software is welcome.

We’re looking for senior engineers to join the Teleport team. Teleport is a company started by engineers to build products for engineers. We are a stable and growing company.

We offer:

* Competitive salary and equity. * Work anywhere in the U.S, Canada or Europe

Apply: https://jobs.lever.co/teleport

We are Backend, Security, Full-stack Engineers and SREs.

What to expect once you apply:

* We will send you a 20-30 minute programming quiz * You will join 30 minute intro call and we will walk you through the compensation, interview process and requirements.

https://github.com/gravitational/teleport/ has the option to use it, but it only uses it as a key value store.

CGO isnt too big a problem and if it is a real dealbreaker something like https://pkg.go.dev/modernc.org/sqlite will work as it transpiled the c into go and passes the sqlite test suite. I think there is performance degradation with writes but reads are still pretty quick.

I believe there are several implementations built off the golang implementation (https://pkg.go.dev/golang.org/x/crypto/ssh) of SSH protocol such as Teleport (https://github.com/gravitational/teleport/)

I'm not familiar with additional approaches, and Teleport is a very different approach than tinyssh, focused on more features and controls than regular SSH. I imagine there are several other good options using the golang libs, or in theory someone could build their own limited implementation as an alternative.

And full disclosure, I work for Teleport, but my comments are my own.

Teleport (YC S15) | Backend, Fullstack, Frontend Engineer | US, Europe, Canada, Brazil, Australia, Remote OK | https://goteleport.com

Do you enjoy building security and deployment tools for other engineers? Join us to hack on https://github.com/gravitational/teleport anywhere in the U.S, Canada, Europe, Brazil, Australia. Most of our code is Go, we have very little technical debt, our codebase is clean and small.

If you are backend and fullstack engineer, we expect you to be comfortable with the following:

  * Go or Rust for backend and Typescript for frontend engineers
  * Linux, networking.
  * Scalability or security experience for systems software is welcome.
We’re looking for senior and junior engineers to join the Teleport team. Teleport is a company started by engineers to build products for engineers. We are a stable and growing company.

We offer:

  * Competitive salary and equity.
  * 401k with company match.
  * Excellent health insurance.
  * Work anywhere in the U.S, Canada, Europe, Australia, Brazil
Apply: https://jobs.lever.co/teleport

What to expect once you apply:

  * We will send you a 20-30 minute programming quiz
  * You will join 30 minute intro call and we will walk you through the compensation,
    interview process and requirements.
  * You join a slack channel and submit a coding challenge in Golang, Rust or Typescript depending on the position, using Github.
Solutions:

https://gist.github.com/sivel/c68f601137ef9063efd7 - uses AuthorizedKeysCommand to make a remote server the authoritative source of your SSH keys, so (if you wanted to) you could make GitHub your key provider.

https://github.com/ierror/ssh-permit-a38 - 3 years old but that's not necessarily an issue

https://github.com/gravitational/teleport

Teleport (YC S15) | Backend Engineer, Full Stack Engineer | US, Europe, Canada, Remote OK | https://goteleport.com

Do you enjoy building security and deployment tools for other engineers? Join us to hack on https://github.com/gravitational/teleport anywhere in the U.S, Canada and Europe. Most of our code is Go, we have very little technical debt, our codebase is clean and small.

We expect you to be comfortable with the following:

  * Go or Rust
  * Linux, networking.
  * Scalability or security experience for systems software is welcome.
We’re looking for senior engineers to join the Teleport team. Teleport is a company started by engineers to build products for engineers. We are a stable and growing company.

We offer:

  * Competitive salary and equity.
  * 401k with company match.
  * Excellent health insurance.
  * Work anywhere in the U.S, Canada or Europe
Apply: https://jobs.lever.co/teleport

What to expect once you apply:

  * We will send you a 20-30 minute programming quiz
  * You will join 30 minute intro call and we will walk you through the compensation,
    interview process and requirements.
  * You join a slack channel and submit a coding challenge in Golang or Rust using Github.
Teleport (YC S15) | Backend Engineer | US, Europe, Canada, Remote OK | https://goteleport.com

Do you enjoy building security and deployment tools for other engineers? Join us to hack on https://github.com/gravitational/teleport anywhere in the U.S, Canada and Europe. Most of our code is Go, we have very little technical debt, our codebase is clean and small.

We expect you to be comfortable with the following:

  * Go or Rust
  * Linux, networking.
  * Scalability or security experience for systems software is welcome.
We offer:

  * Competitive salary and equity.
  * 401k with company match.
  * Excellent health insurance.
  * Work anywhere in the U.S, Canada or Europe
Apply: https://jobs.lever.co/teleport

We are Backend, Security, Full-stack Engineers and SREs.

What to expect once you apply:

  * We will send you a 20-30 minute programming quiz
  * You will join 30 minute intro call and we will walk you through the compensation,
    interview process and requirements.
  * You join a slack channel and submit a coding challenge in Golang or Rust using Github.
Teleport (YC S15) | Backend, Fullstack, Frontend Engineer | US, Europe, Canada, Brazil, Australia, Remote OK | https://goteleport.com

Do you enjoy building security and deployment tools for other engineers? Join us to hack on https://github.com/gravitational/teleport anywhere in the U.S, Canada, Europe, Brazil, Australia. Most of our code is Go, we have very little technical debt, our codebase is clean and small.

If you are backend and fullstack engineer, we expect you to be comfortable with the following:

  * Go or Rust for backend and Typescript for frontend engineers
  * Linux, networking.
  * Scalability or security experience for systems software is welcome.
We’re looking for senior and junior engineers to join the Teleport team. Teleport is a company started by engineers to build products for engineers. We are a stable and growing company.

We offer:

  * Competitive salary and equity.
  * 401k with company match.
  * Excellent health insurance.
  * Work anywhere in the U.S, Canada, Europe, Australia, Brazil
Apply: https://jobs.lever.co/teleport

What to expect once you apply:

  * We will send you a 20-30 minute programming quiz
  * You will join 30 minute intro call and we will walk you through the compensation,
    interview process and requirements.
  * You join a slack channel and submit a coding challenge in Golang, Rust or Typescript depending on the position, using Github.
Teleport (YC S15) | Backend Engineer | US, Europe, Canada, Remote OK | https://goteleport.com

Do you enjoy building security and deployment tools for other engineers? Join us to hack on https://github.com/gravitational/teleport anywhere in the U.S, Canada, Europe, and Australia. Most of our code is Go, we have very little technical debt, our codebase is clean and small.

We expect you to be comfortable with the following:

  * Go or Rust
  * Linux, networking.
  * Scalability or security experience for systems software is welcome.
We offer:

  * Competitive salary and equity.
  * 401k with company match.
  * Excellent health insurance.
  * Work anywhere in the U.S, Canada or Europe
Apply: https://jobs.lever.co/teleport

We are Backend, Security, Full-stack Engineers and SREs.

What to expect once you apply:

  * We will send you a 20-30 minute programming quiz
  * You will join 30 minute intro call and we will walk you through the compensation,
    interview process and requirements.
  * You join a slack channel and submit a coding challenge in Golang or Rust using Github.
Teleport (YC S15) | Backend Engineer | US, Europe, Canada, Remote OK | https://goteleport.com

Do you enjoy building security and deployment tools for other engineers? Join us to hack on https://github.com/gravitational/teleport anywhere in the U.S, Canada and Europe. Most of our code is Go, we have very little technical debt, our codebase is clean and small.

We expect you to be comfortable with the following:

  * Go or Rust
  * Linux, networking.
  * Scalability or security experience for systems software is welcome.
We offer:

  * Competitive salary and equity.
  * 401k with company match.
  * Excellent health insurance.
  * Work anywhere in the U.S, Canada or Europe
Apply: https://jobs.lever.co/teleport

We are Backend, Security, Full-stack Engineers and SREs.

What to expect once you apply:

  * We will send you a 20-30 minute programming quiz
  * You will join 30 minute intro call and we will walk you through the compensation,
    interview process and requirements.
  * You join a slack channel and submit a coding challenge in Golang or Rust using Github.
Teleport (YC S15) | Backend Engineer | US, Europe, Canada, Remote OK | https://goteleport.com

Do you enjoy building security and deployment tools for other engineers? Join us to hack on https://github.com/gravitational/teleport anywhere in the U.S, Canada and Europe. Most of our code is Go, we have very little technical debt, our codebase is clean and small.

We expect you to be comfortable with the following: * Go or Rust * Linux, networking. * Scalability or security experience for systems software is welcome.

We offer:

  * Competitive salary and equity.
  * 401k with company match.
  * Excellent health insurance.
  * Work anywhere in the U.S, Canada or Europe
Apply: https://jobs.lever.co/teleport

What to expect once you apply:

  * We will send you a 20-30 minute programming quiz
  * You will join 30 minute intro call and we will walk you through the compensation, interview process and requirements.
  * You join a slack channel and submit a coding challenge in Golang or Rust using Github.
Teleport (YC S15) | Backend, Frontend Engineers | US, Europe, Canada, Remote OK | https://goteleport.com

Do you enjoy building security and deployment tools for other engineers? Join us to hack on https://github.com/gravitational/teleport anywhere in the U.S, Canada and Europe. Most of our code is Go, we have very little technical debt, our codebase is clean and small.

We expect you to be comfortable with the following:

  * Go or Rust for Backend and Full-stack folks
  * Typescript, React for Frontend folks
  * Linux, networking.
  * We are looking for Windows engineers too
  * Scalability or security experience for systems software is welcome.
We’re looking for engineers to join the Teleport team. Teleport is a company started by engineers to build products for engineers. We are a stable and growing company.

Apply to this and other positions: https://jobs.lever.co/teleport

We are looking for Backend, Security, Full-stack, Front-end Engineers and SREs.

What to expect once you apply:

  * We will send you a 20-30 minute programming quiz
  * You will join 30 minute intro call and we will walk you through the compensation,
    interview process and requirements.
  * You join a slack channel and submit a coding challenge in Golang or Rust using Github.
Teleport (YC S15) | Backend Engineer | US, Europe, Canada, Remote OK | https://goteleport.com

Do you enjoy building security and deployment tools for other engineers? Join us to hack on https://github.com/gravitational/teleport anywhere in the U.S, Canada and Europe. Most of our code is Go, we have very little technical debt, our codebase is clean and small.

We expect you to be comfortable with the following:

  * Go or Rust
  * Linux, networking.
  * Scalability or security experience for systems software is welcome.
We offer:

  * Competitive salary and equity.
  * 401k with company match.
  * Excellent health insurance.
  * Work anywhere in the U.S, Canada or Europe
Apply: https://jobs.lever.co/teleport

We are Backend, Security, Full-stack Engineers and SREs.

What to expect once you apply:

  * We will send you a 20-30 minute programming quiz
  * You will join 30 minute intro call and we will walk you through the compensation,
    interview process and requirements.
  * You join a slack channel and submit a coding challenge in Golang or Rust using Github.
Disclaimer: I work at Teleport

If our Enterprise pricing is too high, take a look Teleport's open core version:

https://github.com/gravitational/teleport

Teleport (YC S15) | Backend Engineer | US, Europe, Canada, Remote OK | https://goteleport.com

Do you enjoy building security and deployment tools for other engineers? Join us to hack on https://github.com/gravitational/teleport anywhere in the U.S, Canada and Europe. Most of our code is Go, we have very little technical debt, our codebase is clean and small.

We expect you to be comfortable with the following:

Go or Rust Linux, networking. Scalability or security experience for systems software is welcome.

Teleport is a company started by engineers to build products for engineers. We are a stable and growing company.

Apply: https://jobs.lever.co/teleport

We are Backend, Security, Full-stack Engineers and SREs.

What to expect once you apply:

We will send you a 20-30 minute programming quiz

You will join 30 minute intro call and we will walk you through the compensation, interview process and requirements. You join a slack channel and submit a coding challenge in Golang or Rust using Github.

Teleport (YC S15) | Backend Engineer | US, Europe, Canada, Remote OK | https://goteleport.com

Do you enjoy building security and deployment tools for other engineers? Join us to hack on https://github.com/gravitational/teleport anywhere in the U.S, Canada and Europe. Most of our code is Go, we have very little technical debt, our codebase is clean and small.

We expect you to be comfortable with the following:

  * Go or Rust
  * Linux, networking.
  * Scalability or security experience for systems software is welcome.
We offer:

  * Competitive salary and equity.
  * 401k with company match.
  * Excellent health insurance.
  * Work anywhere in the U.S, Canada or Europe
Apply: https://jobs.lever.co/gravitational

We are looking for Backend, Security, Full-stack Engineers and SREs.

What to expect once you apply:

  * We will send you a 20-30 minute programming quiz
  * You will join 30 minute intro call and we will walk you through the compensation,
    interview process and requirements.
  * You join a slack channel and submit a coding challenge in Golang or Rust using Github.
Teleport (YC S15) | Backend Engineer | US, Europe, Canada, Remote OK | https://goteleport.com

Do you enjoy building security and deployment tools for other engineers? Join us to hack on https://github.com/gravitational/teleport anywhere in the U.S, Canada and Europe. Most of our code is Go, we have very little technical debt, our codebase is clean and small.

We expect you to be comfortable with the following:

  * Go or Rust
  * Linux, networking.
  * Scalability or security experience for systems software is welcome.
We offer:

  * Competitive salary and equity.
  * 401k with company match.
  * Excellent health insurance.
  * Work anywhere in the U.S, Canada or Europe
Apply: https://jobs.lever.co/gravitational

We are Backend, Security, Full-stack Engineers and SREs.

What to expect once you apply:

  * We will send you a 20-30 minute programming quiz
  * You will join 30 minute intro call and we will walk you through the compensation,
    interview process and requirements.
  * You join a slack channel and submit a coding challenge in Golang or Rust using Github.
Teleport (YC S15) | Backend Engineer | US, Europe, Canada, Remote OK | https://goteleport.com

Do you enjoy building security and deployment tools for other engineers? Join us to hack on https://github.com/gravitational/teleport anywhere in the U.S, Canada and Europe. Most of our code is Go, we have very little technical debt, our codebase is clean and small.

We expect you to be comfortable with the following:

  * Go or Rust
  * Linux, networking.
  * Scalability or security experience for systems software is welcome.
We’re looking for senior engineers to join the Teleport team. Teleport is a company started by engineers to build products for engineers. We are a stable and growing company.

We offer:

  * Competitive salary and equity.
  * 401k with company match.
  * Excellent health insurance.
  * Work anywhere in the U.S, Canada or Europe
Apply: https://jobs.lever.co/gravitational

What to expect once you apply:

  * We will send you a 20-30 minute programming quiz
  * You will join 30 minute intro call and we will walk you through the compensation,
    interview process and requirements.
  * You join a slack channel and submit a coding challenge in Golang or Rust using Github.
Teleport (YC S15) | Backend Engineer | US, Europe, Canada, Remote OK | https://goteleport.com

Do you enjoy building security and deployment tools for other engineers? Join us to hack on https://github.com/gravitational/teleport anywhere in the U.S, Canada and Europe. Most of our code is Go, we have very little technical debt, our codebase is clean and small.

We expect you to be comfortable with the following:

  * Go or Rust
  * Linux, networking.
  * Scalability or security experience for systems software is welcome.
We’re looking for senior engineers to join the Teleport team. Gravitational is a company started by engineers to build products for engineers. We are a stable and growing company.

We offer:

  * Competitive salary and equity.
  * 401k with company match.
  * Excellent health insurance.
  * Work anywhere in the U.S, Canada or Europe
Apply: https://jobs.lever.co/gravitational We are also looking for Full-stack Engineers, On-Call System Administrators and SRE, you can find more details on our jobs page.

What to expect once you apply:

  * We will send you a 20-30 minute programming quiz
  * You will join 30 minute intro call and we will walk you through the compensation, interview process and requirements
  * You join a slack channel and submit a coding challenge in Golang or Rust using Github
Gravitational (YC S15) | Backend Engineer | US, Europe, Canada, Remote OK | https://gravitational.com

Do you enjoy building security and deployment tools for other engineers? Join us to hack on https://github.com/gravitational/teleport anywhere in the U.S, Canada and Europe. Most of our code is Go, we have very little technical debt, our codebase is clean and small.

We expect you to be comfortable with the following:

  * Go.
  * Linux, networking.
  * Scalability or security experience for systems software is welcome.
We’re looking for senior engineers to join the Teleport team. Gravitational is a company started by engineers to build products for engineers. We are a stable and growing company. We offer:

  * Competitive salary and equity.
  * 401k with company match.
  * Offsite retreat for everyone once a year.
  * Excellent health insurance.
  * Work anywhere in the U.S.
Apply: https://jobs.lever.co/gravitational We are also looking for Full-stack Engineers, On-Call System Administrators and SRE, you can find more details on our jobs page.
The entire thing is on Github: https://github.com/gravitational/teleport

Quickstart: https://gravitational.com/teleport/docs/quickstart/

To quickly answer your question: if you rename teleport client "tsh" to "ssh", trying to use it without a certificate will trigger SSO workflow. The alternative is to issue "tsh login" CLI command in the morning.

I'm one of the maintainers of https://github.com/gravitational/teleport

Another one to look at is https://github.com/Netflix/bless

Also, if you want to stick with what you have (most likely OpenSSH), we wrote an OpenSSH guide: https://gravitational.com/blog/how-to-ssh-properly/

Check out our open core version as well: https://github.com/gravitational/teleport/

(I work at Gravitational)

Hey all, to follow up on everyone’s how it works questions - teleconsole is a demo project built a while ago by Ev, our CEO to showcase the capabilities of https://github.com/gravitational/teleport
Please check Gravitational's excellent Teleport.

Privileged access management for elastic infrastructure. https://gravitational.com/teleport

https://github.com/gravitational/teleport

ssh server trusts internal CA, an application that requires U2F login can issue 5 minute certificates signed by the CA, the ssh session does not close when the login cert expires. See https://github.com/Netflix/bless and https://github.com/gravitational/teleport
Gravitational (YC S15) | Multiple Positions | Toronto, Oakland | ONSITE REMOTE | https://gravitational.com

We are building next generation, open source systems software: Teleport [1] and Gravity [2]. We are profitable (through an open-core model) and growing quickly but we still focus on maintaining a work-life balance. We also value our craft and being nice and respectful to each other.

If you enjoy learning and creating systems engineering software as much as we do, or would like to help us sell or write about it, join us:

  * As a Sales Rep [3]
  * As a Senior Golang/Linux systems engineer, Teleport [4]
  * As a Technical Writer [5]
We have two great offices in Toronto and Oakland. For some positions you can also work anywhere from U.S.

Learn more: https://gravitational.com/about#jobs Apply: [email protected]

[1] https://github.com/gravitational/teleport [2] https://github.com/gravitational/gravity [3] https://gravitational.com/careers/sales-reps/ [4] https://gravitational.com/careers/systems-engineer-teleport/ [5] https://gravitational.com/careers/technical-content-creator/

You should take a look at https://github.com/gravitational/teleport

Disclaimer: I'm one of the contributors.

Gravitational (YC S15) | Multiple Positions | Toronto, Oakland | ONSITE | https://gravitational.com Gravitational builds open-core software to automate the delivery and operations of cloud-native software across multiple locations (multi-cloud and on-prem). We are looking for ambitious and talented people across engineering and go-to-market (sales/marketing). Here are some of the things we have built in the past: Mailgun[1], Vulcand[2], OnMetal [3]. And some of the things you will help us with currently: Teleport[4], Gravity[5], Teleconsole[6].

Open positions include:

  * Fullstack engineer (React expertise a +)
  * Head of marketing (demand gen, content marketing, dev evangelism and general growth)
  * Sales Development Reps (qualifying inbound and participating in outbound campaigns for handoff to sales reps)
  * Senior Golang/Linux systems engineer, Teleport
Locations: Toronto, Oakland, Remote Open positions on our about page and github careers: https://gravitational.com/about#jobs

https://github.com/gravitational/careers/blob/master/systems....

Apply: [email protected]

[1] https://www.mailgun.com [2] https://github.com/vulcand/vulcand [3] https://www.rackspace.com/cloud/servers/onmetal [4] https://github.com/gravitational/teleport [5] https://github.com/gravitational/gravity [6] https://www.teleconsole.com/

Gravitational (YC S15) | Multiple Positions | Toronto, Oakland | ONSITE REMOTE | https://gravitational.com

Gravitational builds open-core software to automate the delivery and operations of cloud-native software across multiple locations (multi-cloud and on-prem). We are looking for ambitious and talented people across engineering and go-to-market (sales/marketing). Here are some of the things we have built in the past: Mailgun[1], Vulcand[2], OnMetal [3]. And some of the things you will help us with currently: Teleport[4], Gravity[5], Teleconsole[6].

Open positions include:

  * Fullstack engineer (React expertise A+)
  * Sales Development Reps (qualifying inbound and participating in outbound campaigns for handoff to sales reps)
  * Senior Golang/Linux systems engineer, Teleport
Locations: Toronto, Oakland, Remote Open positions on our about page and github careers: https://gravitational.com/about#jobs

https://github.com/gravitational/careers/blob/master/systems...

Apply: [email protected]

[1] https://www.mailgun.com [2] https://github.com/vulcand/vulcand [3] https://www.rackspace.com/cloud/servers/onmetal [4] https://github.com/gravitational/teleport [5] https://github.com/gravitational/gravity [6] https://www.teleconsole.com/

Gravitational (YC S15) | Multiple Positions | Toronto, Oakland | ONSITE REMOTE | https://gravitational.com

Gravitational builds open-core software to automate the delivery and operations of cloud-native software across multiple locations (multi-cloud and on-prem). We are looking for ambitious and talented people across engineering and go-to-market (sales/marketing). Here are some of the things we have built in the past: Mailgun[1], Vulcand[2], OnMetal [3]. And some of the things you will help us with currently: Teleport[4], Gravity[5], Teleconsole[6].

Open positions include:

  * Fullstack engineer (React expertise a +)
  * Head of marketing (demand gen, content marketing, dev evangelism and general growth)
  * Sales Development Reps (qualifying inbound and participating in outbound campaigns for handoff to sales reps)
  * Senior Golang/Linux systems engineer, Teleport
Locations: Toronto, Oakland, Remote Open positions on our about page and github careers:

https://gravitational.com/about#jobs

https://github.com/gravitational/careers/blob/master/systems...

Apply: [email protected]

[1] https://www.mailgun.com [2] https://github.com/vulcand/vulcand [3] https://www.rackspace.com/cloud/servers/onmetal [4] https://github.com/gravitational/teleport [5] https://github.com/gravitational/gravity [6] https://www.teleconsole.com/

Gravitational (YC S15) | Multiple Positions | Toronto, Oakland | ONSITE REMOTE | https://gravitational.com

Gravitational builds open-core software to automate the delivery and operations of cloud-native software across multiple locations (multi-cloud and on-prem). We are looking for ambitious and talented people across engineering and go-to-market (sales/marketing). Here are some of the things we have built in the past: Mailgun[1], Vulcand[2], OnMetal [3]. And some of the things you will help us with currently: Teleport[4], Gravity[5], Teleconsole[6].

Open positions include:

  * Fullstack engineer (React expertise a +)
  * Head of marketing (demand gen, content marketing, dev evangelism and general growth)
  * Sales Development Reps (qualifying inbound and participating in outbound campaigns for handoff to sales reps)
Locations: Toronto, Oakland, Remote Open positions on our about page: https://gravitational.com/about#jobs

Contact: [email protected]

[1] https://www.mailgun.com

[2] https://github.com/vulcand/vulcand

[3] https://www.rackspace.com/cloud/servers/onmetal

[4] https://github.com/gravitational/teleport

[5] https://github.com/gravitational/gravity

[6] https://www.teleconsole.com/

Gravitational (YS S15) | Multiple Positions | Toronto, Oakland | ONSITE REMOTE | https://gravitational.com

Gravitational builds open-core software to automate the delivery and operations of cloud-native software across multiple locations (cloud and on-prem). We are looking for ambitious and talented people across engineering and go-to-market (sales/marketing). We are well-funded and profitable. We are an experienced team: we founded Mailgun[1] which was acquired by Rackspace, we created Vulcand[2] and some other cool stuff at Rackspace and are authors of Teleport[3], Gravity[4] and Teleconsole[5]. Open positions include:

  * Front-end engineer (marketing focused, React expertise a +)
  * Head of marketing
Locations: Toronto, Oakland, Remote

Open positions on our about page: https://gravitational.com/about#jobs

Contact: [email protected]

[1] https://www.mailgun.com

[2] https://github.com/vulcand/vulcand

[3] https://github.com/gravitational/teleport

[4] https://github.com/gravitational/gravity

[5] https://www.teleconsole.com/

Gravitational Inc | Toronto, Canada | Software Engineer | Onsite | https://gravitational.com

About us

Gravitational, an early stage systems & cloud startup in San Francisco, is looking for ambitious and talented people. We are well-funded by fantastic Silicon Valley investors. We are an experienced team: we founded Mailgun [1] which was acquired by Rackspace, we created Vulcand [2] and some other cool stuff [3] at Rackspace and are authors of Teleport [4] and Teleconsole [5].

We are hackers. We love Linux and low level systems programming and we love helping open source communities and other engineers to get things done. Our stack is 100% Linux and Golang with JavaScript/React for dynamic web front-ends.

We offer competitive compensation and benefits (including a founder shares equity grant, platinum level healthcare insurance, commuter benefits and a stocked kitchen).

About you

For this role we're looking for a generalist full-stack software engineer, preferably located in Toronto, Canada (but we're willing to consider exceptional candidates elsewhere). You understand how computers work and what role an operating system plays? You know why the Linux kernel is written in C and not any other language? Most likely we'll want to talk to you.

Responsibilities

Gravitational builds tools for developers, we are not a SaaS company but we still need to develop web apps. You will own the development & maintenance of the customer portal, the web site, the blog and other web applications that we're running.

Contact

Either reach out to my personal email in my profile or [email protected]

    [1] https://mailgun.com 
    [2] http://vulcand.github.io/api.html
    [3] https://blog.rackspace.com/onmetal-the-right-way-to-scale
    [4] https://github.com/gravitational/teleport
    [5] https://www.teleconsole.com
Disclosure: I work at the company that created Teleport.

Teleport [0] should hopefully make it easier to use certificates.

An alternative implementation is Netflix’s Bless [1].

[0] https://github.com/gravitational/teleport

[1] https://github.com/Netflix/bless

Gravitational (YS S15) | Devops, Solutions Engineer | Toronto, Oakland | ONSITE REMOTE https://gravitational.com

Gravitational, systems & cloud startup in Oakland and Toronto, is looking for ambitious and talented people. We are well-funded by fantastic Silicon Valley investors. We are an experienced team: we founded Mailgun[1] which was acquired by Rackspace, we created Vulcand[2] and some other cool stuff at Rackspace and are authors of Teleport[3], Telekube[4] and Teleconsole[5]

  * Solutions Engineer (Terraform, Linux, Kubernetes, Go, Ansible)
We are looking for an experienced systems engineer who can code and can focus on our customers success - making sure our products solve their problems well. This job involves a lot of customer interactions, support, coding in Go, devops and systems engineering. Locations: Toronto, Oakland, Remote

Details: https://gravitational.com/careers/solutions-engineer/

Contact: [email protected]

[1] https://www.mailgun.com

[2] https://github.com/vulcand/vulcand

[3] https://github.com/gravitational/teleport

[4] https://gravitational.com/telekube

[5] https://www.teleconsole.com/

> consider that long-lived SSH credentials are an anti-pattern.

Exactly. Consider switching to auto-expiring SSH certificates. You can build your own certificate management using a few open tools or switch to Teleport [1] which is 100% certificate based and doesn't even support keys. Disclaimer: I am one of the contributors.

[1] https://github.com/gravitational/teleport

Gravitational (YS S15) | Devops, Solutions Engineer | Toronto, Oakland | ONSITE REMOTE https://gravitational.com

Gravitational, systems & cloud startup in Oakland and Toronto, is looking for ambitious and talented people. We are well-funded by fantastic Silicon Valley investors. We are an experienced team: we founded Mailgun[1] which was acquired by Rackspace, we created Vulcand[2] and some other cool stuff at Rackspace and are authors of Teleport[3], Telekube[4] and Teleconsole[5]

  * Solutions Engineer (Terraform, Linux, Kubernetes, Go, Ansible)
We are looking for an experienced systems engineer who can code and can focus on our customers success - making sure our products solve their problems well. This job involves a lot of customer interactions, support, coding in Go, devops and systems engineering.

Locations: Toronto, Oakland, Remote

Details: https://gravitational.com/careers/solutions-engineer/

Contact: [email protected]

[1] https://www.mailgun.com

[2] https://github.com/vulcand/vulcand

[3] https://github.com/gravitational/teleport

[4] https://gravitational.com/telekube

[5] https://www.teleconsole.com/

Gravitational (YS S15) | Solutions Engineer | Oakland, Mississauga | ONSITE, REMOTE https://gravitational.com/about#jobs

Gravitational, systems & cloud startup in Oakland and Toronto, is looking for ambitious and talented people. We are well-funded by fantastic Silicon Valley investors. We are an experienced team: we founded Mailgun[1] which was acquired by Rackspace, we created Vulcand[2] and some other cool stuff at Rackspace and are authors of Teleport[3], Telekube[4] and Teleconsole[5]

  * Solutions Engineer (Go, Terraform, Linux, Kubernetes, Go, Ansible)
We are looking for an experienced systems engineer who can code and can focus on our customers success - making sure our products solve their problems well. This job involves a lot of customer interactions, support, coding in Go, devops and systems engineering.

Locations: Toronto/Oakland

Remote: We are ok hiring senior remote engineer who can travel several times per year.

More info: https://github.com/gravitational/careers/blob/master/solutio...

Contact: [email protected]

[1] https://www.mailgun.com

[2] https://github.com/vulcand/vulcand

[3] https://github.com/gravitational/teleport

[4] https://gravitational.com/telekube

[5] https://www.teleconsole.com/

Another really easy way to do this is to simply augment or replace your openssh daemon with Teleport. We just added a feature to master that handles CA rotation automatically for an entire fleet. Check it out on GitHub https://github.com/gravitational/teleport
Gravitational, an early stage systems & cloud startup in San Francisco, is looking for ambitious and talented people.

We are well-funded by fantastic Silicon Valley investors.

We are an experienced team: we founded Mailgun[1] which was acquired by Rackspace, we created Vulcand[2] and some other cool stuff at Rackspace and are authors of Teleport[3] and Telekube[4]

  * Systems engineers (Linux, Go, Containers, Kubernetes)

  * DevOps/Implementation services (Terraform, Linux, Kubernetes, Go, Ansible)
Locations: San Francisco, Mississauga, (Remote is OK for senior engineers)

Details:

https://github.com/gravitational/careers/blob/master/devops-...

https://github.com/gravitational/careers/blob/master/senior-...

Contact: [email protected]

[1] https://www.mailgun.com

[2] https://github.com/vulcand/vulcand

[3] https://github.com/gravitational/teleport

[4] https://gravitational.com/telekube

Gravitational (YS S15) | Devops | Mississauga | ONSITE REMOTE https://gravitational.com

Gravitational, an early stage systems & cloud startup in San Francisco and Toronto, is looking for ambitious and talented people. We are well-funded by fantastic Silicon Valley investors. We are an experienced team: we founded Mailgun[1] which was acquired by Rackspace, we created Vulcand[2] and some other cool stuff at Rackspace and are authors of Teleport[3], Telekube[4] and Teleconsole[5]

  * DevOps/Implementation services (Terraform, Linux, Kubernetes, Go, Ansible)
Locations: Toronto Details: https://gravitational.com/devops-engineer/

Contact: [email protected]

[1] https://www.mailgun.com

[2] https://github.com/vulcand/vulcand

[3] https://github.com/gravitational/teleport

[4] https://gravitational.com/telekube

[5] https://www.teleconsole.com/

I don't see a link to the repository if we wanted to submit a PR.

Also might be worth mentioning that there is some alternative tooling to deliver multi-factor / single sign on and short lived certificates to SSH like teleport: https://github.com/gravitational/teleport

Disclaimer: I work for Gravitational, the company behind teleport

Quickly tested it on our OSS repo [1] and based on several averaged runs, 1.10 is both faster to compile (even not taking caching into account) and produces smaller executables, a welcome reversal of the past trend.

Compile times on Intel(R) Core(TM) i7-7820X CPU @ 3.60GHz:

  Go 1.9.2     7.2sec avg
  Go 1.10      6.1sec avg       -15.3%
Binary sizes:

  Go 1.9.2     50,727,552 bytes
  Go 1.10      49,604,128 bytes -2.2%
   
[1] https://github.com/gravitational/teleport if you want to try it yourself, run `make clean` followed by `time make`
Gravitational (YS S15) | Systems Engineer | Toronto | ONSITE https://gravitational.com

Gravitational, an early stage systems & cloud startup in San Francisco and Toronto, is looking for ambitious and talented people. We are well-funded by fantastic Silicon Valley investors. We are an experienced team: we founded Mailgun[1] which was acquired by Rackspace, we created Vulcand[2] and some other cool stuff at Rackspace and are authors of Teleport[3], Telekube[4] and Teleconsole[5]

  * Systems Engineer (Linux, Kubernetes, Go, Make)
Locations: Toronto Details: https://github.com/gravitational/careers/blob/master/senior-....

Contact: [email protected]

[1] https://www.mailgun.com

[2] https://github.com/vulcand/vulcand

[3] https://github.com/gravitational/teleport

[4] https://gravitational.com/telekube

[5] https://www.teleconsole.com/

Gravitational (YS S15) | Systems Engineer | Toronto | ONSITE https://gravitational.com

Gravitational, an early stage systems & cloud startup in San Francisco and Toronto, is looking for ambitious and talented people. We are well-funded by fantastic Silicon Valley investors. We are an experienced team: we founded Mailgun[1] which was acquired by Rackspace, we created Vulcand[2] and some other cool stuff at Rackspace and are authors of Teleport[3], Telekube[4] and Teleconsole[5]

  * Systems Engineer (Linux, Kubernetes, Go, Make)
Locations: Toronto Details: https://github.com/gravitational/careers/blob/master/senior-...

Contact: [email protected]

[1] https://www.mailgun.com

[2] https://github.com/vulcand/vulcand

[3] https://github.com/gravitational/teleport

[4] https://gravitational.com/telekube

[5] https://www.teleconsole.com/

Gravitational Teleport is frequently used for SSH behind the firewall as well, but also tackles many other aspects of SSH for organizations.

It's Open source! https://github.com/gravitational/teleport https://gravitational.com/teleport/

Disclaimer: I am employed by gravitational

Gravitational Teleport[0] is exactly what you've just imagined.

I set up the free version a few month ago. if that suffices, its really neat.

if it doesn't... the paid version probably still won't be an option, because it's silly expensive.

[0] https://github.com/gravitational/teleport

Gravitational (YS S15) | Devops | Toronto | ONSITE https://gravitational.com

Gravitational, an early stage systems & cloud startup in San Francisco and Toronto, is looking for ambitious and talented people. We are well-funded by fantastic Silicon Valley investors. We are an experienced team: we founded Mailgun[1] which was acquired by Rackspace, we created Vulcand[2] and some other cool stuff at Rackspace and are authors of Teleport[3], Telekube[4] and Teleconsole[5]

  * DevOps/Implementation services (Terraform, Linux, Kubernetes, Go, Ansible)
Locations: Toronto

Details: https://gravitational.com/devops-engineer/

Contact: [email protected]

[1] https://www.mailgun.com

[2] https://github.com/vulcand/vulcand

[3] https://github.com/gravitational/teleport

[4] https://gravitational.com/telekube

[5] https://www.teleconsole.com/

Gravitational (YS S15) | Devops | Toronto | ONSITE https://gravitational.com

Gravitational, an early stage systems & cloud startup in San Francisco and Toronto, is looking for ambitious and talented people. We are well-funded by fantastic Silicon Valley investors. We are an experienced team: we founded Mailgun[1] which was acquired by Rackspace, we created Vulcand[2] and some other cool stuff at Rackspace and are authors of Teleport[3], Telekube[4] and Teleconsole[5]

  * DevOps/Implementation services (Terraform, Linux, Kubernetes, Go, Ansible)
Locations: Toronto

Details: https://gravitational.com/devops-engineer/

Contact: [email protected]

[1] https://www.mailgun.com

[2] https://github.com/vulcand/vulcand

[3] https://github.com/gravitational/teleport

[4] https://gravitational.com/telekube

[5] https://www.teleconsole.com/

In case someone cares about these things, I compared the build times and the binary sizes for 1.9 vs 1.8.3 using the open source project we maintain [1]. This is on a 6-core i7-5280K:

Build time with 1.8.3:

   real	0m7.533s
   user	0m36.913s
   sys	0m2.856s

Build time with 1.9:

   real	0m6.830s
   user	0m35.082s
   sys	0m2.384s

Binary size:

   1.8.3 : 19929736 bytes
   1.9   : 20004424 bytes

So... looks like the multi-threaded compilation indeed delivers better build times, but the binary size has increased slightly.

[1] You can git-clone and try yourself: https://github.com/gravitational/teleport

Gravitational | Senior Devops Engineer, Senior Backend Engineer | Oakland and Toronto | ONSITE, REMOTE (for those with remote experience), https://gravitational.com/

About us:

We are well-funded, early stage systems & cloud startup headquartered in Oakland. We are an experienced team: we founded Mailgun [1] which was acquired by Rackspace, we created Vulcand [2] and some other cool stuff at Rackspace [3] and are the authors of Teleport [4], Teleconsole [5] and Telekube [6].

We love Linux and low level systems programming and we love helping open source communities and other engineers build great solutions.

Additional detail: https://github.com/gravitational/careers

Contact: [email protected]

[1] https://www.mailgun.com

[2] https://github.com/vulcand/vulcand

[3] https://www.rackspace.com/en-us/cloud/servers/onmetal/specs

[4] https://github.com/gravitational/teleport

[5] https://www.teleconsole.com/

[6] http://gravitational.com/telekube/

Gravitational (YS S15) | Devops | San Francisco & Toronto | ONSITE REMOTE https://gravitational.com

Gravitational, an early stage systems & cloud startup in San Francisco, is looking for ambitious and talented people. We are well-funded by fantastic Silicon Valley investors. We are an experienced team: we founded Mailgun[1] which was acquired by Rackspace, we created Vulcand[2] and some other cool stuff at Rackspace and are authors of Teleport[3], Telekube[4] and Teleconsole[5]

  * DevOps/Implementation services (Terraform, Linux, Kubernetes, Go, Ansible)
Locations: San Francisco, Toronto, (Remote is OK for senior engineers)

Details: https://github.com/gravitational/careers/

Contact: [email protected]

[1] https://www.mailgun.com

[2] https://github.com/vulcand/vulcand

[3] https://github.com/gravitational/teleport

[4] https://gravitational.com/telekube

[5] https://www.teleconsole.com/

Gravitational (YS S15) | Systems Engineers & Devops | San Francisco & Berlin | ONSITE REMOTE https://gravitational.com

Gravitational, an early stage systems & cloud startup in San Francisco, is looking for ambitious and talented people. We are well-funded by fantastic Silicon Valley investors.

We are an experienced team: we founded Mailgun[1] which was acquired by Rackspace, we created Vulcand[2] and some other cool stuff at Rackspace and are authors of Teleport[3] and Telekube[4]

  * Systems engineers (Linux, Go, Containers, Kubernetes)
  * DevOps/Implementation services (Terraform, Linux, Kubernetes, Go, Ansible)
Locations: San Francisco, Berlin, (Remote is OK for senior engineers)

Details: https://github.com/gravitational/careers/

Contact: [email protected]

[1] https://www.mailgun.com

[2] https://github.com/vulcand/vulcand

[3] https://github.com/gravitational/teleport

[4] https://gravitational.com/telekube

This exists - http://man7.org/linux/man-pages/man1/ssh-keygen.1.html#CERTI... - though the tooling is a bit bare-bones. There are some tools written to use certificates though, such as Netflix's BLESS (https://github.com/Netflix/bless), Gravitational Teleport (https://github.com/gravitational/teleport) and my own (https://github.com/nsheridan/cashier)
I highly recommend to move off password-based SSH at all in favor of SSH keys or (even better, certificates).

Here are some projects to help you roll out new infrastructure without SSH passwords:

https://github.com/gravitational/teleport ( I work on this one with our team) and https://github.com/Netflix/bless (heard great things about it, especially if you are using AWS)

If both machines aren't separated by NAT, you could. Except you'd need to either share you local password or an SSH key with another party, which is pretty inconvenient.

But most of the time you can't directly SSH into your laptop at home because it's behind NAT, so you need an SSH bastion, and we figured it's not expensive to host, why not put one out there for free.

And the code is all on github. Teleport (https://github.com/gravitational/teleport) is the server/proxy part.