Hi Mike,
thanks for your answer. You are right, it is no security issue.
I tried out your suggestion and configured no session for the user,
after that i kick of the active session and he could not connect again.
He's still logged in into the guac-client, but he can't do anything.
thank's for y
On Sun, Jan 14, 2018 at 11:46 PM, Michael Niehren
wrote:
> Hi together,
>
> i see an security issue in the following scenario:
>
First, if you think you've found a problem with security implications,
*please do not post about it in a public forum*. Follow responsible
disclosure practices, as des
Hi together,
i see an security issue in the following scenario:
Let's say, we have an user for which are 2 sessions configured. Now the
user has been logged in into the guac-client and is connected to 1 session.
I see, that the user does bad things in his session and i want do kick it
off and di
