Using libssh2 on Windows: lessons learnt
Documentation is not where libssh2 shines most. Read more »
Building libssh2 on Windows: lessons learnt
Libssh2 is written in plain C and runs on many platforms, including Windows. But to use the library on Windows, you have to build it first – and as it turns out, that is easier said than done. Read more »
Using IAP Desktop for zero-trust SSH access
IAP Desktop 2.13 now lets you connect to Linux instances by using SSH. You can run multiple SSH and Remote Desktop in parallel, all secured by Identity-Aware-Proxy. Read more »
Updating googet packages behind a proxy
Compute Engine uses googet to pre-install drivers and other critical system components on Windows VMs. But how do you update these packages if the VM does not have internet access?
Read more »
Using Google Cloud’s “Set Windows password” function on a domain controller
What happens if you use the “Set Windows password” function on a domain controller? Read more »
Preventing users from requesting Windows credentials on GCP
After creating a Windows VM on Google Cloud, users can use the Cloud Console or IAP Desktop to request login credentials. But what are the risks of letting users generate credentials, and is there a way to prevent them from doing so? Read more »
NTrace, 13 years later
13 years ago, I wrote NTrace, a dynamic function boundary tracing toolkit for Windows NT inspired by DTrace. NTrace supported both user-mode and kernel mode tracing and, like DTrace, was able to instrument machine code on the fly. Read more »
Does IAP Desktop support .rdp files, or anything similar?
If you frequently use Remote Desktop, then you might be used to creating .rdp files for the servers you connect to most often. IAP Desktop does not support .rdp files, but there is an alternative way to open IAP Desktop and connect to a server in a single click.
Read more »
What does the email_verified claim indicate in Google ID Tokens?
When you authenticate a user by using OpenID Connect and request the email scope, most identity providers add two additional claims to the ID Token, email and email_verified. The email claim does not need much explanation – but what about email_verified, what does this claim indicate and how does Google populate it?
Read more »
IAP Desktop 2.11
Yesterday I released version 2.11 of IAP Desktop. This new version introduces multi-display support and more. Read more »