Maybe Prevent connections to Guacamole from IPs other than known IP of User Application Proxy
!335 (merged) introduced Guacamole support. We should decide whether to prevent connections to Guacamole from IPs other than known IP of User Application Proxy (e.g. via firewall ruleset, or OpenStack security group)
- To prevent malicious parties from trying to hack their way into Guacamole. This is Java, after all.
- To prevent users from accessing it insecurely? Browser would warn them anyway, but Electron may not?