Pangolin, an open-source remote access platform, has issued version 1.16, introducing an SSH authentication daemon and other enhancements. The update integrates SSH access with the platform's identity system, using certificate-based authentication. It also improves resource visibility and adds server-side data processing features.
Pangolin is an open-source, self-hosted identity-based remote access platform that combines a tunneled reverse proxy with zero-trust VPN-style access. The release of version 1.16, announced on February 28, 2026, brings several updates aimed at enhancing security, usability, and performance. The primary addition is the SSH auth-daemon, which allows administrators to integrate SSH access directly with Pangolin's identity system. This feature enables certificate-based authentication tied to user identities, removing the reliance on static SSH keys. The auth-daemon operates as a service on infrastructure hosts, collaborating with Pangolin's networking components to handle SSH authentication requests. It generates temporary, signed certificates for login sessions, ensuring alignment with the platform's overall identity and access framework. In terms of user experience, non-admin and member landing pages now display lists of accessible private resources, providing clearer visibility without requiring elevated permissions. The update also implements server-side pagination, filtering, sorting, and search capabilities for major tables. This shift in data processing to the server side boosts performance and scalability, particularly for environments with large datasets of users, resources, or policies, resulting in more responsive interfaces for administrators. Additional improvements include expanded branding options, such as support for pathnames in logo URLs, which facilitate customized deployments. Users gain the ability to delete their accounts from the profile page, and the installer script now features better user prompts to streamline setup. For detailed changes, the changelog is available on the project's site. The announcement was made by Bobby Borisov, editor-in-chief at Linuxiac, who has over 20 years of experience as a Linux professional.
