I can’t find a definite answer on accessing cockpit from outside machines securely. Just letting it through the firewall doesn’t seem safe. It only uses basic user and password authentication – I’m not using Kerberos.
So I thought that SSHing into the machine over Internet and then forwarding 9090 port should work – it works for VNC after all. Or is it… is there any vulnerability I might be missing here?