Gateone: Difference between revisions
No edit summary |
|||
Line 1: | Line 1: | ||
GateOne is an entirely web-based ssh-gateway. | GateOne is an entirely web-based ssh-gateway. | ||
= Install = | = Install = |
Revision as of 19:34, 19 September 2021
GateOne is an entirely web-based ssh-gateway.
Install
Linux
cower -d gateone-git makepkg -s sudo pacman -U gateone* ## run gateone to create default config sudo gateoneFreeBSD
sudo pip install gateone echo "gateone_enable=\"YES\"" > /etc/rc.conf ## gateone is written for linux, and expects some ## of the linux devfs stuff. make sure to enable ## the pty kernel-module. ## ## gateone can be run within a jail as well, so long ## as pty kernel-module has been enabled on the host. kldload pty echo "pty_load=\"YES\"" > /boot/loader.conf ## as root, setup the initial configuration su gateone ## the site is currently only available on the localhost, ## to allow it's use on the rest of the local network, #### /etc/gateone/conf.d/10server.conf "origins": ["localhost", "127.0.0.1", "192.168.1.*"] #### ## restart gateone as root (you should be able to access it at https://lavos ## now for some reason the service version of this does not work...TODO:
Currently the FreeBSD service starts gateone, but does it is unable to start a terminal session. The workaround is starting it manually in a shell.
I'm leaving this alone for now, I'm running out of quiet time, and I'd like to play some games :)
Usage
SSH keys
Not Supported yet.
Setup
secure SSH in steam overlay
The steam-browser is fairly primitive, and it does not allow you to temporarily accept SSL certificates (and self-signed certs are invalid). That means that if you want to use GateOne from the steam overlay, you'll need to broadcast over HTTP, and take your own measures to encrypt your traffic.
Fortunately, you can serve HTTP to the localhost only, and forward the localhost ports to the remote machine using SSH tunnels (secure). Horay! Steam is useable now!
(host) config
#### /etc/gateone/conf.d/10server.conf "origins": [ "127.0.0.1" ], ## we will be using unsecure HTTP traffic, make sure ## that gateone is only being served to the localhost. "disable_ssl":true, ##(host) run gateone
su gateone(client) forward ports to localhost using ssh
ssh -p 8610 -L 443:localhost:443 will@lavos ## forward remote port 443 to localhost ## (-N -f flags do not work in git-bash)(client) in steam-browser
http://localhost:443 ## BOOM! gateone!