Gateone: Difference between revisions

From wikinotes
No edit summary
Line 20: Line 20:
|}
|}
</blockquote><!-- Notes -->
</blockquote><!-- Notes -->
= Install =
<blockquote>
== Linux ==
<blockquote>
<syntaxhighlight lang="bash">
cower -d gateone-git
makepkg -s
sudo pacman -U gateone*
## run gateone to create default config
sudo gateone
</syntaxhighlight>
</blockquote><!-- Linux -->
== FreeBSD ==
<blockquote>
<syntaxhighlight lang="bash">
sudo pip install gateone
echo "gateone_enable=\"YES\"" > /etc/rc.conf
## gateone is written for linux, and expects some
## of the linux devfs stuff. make sure to enable
## the pty kernel-module.
##
## gateone can be run within a jail as well, so long
## as pty kernel-module has been enabled on the host.
kldload pty
echo "pty_load=\"YES\"" > /boot/loader.conf
## as root, setup the initial configuration
su
gateone
## the site is currently only available on the localhost,
## to allow it's use on the rest of the local network,
#### /etc/gateone/conf.d/10server.conf
    "origins": ["localhost", "127.0.0.1", "192.168.1.*"]
####
## restart gateone as root (you should be able to access it at  https://lavos
## now for some reason the service version of this does not work...
</syntaxhighlight>
{{ todo |
Currently the FreeBSD service starts gateone, but does it is unable
to start a terminal session. The workaround is starting it manually in a shell.
I'm leaving this alone for now, I'm running
out of quiet time, and I'd like to play some games :)
}}
</blockquote><!-- FreeBSD -->
</blockquote><!-- Install -->


= Usage =
= Usage =

Revision as of 19:40, 19 September 2021

GateOne is an entirely web-based ssh-gateway.

Documentation

github https://github.com/liftoff/GateOne

Notes

gateone install
gateone usage

Usage

SSH keys

Not Supported yet.

Setup

secure SSH in steam overlay

The steam-browser is fairly primitive, and it does not allow you to temporarily accept SSL certificates (and self-signed certs are invalid). That means that if you want to use GateOne from the steam overlay, you'll need to broadcast over HTTP, and take your own measures to encrypt your traffic.

Fortunately, you can serve HTTP to the localhost only, and forward the localhost ports to the remote machine using SSH tunnels (secure). Horay! Steam is useable now!

(host) config 

#### /etc/gateone/conf.d/10server.conf
"origins": [ "127.0.0.1" ],						## we will be using unsecure HTTP traffic, make sure
															## that gateone is only being served to the localhost.
"disable_ssl":true,									##

(host) run gateone 

su
gateone

(client) forward ports to localhost using ssh 

ssh -p 8610  -L 443:localhost:443  will@lavos		## forward remote port 443 to localhost
																	## (-N -f flags do not work in git-bash)

(client) in steam-browser 

http://localhost:443													## BOOM! gateone!
Retrieved from "http://willpittman.net:8080/index.php?title=Gateone&oldid=27644"