|
|
(5 intermediate revisions by the same user not shown) |
Line 1: |
Line 1: |
| GateOne is an entirely web-based ssh-gateway. | | GateOne is a web-based ssh-gateway. |
|
| |
|
| = Install = | | = Documentation = |
| <blockquote> | | <blockquote> |
| == Linux == | | {| class="wikitable" |
| <blockquote> | | |- |
| <syntaxhighlight lang="bash"> | | | github || https://github.com/liftoff/GateOne |
| cower -d gateone-git
| | |- |
| makepkg -s
| | |} |
| sudo pacman -U gateone*
| | </blockquote><!-- Documentation --> |
|
| |
|
| ## run gateone to create default config
| | = Notes = |
| sudo gateone
| |
| </syntaxhighlight>
| |
| </blockquote><!-- Linux -->
| |
| | |
| == FreeBSD ==
| |
| <blockquote> | | <blockquote> |
| <syntaxhighlight lang="bash">
| | {| |
| sudo pip install gateone
| | |- |
| echo "gateone_enable=\"YES\"" > /etc/rc.conf
| | | [[gateone install]] |
| | | |- |
| ## gateone is written for linux, and expects some
| | | [[gateone configuration]] |
| ## of the linux devfs stuff. make sure to enable
| | |- |
| ## the pty kernel-module.
| | | [[gateone usage]] |
| ##
| | |- |
| ## gateone can be run within a jail as well, so long
| | |} |
| ## as pty kernel-module has been enabled on the host.
| | </blockquote><!-- Notes --> |
| kldload pty
| |
| echo "pty_load=\"YES\"" > /boot/loader.conf
| |
| | |
| | |
| ## as root, setup the initial configuration
| |
| su
| |
| gateone
| |
| | |
| ## the site is currently only available on the localhost,
| |
| ## to allow it's use on the rest of the local network,
| |
| #### /etc/gateone/conf.d/10server.conf
| |
| "origins": ["localhost", "127.0.0.1", "192.168.1.*"]
| |
| ####
| |
| | |
| ## restart gateone as root (you should be able to access it at https://lavos
| |
| | |
| ## now for some reason the service version of this does not work...
| |
| </syntaxhighlight>
| |
| | |
| {{ todo |
| |
| Currently the FreeBSD service starts gateone, but does it is unable
| |
| to start a terminal session. The workaround is starting it manually in a shell.
| |
| | |
| I'm leaving this alone for now, I'm running
| |
| out of quiet time, and I'd like to play some games :)
| |
| }}
| |
| | |
| </blockquote><!-- FreeBSD -->
| |
| </blockquote><!-- Install -->
| |
| | |
| | |
| = Usage =
| |
| <blockquote>
| |
| == SSH keys ==
| |
| <blockquote>
| |
| Not Supported yet.
| |
| </blockquote><!-- SSH keys -->
| |
| </blockquote><!-- Usage -->
| |
| | |
| = Setup =
| |
| <blockquote>
| |
| == secure SSH in steam overlay ==
| |
| <blockquote>
| |
| The steam-browser is fairly primitive, and it does not allow you to temporarily
| |
| accept SSL certificates (and self-signed certs are invalid). That means that if you
| |
| want to use GateOne from the steam overlay, you'll need to broadcast over HTTP, and
| |
| take your own measures to encrypt your traffic.
| |
| | |
| Fortunately, you can serve HTTP to the localhost only, and forward the localhost ports
| |
| to the remote machine using SSH tunnels (secure). Horay! Steam is useable now!
| |
| | |
| '''(host) config'''
| |
| <syntaxhighlight lang="bash">
| |
| #### /etc/gateone/conf.d/10server.conf
| |
| "origins": [ "127.0.0.1" ], ## we will be using unsecure HTTP traffic, make sure
| |
| ## that gateone is only being served to the localhost.
| |
| "disable_ssl":true, ##
| |
| </syntaxhighlight>
| |
| '''(host) run gateone '''
| |
| <syntaxhighlight lang="bash">
| |
| su
| |
| gateone
| |
| </syntaxhighlight>
| |
| | |
| ''' (client) forward ports to localhost using ssh'''
| |
| <syntaxhighlight lang="bash">
| |
| ssh -p 8610 -L 443:localhost:443 will@lavos ## forward remote port 443 to localhost
| |
| ## (-N -f flags do not work in git-bash)
| |
| </syntaxhighlight>
| |
| | |
| ''' (client) in steam-browser '''
| |
| <syntaxhighlight lang="bash">
| |
| http://localhost:443 ## BOOM! gateone!
| |
| </syntaxhighlight>
| |
| | |
| </blockquote><!-- secure SSH in steam overlay -->
| |
| </blockquote><!-- Setup --> | |