Web based ssh client

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for huashengdun from gravatar.com huashengdun

Unverified details

These details have not been verified by PyPI
Project links
GitHub Statistics

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Meta

License: MIT

Author: Shengdun Hua

Classifiers

Project description

WebSSH

Build Status codecov PyPI - Python Version PyPI

Introduction

A simple web application to be used as an ssh client to connect to your ssh servers. It is written in Python, base on tornado and paramiko.

+---------+     http     +--------+    ssh    +-----------+
| browser | <==========> | webssh | <=======> | ssh server|
+---------+   websocket  +--------+    ssh    +-----------+

Features

  • SSH password authentication supported, including empty password.

  • SSH public-key authentication supported, including DSA RSA ECDSA Ed25519 keys.

  • Encrypted keys supported.

  • Fullscreen terminal supported.

  • Terminal window resizable.

  • Auto detect the ssh server’s default encoding.

Preview

Login Terminal

Requirement

  • Python 2.7/3.4+

Instructions

pip install webssh
wssh

Options

# listen address and port
wssh --address='0.0.0.0' --port=8000

# missing host key policy
wssh --policy=reject

# logging level
wssh --logging=debug

# log to file
wssh --log-file-prefix=main.log

# more options
wssh --help

Tests

Use unittest to run all tests

python -m unittest discover tests

Use pytest to run all tests

python -m pytest tests

An example of config for running this app behind an Nginx server

location / {
    proxy_pass http://127.0.0.1:8888;
    proxy_http_version 1.1;
    proxy_read_timeout 300;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection "upgrade";
    proxy_set_header Host $http_host;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Real-PORT $remote_port;
}

Tips

  • Try to use Nginx as a front web server (see config example above) and enable SSL, this will prevent your ssh credentials from being uncovered. Also afterwards the communication between your browser and the web server will be encrypted as they use secured websockets.

  • Try to use reject policy as the missing host key policy along with your verified known_hosts, this will prevent man-in-the-middle attacks. The idea is that it checks the system host keys file(“~/.ssh/known_hosts”) and the application host keys file(“./known_hosts”) in order, if the ssh server’s hostname is not found or the key is not matched, the connection will be aborted.

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for huashengdun from gravatar.com huashengdun

Unverified details

These details have not been verified by PyPI
Project links
GitHub Statistics

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Meta

License: MIT

Author: Shengdun Hua

Classifiers

Release history Release notifications | RSS feed

1.6.2

1.6.1

1.6.0

1.5.3

1.5.2

1.5.1

1.5.0

1.4.5

1.4.3

1.4.2

1.4.0

1.3.0

1.2.0

1.1.1

1.1.0

1.0.3

1.0.2

1.0.1

1.0.0

0.9.0

0.8.0

0.7.3

0.7.2

0.7.1

0.7.0

0.6.1

0.6.0

0.5.0

0.4.6

0.4.1

0.4.0

0.3.9

0.3.5

0.3.3

This version

0.3.2

0.3.1

0.3.0

0.2.6

0.2.5

0.2.3

0.2.2

0.2.1

0.2.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

webssh-0.3.2.tar.gz (126.4 kB view hashes)

Uploaded Source

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page