Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Activity
  • Nov 26 21:11
    noreng-jg synchronize #1463
  • Nov 26 21:11

    noreng-jg on listPms

    ui: add payment methods listing… (compare)

  • Nov 26 21:04
    henrybarreto synchronize #1400
  • Nov 26 21:04

    henrybarreto on checkPermissions

    api: fix auth with user info (compare)

  • Nov 26 20:53
    henrybarreto synchronize #1400
  • Nov 26 20:53

    henrybarreto on checkPermissions

    api: fix auth with user info (compare)

  • Nov 26 20:04
    henrybarreto synchronize #1400
  • Nov 26 20:04

    henrybarreto on checkPermissions

    api: change apicontext type to … (compare)

  • Nov 26 19:42
    noreng-jg ready_for_review #1463
  • Nov 26 18:47
    leonardojoao synchronize #1400
  • Nov 26 18:47

    leonardojoao on checkPermissions

    ui: add functionality to allow … api: fix forgotten break on mem… bin: add new line on add-user-n… (compare)

  • Nov 26 18:10
    henrybarreto synchronize #1400
  • Nov 26 18:10

    henrybarreto on checkPermissions

    bin: add new line on add-user-n… (compare)

  • Nov 26 17:56
    henrybarreto synchronize #1400
  • Nov 26 17:56

    henrybarreto on checkPermissions

    api: fix forgotten break on mem… (compare)

  • Nov 26 17:47
    henrybarreto synchronize #1400
  • Nov 26 17:47

    henrybarreto on checkPermissions

    api: fix forgotten break on mem… (compare)

  • Nov 26 17:41
    henrybarreto synchronize #1400
  • Nov 26 17:41

    henrybarreto on checkPermissions

    api: fix forgotten break on mem… (compare)

  • Nov 26 14:18
    henrybarreto unlabeled #1400
Otavio Salvador
@otavio
Hello there!
Fabiano da Rosa Gomes
@gomes-fdr
boa tarde Otavio, uma dúvida com relação ao shellhub - com o agent rodando no dispositivo que desejo acessar, eu tenho acesso aos processos do dispositivo? Pergunto pq por estar rodando em um container, imaginamos que teriamos acesso apenas aos processos do container...
Luis Gustavo S. Barreto
@gustavosbarreto
Boa tarde
Fabiano da Rosa Gomes
@gomes-fdr
opa, tudo bem Luis, pode me ajudar nessa duvida?
Luis Gustavo S. Barreto
@gustavosbarreto
Fabiano, como o container roda em modo privilegiado ele tem acesso aos processos do "host" da máquina
Então quando tu fizer SSH para o dispositivo tu vai estar "dentro" da máquina apesar do agent rodar no container
Fabiano da Rosa Gomes
@gomes-fdr
interessante - era justamente essa a nossa dúvida, pq nosso desejo é justamente controlar os processos e nossas apps que estaram rodando fora do container do agent
Luis Gustavo S. Barreto
@gustavosbarreto
Fizemos isso utilizando uma feature de "namespace" do kernel linux
Fabiano da Rosa Gomes
@gomes-fdr
grato Luis, vou levar isso adiante para iniciarmos alguns testes praticos
Luis Gustavo S. Barreto
@gustavosbarreto
Se tiver alguma dúvida no processo pode ir largando aqui que nós vamos respondendo
Fabiano da Rosa Gomes
@gomes-fdr
Muito obrigado pela atenção Luis, vamos testar e te dou um retorno na sequencia - abraço!
Otavio Salvador
@otavio
@gustavosbarreto eu revisei a PR da Domarys mas a PR nao apareceu aqui. Tinhamos que vincular os outros repositorios aqui tb.
gapaluec
@gapaluec
Can I replace port 22 with any other port number? And what all changes are required to do the same?
Luis Gustavo S. Barreto
@gustavosbarreto
@gapaluec Hi
Otavio Salvador
@otavio
@gapaluec you wish to change the port on the server side, or on the target side?
Luis Gustavo S. Barreto
@gustavosbarreto
@gapaluec Edit docker-compose.yml file and replace the port 22 with something else in ports section of ssh service
gapaluec
@gapaluec

@gustavosbarreto I did change the docker-compose.yml, but still the endpoint API was returning 22
{"api":"localhost", "ssh": "localhost:22", "mqtt": "localhost:1883"}

Also, there should be an option to change "localhost" returned by endpoint to a valid domain name / ip address... As I was trying shellhub on AWS with a domain name.

Luis Gustavo S. Barreto
@gustavosbarreto
@gapaluec
Luis Gustavo S. Barreto
@gustavosbarreto
@gapaluec can you please open a issue for this?
Luis Gustavo S. Barreto
@gustavosbarreto
Luis Gustavo S. Barreto
@gustavosbarreto
surfinside
@surfinside
Hello,
I would like mount an ssh tunnel, unfortunately I have an error
channel 2: open failed: unknown channel type: unsupported channel type
debug1: channel 2: free: direct-tcpip: listening port 443 for 10.10.10.1 port 443, connect from 127.0.0.1 port 51926 to 127.0.0.1 port 443, nchannels 4
channel 3: open failed: unknown channel type: unsupported channel type
debug1: channel 3: free: direct-tcpip: listening port 443 for 10.10.10.1 port 443, connect from 127.0.0.1 port 51927 to 127.0.0.1 port 443, nchannels 3
MyPC - > INTERNET -> ShellHub <- INTERNET <- Router (10.10.10.1/24) <- RPi (Up on ShellHub (10.10.10.xxx/24))
MyPC:443 = https://10.10.10.1
I thank you in advance
Luis Gustavo S. Barreto
@gustavosbarreto
@surfinside Are you trying to create a tunnel through ShellHub server?
I think this is not supported by ShellHub
Accoring to this the supported channel types:
"tcpip-forward":        forwardHandler.HandleSSHRequest,
"cancel-tcpip-forward": forwardHandler.HandleSSHRequest,
"tcpip-forward-connected":
direct-tcpip is not supported
surfinside
@surfinside

@gustavosbarreto Thank you for your reply
Yes, i would like create a ssh tunnel with a other device on the LAN of device up in shellhub and mypc with internet.
Ex : MyPC - > INTERNET -> ShellHub <- INTERNET <- RPi (Up on ShellHub (10.10.10.101/24)) | Other RPi with nginx 80&443 (10.10.10.102/24)
mypc:9999 = 10.10.10.102:443
mypc:9998 = 10.10.10.102:80

ssh -L 9999:10.10.10.102:443 pi@rpiname.usershellhub@subname.mydomain.com

What do you think about this ? This is supported by ShellHub ?
https://wiki.archlinux.org/index.php/VPN_over_SSH

surfinside
@surfinside
Hello, i found a solution with
https://github.com/sshuttle/sshuttle
I love ShellHub :)
it's possible to add https with certbot ?
For mongodb, why not add persistent data ?
On Gateway or Ui docker, it's possible to add fail2ban (SSH & Ngnix Jail) ?
Thank you
Luis Gustavo S. Barreto
@gustavosbarreto

t's possible to add https with certbot ?

@surfinside HTTPS support is on our roadmap (end Q1 2020)

For mongodb, why not add persistent data ?

@surfinside You can do this by extending the docker-compose file