Nethserver-shellinabox

stephdl · October 20, 2015, 10:04pm

Shellinabox is a defunct software, that has just been forked, and the development is now running -> https://github.com/shellinabox/shellinabox

Thanks to https://github.com/KLuka and all unknown heroes.

I took my source from Epel, think before to enable the repository.
Add EPEL repo:

yum localinstall http://ftp.heanet.ie/pub/fedora/epel/6/i386/epel-release-6-8.noarch.rpm

Disable it:

eorepo centos-base centos-updates nethserver-base nethserver-updates

then you can install nethserver-shellinabox

yum install http://mirror.de-labrusse.fr/nethserver/nethserver-shellinabox/nethserver-shellinabox-0.0.8-1.el6.noarch.rpm --enablerepo=epel

A panel is available in the security category for managing shellinabox, if you want to allow users, go to the user panel and check the relevant box

see the database

# config show shellinaboxd 
shellinaboxd=service
    FixedIP=                          # IP1,IP2,IP3
    Name=shell                      # http://IP/shell (can be changed)
    PublicAccess=private       # web access (private or public or IP)
    ShellUsers=                     # user1,user2,user3 (admin user is written in the rock of template)
    TCPPort=1870                 # deamon port (can be changed)
    WebAuth=disabled           # disabled or enabled (allow an apache authentication)
    access=none                   # only used by the deamon, don't change it
    status=enabled                # enabled or disabled

when you modify something, do

 signal-event nethserver-shellinabox-save

for example

config setprop shellinaboxd  PublicAccess IP FixedIP 192.168.156.12,192.168.156.14 ShellUsers toto,titi,tutu 
signal-event nethserver-shellinabox-save

I use an apache reverse proxy, therefore apache is here to allow users.

if PublicAccess=private then you have no apache authentication, juts the ssh login but you can specify it with WebAuth=enabled (private would mean that it can be used only on the local network)

If you set to PublicAccess=public (whole internet) then you need to use the user admin, or any specified users at ‘ShellUsers’ (comma separated list)

If you are paranoid you can specify a list of allowed IP to use shellinabox, the apache authentication is a mandatory here.

PublicAccess=IP
FixedIP=IP1,IP2,IP3 #(comma separated list)

You can access shellinabox pointing your browser to:
https://your_ip_or_name/shell

A valid NFR could be to display shellinabox directly in the server-manager but yet I don’t know how to do it, if you have clues, that would be good.

The good user experience depends of your browser, chromium, unfortunately, is known to be good, Firefox has one issue, the middle click paste function is prohibited for security reason. I raised a bug report, but the patch is not yet implemented in epel.

alefattorini · October 21, 2015, 12:37pm

Great work! Love it, a lot.
The middle click paste function makes the difference! That’s superhandy and the shell is very fast

What do you think Dev Team and Testing Team? @Stll0, @alep, @davidep, @filippo_carletti, @giacomo @vcc, @Adam, @medworthy, @fasttech, @mabeleira, @GG_jr, @dz00te
Would we help @stephdl to test and improve it?

Yes, but I already like it in /shell and linked into the dasboard! For me is enough
Looks more important a Web panel for activate / deactivate the service or public it

@stephdl jus a few comments, you should add on the TOP these commands or link to an existing howto like this.

Add EPEL repo:

yum localinstall http://ftp.heanet.ie/pub/fedora/epel/6/i386/epel-release-6-8.noarch.rpm

Disable it:

eorepo centos-base centos-updates nethserver-base nethserver-updates

Can I edit your post making strong this sentence? you have a link in the dashboard to use shellinabox
And adding:

You can access shellinabox pointing your browser to:
https://your_ip_or_name/shell

stephdl · October 21, 2015, 11:21pm

the panel is done, the inline help page are not yet done, WIP, see the first post to install nethserver-shellinabox-0.0.4

Ctek · October 21, 2015, 11:28pm

we should add a link in the left menu that pop-up a window with the shell.
Just to be easy accessible. Or even make it accessible as a normal tab in the UI.

It is really a great addition to the UI.

BR
Bogdan

Jim · October 21, 2015, 11:41pm

Or in the application tab in the Dashboard?
Or in the left menu in "administration"
Or both.

alefattorini · October 22, 2015, 6:02am

Take a look at the first post. Dasboard → Application → shellinabox

stephdl · October 23, 2015, 1:01pm

Help pages are incorporated install nethserver-shellinabox-0.0.5

stephdl · October 23, 2015, 1:38pm

WebUI enhanced install nethserver-shellinabox-0.0.6

alefattorini · October 23, 2015, 3:17pm

Just updated
Checkbox on user panel is pretty nice!

stephdl · October 25, 2015, 9:29pm

new version nethserver-shellinabox-0.0.7

alefattorini · October 28, 2015, 1:42pm

Just upgraded but I can’t figure out which are the news

stephdl · October 28, 2015, 1:54pm

A link in the panel and some translations

giacomo · October 28, 2015, 3:33pm

Because you don’t read github!

alefattorini · October 28, 2015, 4:02pm

Touchè!

stephdl · January 10, 2016, 6:44pm

@alefattorini i want to edit my first post…it is not possible…why ?

alefattorini · January 10, 2016, 7:18pm

Could you re-try? There is a timeout for editing post.

stephdl · January 10, 2016, 7:42pm

It is now editable, but why I cannot before??? after a long time we cannot edit our messages ?

stephdl · January 10, 2016, 7:54pm

You should update nethserver-shellinabox, else you will have an error 502

yum install http://mirror.de-labrusse.fr/nethserver/nethserver-shellinabox/nethserver-shellinabox-0.0.8-1.el6.noarch.rpm --enablerepo=epel

alefattorini · January 10, 2016, 8:19pm

I wikified it, it’s a better solution.

Thanks for your update

stephdl · January 17, 2016, 7:58pm

You can thank luka Krajger who brings to life this dead project.