This project is about using Salt SSH for managing systems without the need of an additional agent to be installed (besides sshd). With the SSH protocol the connection is initiated by the management server, thus Salt SSH can be used to even manage systems that are located outside of company firewalls, i.e. machines that cannot access a salt-master due to firewall restrictions.
In order to still be able to access resources inside a company network though it would be very helpful if the salt-ssh command supported remote port forwarding (as with the -R parameter of the ssh command) for tunneling other traffic through the existing ssh connection, for instance a package manager might want to install packages from a company internal RPM repository. A patch was therefore contributed to Salt SSH in order to enable this feature (merged into develop):
Further this project is also about improving Salt SSH support in the Salt API client Java library salt-netapi-client. There is a WIP pull request that will be extended to support all the options that are available for salt-ssh.
This project is part of:
Hack Week 14
Activity
Comments
Be the first to comment!
Similar Projects
(Finish) Implementing SSH in Zig by lmulling
Description
Following Zig's philosophy of reinventing the wheel -- for the better, a while ago I've started implementing the ssh protocol in it. I've got as far as implementing all of the primitives, keys, certs, and most of the agent protocol -- what I needed at the time. Now, the aim is to finish the implementation.
Current implementation: git.sr.ht/~mulling/zssh
Goals
- Have a working implementation of the ssh protocol in Zig.
- Be flexible, as to allow for hacking of the protocol (i.e. testing PQC algorithms).
- Be agnostic of cryptography libraries (i.e. libcrypto, leancrypto).
Resources