-
Notifications
You must be signed in to change notification settings - Fork 111
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Shell app - direct shell instead of SSH? #4060
Comments
I can be done with #!/bin/bash
/bin/bash |
By the way, it's worth noting that we (OSC) use |
Doesn't |
Thanks. The following article from 2014 explains how spoofing is prevented. |
I tried setting ODD_SSH_WRAPPER to a script like mentioned above, and this works as expected. "Your connection to the remote server has been terminated." I tried setting |
This configuration works for 3.0.9 and up, if you're on a version lower than that then that's just the behavior of idle connections. |
We are on a higher version. I first has used the Apache httpd setting from this post, and those increased the timeout to 5 minutes and 30 seconds (330s), so something else was still limiting the idle time. I tried the ping pong configuration, but that did not extend the idle time past that limit. |
I think the issue was I had to force kill my PUN. |
For the shell app, my understanding of the architecture is that the OOD software creates a web-based terminal emulator and hooks that up to an
ssh
process that runs as the logged in user.Is it possible to have the software invoke some kind of shell (e.g.
bash
) instead ofssh
and wire it up to the terminal emulator?The reason I ask is because the
ssh
process will ask a user to authenticate. If you use key-based or cert-based authentication, thessh
process running on a remote host will have no way to access the user's private key, and thus passwordless authentication becomes rather problematic.I recognize that direct shell wouldn't necessarily make sense if your OOD service is running on some dedicated node that a user has no business having a shell on, but if you run the service on say the login node, this would be a convenient way to use the terminal from the web app.
I'm not sure if this is something that can currently be configured, e.g. with ODD_SSH_WRAPPER, or if this would be a new feature request.
The text was updated successfully, but these errors were encountered: