webssh

Web based ssh client https://github.com/huashengdun/webssh webssh.huashengdun.org/
git clone http://git.hanabi.in/repos/webssh.git
Log | Files | Refs | README | LICENSE

commit c126856daa629d32568da28233e4f19b6007c257
parent 47fb789a7e58b629dc489d711ea8371583f51454
Author: Sheng <webmaster0115@gmail.com>
Date:   Sat, 15 Dec 2018 21:40:16 +0800

Updated README

Diffstat:
MREADME.md | 4++--
MREADME.rst | 10+++++-----
2 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/README.md b/README.md @@ -69,7 +69,7 @@ wssh --log-file-prefix=main.log wssh --help ``` -### Use console +### Browser console ```javascript // connect to your ssh server @@ -140,5 +140,5 @@ wssh --port=8080 --sslport=4433 --certfile='cert.crt' --keyfile='cert.key' --xhe ## Tips * For whatever deployment choice you choose, don't forget to enable SSL. -* If you choose running this app as a standalone server, redirecting http to https is enabled by default, and only http requests from a public network will be redirected. +* By default plain http requests from a public network will be either redirected or blocked and being redirected takes precedence over being blocked. * Try to use reject policy as the missing host key policy along with your verified known_hosts, this will prevent man-in-the-middle attacks. The idea is that it checks the system host keys file("~/.ssh/known_hosts") and the application host keys file("./known_hosts") in order, if the ssh server's hostname is not found or the key is not matched, the connection will be aborted. diff --git a/README.rst b/README.rst @@ -73,8 +73,8 @@ Server options # more options wssh --help -Use console -~~~~~~~~~~~ +Browser console +~~~~~~~~~~~~~~~ .. code:: javascript @@ -152,9 +152,9 @@ Tips - For whatever deployment choice you choose, don't forget to enable SSL. -- If you choose running this app as a standalone server, redirecting - http to https is enabled by default, and only http requests from a - public network will be redirected. +- By default plain http requests from a public network will be either + redirected or blocked and being redirected takes precedence over + being blocked. - Try to use reject policy as the missing host key policy along with your verified known\_hosts, this will prevent man-in-the-middle attacks. The idea is that it checks the system host keys