Replace existing shell with Shell-in-a-box

RXWatcher · July 8, 2016, 4:03am

My suggestion is to replace the existing web shell with Shell-in-a-box

http://www.htpcbeginner.com/increase-shellinabox-security/2

This would allow a full shell(vs the existing shell in QuickBox which is limited).

I can see the use for this when issuing sudo commands. If you look at the 2nd page of the 2nd link, it talks about using a reverse proxy and .htpasswd with it which would integrate well into Quickbox…for example only allowing it to be used by the master account.

cinory · July 8, 2016, 8:59am

Just informing that the first link doesn’t work anymore (404 error). Other than that, good idea!

RXWatcher · July 8, 2016, 10:44am

Fixed…thanks for letting me know!

JMSolo · July 11, 2016, 12:38pm

Pleased to say, as of 4 hours ago, Shell-in-a-box is now the new deliverable for our Web Console! Run your update from the dashboard to take advantage of it. I have additionally converted it to systemd for the ability to toggle the service on/off from the dashboard.

Along with various other commits, here is the one that fires this off:

cinory · July 11, 2016, 3:50pm

awesome news!

RXWatcher · July 11, 2016, 5:36pm

It doesnt seem to work for me. Enabling/Disabling via the panel doesnt change the status and when you click the WebConsole on the side it pops up a URL to my host:4224 but then it doesnt connect. I havent had time to dig into it to see if something is actually listening on 4224.

cinory · July 11, 2016, 5:42pm

try a reboot. Had the same problem and a reboot did it

JMSolo · July 11, 2016, 5:43pm

Yeah, it could be either a reboot may be needed - or - the update previously didn’t write the systemd templates the way it should had.

RXWatcher · July 11, 2016, 7:44pm

Still issues with it:

Enable/Disable the service has no effect on if its running. It remains running according to the status section
It doesnt allow me to enter user/password on chrome but does on firefox
its claiming my certs are invalid. I have Lets Encrypt setup so the main panel and rutorrent are legit certs but when I try to connect to the shell-in-a-box, it pops up another window and there are cert errors.

I have updated both of my systems and rebooted them. Same issues on both.

JMSolo · July 11, 2016, 7:47pm

Are you trying to access with a tld? At the moment it’s only reading via IP address… have you tried accessing via IP?

As per the start/stop on the dashboard, I am currently trying to sort this out. The odd part is I tested this a dozen times over last night and it was working fine, run the update and it suddenly doesn’t want to kill the service… go figure.

Also, it doesn’t use your let’s encrypt certs, it has it’s on pem key generated in /var/lib/shellinabox that the daemon uses via systemd.

####Update:

Just pushed an update that resolves the stop/start toggles on the dashboard. Tested it on 3 servers 1 dedicated and 2 VM and it fixed the issue.

Commit for review:

RXWatcher · July 11, 2016, 7:54pm

heh…yeah, I always use the domain. I dont remember my IPs…you made me look them up. When I use the IP it works properly in Chrome and Firefox on both systems.

JMSolo · July 11, 2016, 7:55pm

I’ll figure out how to have it queue in actual tld’s as it would be nice. My personal box uses a tld as well. Not sure why it wouldn’t make use of it.

Additionally, refreshing still seems to need some work, but the service toggles are performing with that fix.

####Update

Here’s the hotfix for both btsync and the web console to ‘restart’ properly. Sort of a bonus package on this one!

tomcdj71 · July 11, 2016, 8:57pm

The last fix works fine ! Thanks

JMSolo · July 13, 2016, 2:11pm

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.