mirror of https://github.com/huashengdun/webssh
Update README.md
crazypeace
GitHub
parent
352625d73e
commit
f648d3db3f
|
|
@ -6,6 +6,9 @@
|
||||||
|
|
||||||
https://zelikk.blogspot.com/2023/10/huashengdun-webssh-codesandbox.html
|
https://zelikk.blogspot.com/2023/10/huashengdun-webssh-codesandbox.html
|
||||||
|
|
||||||
|
<details>
|
||||||
|
<summary>原项目readme (点击展开)</summary>
|
||||||
|
|
||||||
## WebSSH
|
## WebSSH
|
||||||
|
|
||||||
[](https://github.com/huashengdun/webssh/actions/workflows/python.yml)
|
[](https://github.com/huashengdun/webssh/actions/workflows/python.yml)
|
||||||
|
|
@ -218,3 +221,5 @@ wssh --port=8080 --sslport=4433 --certfile='cert.crt' --keyfile='cert.key' --xhe
|
||||||
* For whatever deployment choice you choose, don't forget to enable SSL.
|
* For whatever deployment choice you choose, don't forget to enable SSL.
|
||||||
* By default plain http requests from a public network will be either redirected or blocked and being redirected takes precedence over being blocked.
|
* By default plain http requests from a public network will be either redirected or blocked and being redirected takes precedence over being blocked.
|
||||||
* Try to use reject policy as the missing host key policy along with your verified known_hosts, this will prevent man-in-the-middle attacks. The idea is that it checks the system host keys file("~/.ssh/known_hosts") and the application host keys file("./known_hosts") in order, if the ssh server's hostname is not found or the key is not matched, the connection will be aborted.
|
* Try to use reject policy as the missing host key policy along with your verified known_hosts, this will prevent man-in-the-middle attacks. The idea is that it checks the system host keys file("~/.ssh/known_hosts") and the application host keys file("./known_hosts") in order, if the ssh server's hostname is not found or the key is not matched, the connection will be aborted.
|
||||||
|
|
||||||
|
</details>
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue