Thanks to visit codestin.com
Credit goes to github.com

Skip to content

HarshalShende/edex-ui-server

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
server
server
 
 
test
test
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
req_format.json
req_format.json
 
 

Repository files navigation

eDEX-UI Remote Monitoring Server (IN DEVELOPMENT/NOT WORKING YET)

Everything needed to setup a Linux server for remote monitoring with eDEX-UI. The basic idea is that SSH'ing into a server from eDEX would allow you to see all the UI information as if you were running from said server.

This is a work-in-progress, not-entirely-thought-of, research pending:tm: project that I decided to make public so users interested could watch my progress. Issues and PRs are disabled until a release comes out of this. Any questions, recommendations, ideas can be sent directly to my email: [email protected].

Server security is ensured by:

  • Using public-key cryptography to authenticate users and encrypt sensitive monitoring information
  • Outright denying access to clients who do not already have an active connection pipe with the server.

Current specs:

Prerequisite

  • Server must have eDEX remote backend running as root
  • Server must have users public keys stored somewhere (tbd)
  • Client must have server's IP and corresponding secret key in storage (also tbd)

Trigger

  • Client connects via ssh to server (in terminal, out of the eDEX UI scope)
  • Client detects connection and sees that the IP corresponds to an available key for monitoring
  • Client prompts user whether or not to try and initiate connection to remote monitoring, if SSH pipe is still open
  • If user confirms, connection attempt starts

Connection

  • Client reaches server's remote monitoring websocket
  • Server looks up client's IP address in its active remote connections lists
  • If a pipe is already opened with client; proceed, otherwise, connection is terminated
  • Server sends cryptographic challenge to client
  • Client decrypts the challenge and sends it back
  • If challenge is OK, proceed to linking, otherwise, connection terminated

Linking

  • Server forks a monitoring relay process with the permission level of the user (using setuid)
  • Once process is ready, server starts accepting monitoring requests from client
  • Client pipes all it's modules information queries to remote monitoring websocket
  • Queries are then piped by server to the correct relay process, and output is sent back encrypted with user's public key
  • Client decrypts incoming data and forwards it to modules
  • Server re-instates relay process if it ever crashes (unlikely, but failure recovery is always nice)

Breaking up

  • (tbd - how to monitor SSH pipe?)

About

(WORK IN PROGRESS) Remote server monitoring for eDEX-UI

Resources

Readme

License

GPL-3.0 license
Activity

Stars

2 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages