[v0.3.6] SSH Access confirmation
 

Simple application using pam to control ssh connections. Will show confirmation dialog and notification with sound and led indication when new incoming connection estabilishing.
Contains settings (System -> Security -> SSH) with simple options.

Pam remote host value may contain hostname or ip depends on your network/ssh/dns configuration, so it's allowed to write anything to whitelist config and user responsible to control this himself.

Openrepos: https://openrepos.net/content/coderu...s-confirmation
Github: https://github.com/CODeRUS/ssh-pam-access-control

https://openrepos.net/sites/default/...5-22-53-47.png https://openrepos.net/sites/default/...5-22-52-46.png

Re: [Announce] SSH Access confirmation
 

This is awesome. I'm glad it's fairly easy to do this on the Jolla. (V.s., for example, the N900, where the work to set this up would likely be much greater, since by default I don't believe there's any sort of PAM support whatsoever.)

Re: [Announce] SSH Access confirmation
 

There is should be pam in N900, as N9 also using /etc/pam.d/sshd. You can do exactly same on your N900, just replace QGuiApplication and Sailfish parts.

Re: [Announce] SSH Access confirmation
 

Seems to not work with my build of openssh, work for me he he.

Re: [Announce] SSH Access confirmation
 

what matter of openssh difference? it does nothing with pam. check systemctl --user status ssh-pam-access-control

Re: [Announce] SSH Access confirmation
 

nemo@Jolla]$ systemctl --user status ssh-pam-access-control
ssh-pam-access-control.service - SSH Pam access control
Loaded: loaded (/usr/lib/systemd/user/ssh-pam-access-control.service; disabled)
Active: active (running) since Sun 2015-02-08 09:16:49 CET; 38min ago
Main PID: 2439 (ssh-pam-access-)
CGroup: /user.slice/user-100000.slice/user@100000.service/ssh-pam-access-control.service
└─2439 /usr/bin/ssh-pam-access-daemon

Re: [Announce] SSH Access confirmation
 

My pam sshd config

[nemo@Jolla ~]$ cat /etc/pam.d/sshd
#%PAM-1.0
auth include system-auth
account required pam_nologin.so
account include system-auth
password include system-auth
session include system-auth
session required pam_loginuid.so
# pam_selinux.so open should only be followed by sessions to be executed in the user context
session optional pam_keyinit.so force revoke
session required pam_exec.so quiet stdout /usr/bin/ssh-pam-access-control

Re: [Announce] SSH Access confirmation
 

it's absolutely original. do you installed latest 0.2.0 version? can you stop service and start ssh-pam-access-daemon in terminal, try connect to phone via ssh and give me terminal output?

Re: [Announce] SSH Access confirmation
 

Yes, latest version installed.
Stopped service, and started again. Service running.
ssh acts as normal, ssh nemo@x.x.x.x from PC asks for password and connects.
But, no notifications on Jolla, nor asking for permissions.

Re: [Announce] SSH Access confirmation
 

i mean stop servicce and start process in terminal to get debug output.