[Ovmsdev] SSH Access
Michael Balzer
dexter at expeedo.de
Mon Oct 28 01:49:07 HKT 2019
…or allow the cipher manually as shown in the documentation:
https://docs.openvehicles.com/en/latest/userguide/console.html#ssh-console
Am 27.10.19 um 18:45 schrieb Michael Balzer:
> Jaunius,
>
> I don't see your explanation… that note just tells you you can ssh via GSM into the module if your data plan supports it, which has btw been done successfully
> by some users and is considered useful.
>
> If you have correctly put your public key into the config store as documented, maybe you've missed the cipher deprecation issue.
> You need to add a host entry to your ~/.ssh/config like this:
>
> > cat ~/.ssh/config
> Host dexze85.local
> Ciphers +aes128-cbc
>
> Regards,
> Michael
>
>
> Am 27.10.19 um 18:38 schrieb Jaunius Kapkan:
>> Okay, this explains it :)
>>
>> https://raw.githubusercontent.com/openvehicles/Open-Vehicle-Monitoring-System-3/master/vehicle/OVMS.V3/knownissues.txt
>> * SSH, TELNET, and WEBSERVER all register listeners for incoming calls. There
>> is a possible security issue here as those calls may come over cellular
>> networks (not just wifi). There is no firewalling of these calls. It seems
>> that the correct approach to this is to validate the destination IP to
>> make sure it is a wifi interface IP address; but this is not currently
>> done.
>>
>> *Sent:* Sunday, October 27, 2019 at 7:33 PM
>> *From:* "Jaunius Kapkan" <jaunius at gmx.com>
>> *To:* ovmsdev at lists.openvehicles.com
>> *Subject:* [Ovmsdev] SSH Access
>> Hi,
>>
>> I have been strugling getting SSH working for some time now. Tried both password access and key auth. I think the same issue was discussed before for V3, but
>> I have not seen the final rezolution.
>>
>> Verbose output from client side:
>>
>> debug1: Local version string SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3
>> debug1: Remote protocol version 2.0, remote software version wolfSSHv1.1.0
>> debug1: no match: wolfSSHv1.1.0
>> debug1: Authenticating to 192.168.0.157:22 as 'ovms'
>> debug1: SSH2_MSG_KEXINIT sent
>> Connection closed by 192.168.0.157 port 22
>>
>> Regards,
>> Jaunius
>> _______________________________________________ OvmsDev mailing list OvmsDev at lists.openvehicles.com http://lists.openvehicles.com/mailman/listinfo/ovmsdev
>>
>> _______________________________________________
>> OvmsDev mailing list
>> OvmsDev at lists.openvehicles.com
>> http://lists.openvehicles.com/mailman/listinfo/ovmsdev
>
> --
> Michael Balzer * Helkenberger Weg 9 * D-58256 Ennepetal
> Fon 02333 / 833 5735 * Handy 0176 / 206 989 26
>
> _______________________________________________
> OvmsDev mailing list
> OvmsDev at lists.openvehicles.com
> http://lists.openvehicles.com/mailman/listinfo/ovmsdev
--
Michael Balzer * Helkenberger Weg 9 * D-58256 Ennepetal
Fon 02333 / 833 5735 * Handy 0176 / 206 989 26
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openvehicles.com/pipermail/ovmsdev/attachments/20191027/8f033d39/attachment-0001.html>
More information about the OvmsDev
mailing list