Closed shanjunmei closed 1 year ago
NHAS
commented
1 year ago Sorry I dont see how this would benefit this project.
Are you meaning that people would be able to use SSO to log in to RSSH server to manage its clients? Or are you meaning that the controlled clients use password authentication rather than key based authentication?
shanjunmei
commented
1 year ago Assign a user name and password to each device, and compile a dedicated client, so that the identity of each connected device can be identified
shanjunmei
commented
1 year ago The value is that it can be turned into a commercial project, not just a hacker tool,such as manage Iot device
NHAS
commented
1 year ago Assign a user name and password to each device, and compile a dedicated client, so that the identity of each connected device can be identified
As it stands each client is issued its own public private key pair when using the webserver --link command. This is more than enough to uniquely identify each device (and is in-fact more robust than a username+password based system anyway).
Or are you meaning that each device has a password baked in that you would have to supply in order to access the device?
The value is that it can be turned into a commercial project, not just a hacker tool,such as manage Iot device
I suppose I'll be seeing monetary benefit from this then? Are you proposing that you sponsor this feature and give me the revenue that you'll be making from it?
shanjunmei
commented
1 year ago yes, each device has a password baked in that you would have to supply in order to access the device
NHAS
commented
1 year ago So how are you planning on sponsoring this feature? If you plan on using RSSH as a commercial project.
shanjunmei
commented
1 year ago Maybe I can't sponsor you directly, but I think this is a direction, if it is just a hacking tool, I think it will be more difficult to get sponsor.just a suggestion,never mind whether you want to achieve it depends on your will
NHAS
commented
1 year ago I personally don't believe that being "just a hacking tool" is an accurate description of this project, nor do I believe including your desired feature would make it any less a "hacking tool".
In terms of gaining sponsors. The major limitation of that isn't your perception of the project, it's mainly that open source solutions are not where the money's at, even less those that are BSD-3-Clause licensed.
I think the feature of having clients require a password is a good one. However under the context of 'commercializing' RSSH it leaves a lingering feeling that it wont be me that makes any money out of it.
So I think for now I'll say, if you want it, you can create it, I'll put this on the back burner.
shanjunmei
commented
1 year ago thanks ,just share the idea
Hi DR, Can the rssh clients require a password before a user who connects to the server can run commands/copy files/etc on them?