search

logicnow / BlueSky

An SSH tunneling solution for remote Mac-to-Mac connectivity (formerly a Mac-MSP product)
Apache License 2.0
39 stars 15 forks source link

Bluesky unable to enable SSH on macOS 10.15.1 #54

Open AllPurposeBen opened 4 years ago

AllPurposeBen commented 4 years ago

Installing the agent on a virgin install that doesn't have SSH enabled, helper.sh is trying to use systemsetup to enable ssh but Apple has nerfed it:

root@users-Mac ~ # systemsetup -setremotelogin on
setremotelogin: Turning Remote Login on or off requires Full Disk Access privileges.

:fu: :apple:

Sooooo a couple ways to address that I can think of:

  1. Do it the Apple way and change nothing, hope that there's some manual config to enable SSH and/or MDM has given systemsetup FDA rights. Since this kinda the only way to get ScreenSharing enabled, it wouldn't be unheard but it would be nice to at least get SSH always.

  2. Add a provision to helper.sh around line 129 that if we're running on 10.15, try this instead: /bin/launchctl load -w /System/Library/LaunchDaemons/ssh.plist Still seems to work.

I'd vote option 2 as something is better than nothing and it's a pretty easy workaround to code. I wanted to take public temperature before take the time to send up a PR if anyone can think of a better route.

sphen13 commented 4 years ago

@AllPurposeBen have you done anything else with this? tempted to test out the launchctl option

AllPurposeBen commented 4 years ago

IIRC, the fix #2 I mentioned worked in my limited testing but I had left it to the hive mind to weigh in before investing time on testing on mass and sending up a PR for the fix.

sphen13 commented 3 years ago

this has been addressed in v2.3.2

https://github.com/sphen13/BlueSky/releases/tag/v2.3.2