Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Support SSH Public Key Authentication #475

Open
jejacks0n opened this issue Apr 18, 2023 · 10 comments
Open

Support SSH Public Key Authentication #475

jejacks0n opened this issue Apr 18, 2023 · 10 comments
Assignees
Labels
enhancement high prio High Priority Issues

Comments

@jejacks0n
Copy link

Is your feature request related to a problem? Please describe.
When logging in with SSH, there's logic that looks like it's intended to validate the public key as provided by the SSH client.

Describe the solution you'd like
It looks like this is only partially implemented however. It kind of looks like the intent is to store the public key on registration in UserProps.AuthPubKey, but this constant isn't defined and that's the other portion that seems incomplete.

Describe alternatives you've considered
What's needed to finalize some of this logic, and are there things that make this impossible/very difficult?

@NuSkooler
Copy link
Owner

@jejacks0n It's a placeholder as there aren't currently any BBS clients that support public key authentication.

I'd love a PR, however!

Off the top of my head, I think you'd really only need to implement validatePubKey which you can see in the SSH2 documentation, should be fairly trivial.

Then, create a simple ssh_config.js or similar mod inheriting MenuModule (which you'll see is the beef of most of enig) for the user to upload a public key.

One challenge is for it to be secure, they'd need to do this over a secure connection such as SSH (un/pass), or secure WebSocket, so you'd want to gate the menu with an acs check.

I can provide more details if you're going to take a shot at it!

@tracker1
Copy link

could test with ssh from a regular ptty terminal.. ssh user@bbsname assuming the user previously uploaded their public key for auth.

@NuSkooler
Copy link
Owner

Update on this: I will be adding PublicKey authentication to the board and to https://github.com/mkrueger/icy_term as well in the near-ish future.

@NuSkooler NuSkooler changed the title It looks like ssh public key logic is only partially implemented. Support SSH Public Key Authentication Aug 31, 2023
@NuSkooler NuSkooler self-assigned this Aug 31, 2023
@NuSkooler NuSkooler added enhancement high prio High Priority Issues labels Aug 31, 2023
@cognitivegears
Copy link
Collaborator

By the way - as a side note, I'm not sure whether it needs an upload function - the .pub is pretty short (90 characters including prefix is all that's needed, + whatever they use for their email/attribute if there is one). Could probably just support pasting that into a text field? That's what sites like github do anyway.

@NuSkooler
Copy link
Owner

@cognitivegears I agree. I think the only requirement needs to be over an existing secure connection.

@cognitivegears
Copy link
Collaborator

@cognitivegears I agree. I think the only requirement needs to be over an existing secure connection.

That's a bit of a catch-22, but not much of one, since they can either upload the .pub when logging in as new via ssh, or just have to at least one time do password auth before switching to public key. So not a big deal.

@cognitivegears
Copy link
Collaborator

By the way, this is a little off-topic but I was thinking, I don't believe there is anything in the spec / ssh library that wouldn't let us just accept any user - that is, allow the connection regardless of any user/pw etc... which could be interesting, if we then showed the unauthenticated login screen. Sorta like an inner authentication mechanism like can be done with WiFi etc protocols. I.e encrypt the channel but no Authn initially.

I know sounds crazy, but the reason to do that would be able to offer non logged in services via ssh... Showing the login menu, forgot password, etc.

The only downside I can think of is that I believe most or all existing clients just assume that some authn needs to happen so present pw prompt before even being challenged (when not using a public key flow anyway.) still it works, users would just have to type anything on those clients. And that could be suggested in clients like Icyterm as well.

Probably out of scope for this issue, but just wanted to mention in case it's useful someday.

@NuSkooler
Copy link
Owner

@cognitivegears this should already be possible with some tweaks. Users can already SSH in with +op defined username passwords (new/new is there by default). We could have "forgot/forgot" or whatever allowing them to interact with specific screens.

@NuSkooler
Copy link
Owner

@cognitivegears

That's a bit of a catch-22, but not much of one, since they can either upload the .pub when logging in as new via ssh, or just have to at least one time do password auth before switching to public key. So not a big deal.

Yep, but without it, one can technically MITM and put in their own SSH Pub Key instead.

@tracker1
Copy link

Minor thought... Ubuntu-Server offers the option to import your public key at install, including from github. Could offer something similar at login/creation to import github key(s).

# for free to join this conversation on GitHub. Already have an account? # to comment
Labels
enhancement high prio High Priority Issues
Projects
None yet
Development

No branches or pull requests

4 participants