Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

qubes-ssh port is not respected? #191

Closed
tlaurion opened this issue May 11, 2024 · 3 comments
Closed

qubes-ssh port is not respected? #191

tlaurion opened this issue May 11, 2024 · 3 comments
Labels
bug Something isn't working
Milestone
v0.8

Comments

@tlaurion
Copy link
Contributor

Testing against openwrt hosting ssh hidden tor service I can reach from qube doing qube-ssh, but dom0 cannot use it?

(5)$ time sudo wyng-util-qubes --dest qubes-ssh://wyng-wdcloud:[email protected]:2345/mnt/Backups/nv41 --dedup -wremap --authmin 1080 backup wyng-wdcloud
wyng-util-qubes v0.9beta rel 20240424
Wyng 0.8wip release 20240507
CalledProcessError(255, [['/usr/bin/qvm-run', '--no-color-stderr', '--no-color-output', '-p', 'wyng-wdcloud', '/usr/bin/ssh -x -o ControlPath=~/.ssh/controlsocket-%r@%h-%p -o ControlMaster=auto -o ControlPersist=60 -o ServerAliveInterval=30 -o ConnectTimeout=30 -o Compression=no [email protected] "$(/usr/bin/cat /tmp/wyngrpc/tmpyjx13_70)"'], ['/usr/bin/cat', '-v'], ['/usr/bin/tail', '--bytes=2000']])

ssh: connect to host redactedhiddentoraddress.onion port 22: Connection refused^M
[0, 255]

Destination not ready to receive commands.

Seems like the port is not passed through ssh options @tasket ?
@tlaurion
Copy link
Contributor Author

tlaurion commented May 11, 2024
edited
Loading

I'm that close to create a guide, first for my own setup reference, with openwrt having usb hotpluggable drives with raid5 with 4 cheap ssd drives connected.

Works locally with qube:, works remotely with qube-ssh, but when switching template to whonix-wks-17 to pivot using my router's hidden ssh server on port 2345 above: nope.

That would be ideal for me when wanting to "connect back home" and upload diff backups as I go, even over phone tethered wifi, with qubes+whonix doing the magic to talk with my openwrt configured hidden tor ssh service.

I think a well redacted guide to reproduce such setup would permit self-hosters to replicate such setup without needing to trust anyone else but themselves in the goal of iterating and mitigating #21 #91 as of now.

@tlaurion
Copy link
Contributor Author

Hmmm

wyng-backup/src/wyng

Lines 2176 to 2182 in 08177d4

self.run_map = {"file": [CP.sh],
"ssh": [CP.ssh] + self.ssh_opts + [self.sys],
"qubes": [CP.qvm_run, "--no-color-stderr", "--no-color-output",
"-p", self.sys],
"qubes-ssh": [CP.qvm_run, "--no-color-stderr", "--no-color-output",
"-p", self.sys.split(":")[0]]
}

@tlaurion tlaurion mentioned this issue May 12, 2024
Open
@tasket tasket added the bug Something isn't working label May 13, 2024
@tasket tasket added this to the v0.8 milestone May 13, 2024
tasket added a commit that referenced this issue May 13, 2024
@tasket
Fix ssh port passing, issue #191
710ddca
@tasket
Copy link
Owner

tasket commented May 13, 2024

@tlaurion This should be fixed; its working for me now.

@tasket tasket closed this as completed May 13, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
v0.8
Development

No branches or pull requests
2 participants
@tlaurion @tasket