Skip to content

CarloRamponi/ssh-server-bot

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

35 Commits
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
index.js
index.js
 
 
logger.js
logger.js
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
server.js
server.js
 
 
sshrc
sshrc
 
 
utils.js
utils.js
 
 

Repository files navigation

ssh-server-bot

Telegram bot that help you manage and control your SSH server

Dependencies

  • nodejs (>= 10)
  • jq

Configuration

  • Create a telegram bot and get the token
  • If you want telegram to autocomplete commands, send this message to botfather when asked: 
    help - displays a help message
ip - displays info about server's ip address
reboot - reboots the server
status - displays the status of sshd service
staccah - shuts down sshd service (emergency mode (open sessions won't be ended))
riattaccah - starts sshd service (exit emergency mode)
  • Create a user named sshbot 
    useradd --create-home sshbot
  • Clone this repo in the ssh bot's home folder (/home/sshbot)
  • Create the config file /home/sshbot/ssh-server-bot/env-file.json 
    {
  "token": "YOUR_TOKEN_HERE",
  "chat_id": "YOUR_CHAT_ID_HERE",
  "ipinfo_token": "YOUR_IP_INFO_TOKEN_HERE",
  "port": 8080,
  "kick_text": "KICK_TEXT"
}
    Where:
    • token is the bot token provided by the botfather,
    • chat_id is your chat id (if you don't know it you can leave it blank and the first message you'll send to the bot (/start) will let you know your chat id)
    • ipinfo_token is the token provided by ipinfo.io
    • port is the port where the TCP server will listen for local events (e.g. SSH connection)
    • kick_text is the text a user will be displayed when about to be kicked (in a cool ascii art, so the shorter the better... e.g. "Fuck you")
  • Run npm install in the project folder
  • Allow him to run the kill command and the write as root without a password, run visudo and add this line at the end of that file 
    sshbot ALL= NOPASSWD: /bin/kill, /usr/bin/write, /sbin/reboot, /bin/systemctl start sshd, /bin/systemctl stop sshd
    This allows him to kick ssh connections if needed, reboot the system and start/stop sshd service
  • Open /etc/ssh/sshrc and insert the ./sshrc content (create the file if needed) This will notify the user every time a ssh connection is established
  • Create the service file /lib/systemd/system/ssh-server-bot.service 
    [Unit]
Description=SSH SERVER telegram bot.

[Service]
Type=simple
User=sshbot
WorkingDirectory=/home/sshbot/ssh-server-bot
ExecStart=/usr/bin/node index.js
Restart=on-failure
RestartSec=5s

[Install]
WantedBy=multi-user.target
  • Reload systemd services with 
    systemctl daemon-reload
  • Enable and start the newly created service (and check its status) 
    systemctl enable ssh-server-bot
systemctl start ssh-server-bot
systemctl status ssh-server-bot

About

Telegram bot that help you manage and monitor your SSH server

Resources

Readme

License

GPL-3.0 license
Activity

Stars

3 stars

Watchers

2 watching

Forks

0 forks
Report repository

Languages