cashier
caddy-ssh
cashier | caddy-ssh | |
---|---|---|
3 | 5 | |
689 | 438 | |
- | - | |
8.0 | 4.1 | |
28 days ago | about 1 year ago | |
Go | Go | |
MIT License | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
cashier
-
What are SSH Certificate Authority solutions?
In the quick search I learned about ssh cert authority which looks very manual and also like a dead project smallstep's step-ca who put together very nice article about how to begin certificate authority process Netflix' BLESS is AWS only Cashier which also looks quite ok
- Cryptojacking Attacks Continue To Target SSH Servers
-
Why SSH certificates are awesome
2. Cashier
caddy-ssh
-
How Caddy works, a deep dive into the web server written in Go
See the article linked in OP for example, Caddy at its core is actually just config management and runtime platform where just about any kind of app can be built on top. It just happens to ship with state of the art HTTP and TLS apps. Third party plugins can add even more, like https://github.com/mohammed90/caddy-ssh which is a fully featured SSH server. And this can all run from a single binary, using Go's concurrency model.
- Caddy SSH
-
Show HN: Caddy-SSH
The plans are there! I focused on implementing the absolute necessary parts of every layer before taking round-2 for the more in-depth implementation. I actually have both the linked thread and the article saved aside to study when I'm ready to implement certificate-based authentication. Knowing Gitea already has it implemented, I had plans to study their implementation to know what I'm venturing into. If anybody else is interested in picking it up, please feel free to tackle it! I'd love to see that PR.
I've created tracking issue: https://github.com/mohammed90/caddy-ssh/issues/10
What are some alternatives?
certificates - 🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
caddy-l4 - Layer 4 (TCP/UDP) app for Caddy
ssh-cert-authority - An implementation of an SSH certificate authority.
pam - Go wrapper module for the Pluggable Authentication Modules (PAM) API
bless - Repository for BLESS, an SSH Certificate Authority that runs as a AWS Lambda function
anything2ed25519 - A deterministic ed25519 key generator for SSH
pam-ussh - uber's ssh certificate pam module
wsl-ssh-pageant - A Pageant -> TCP bridge for use with WSL, allowing for Pageant to be used as an ssh-ageant within the WSL environment.
keymaster - Short term certificate based identity system (ssh/x509 ca + openidc)
Win32-OpenSSH - Win32 port of OpenSSH
sshrimp - 🦐SSH Certificate Authority in a Lambda (on the barbie)
sharkey - Sharkey is a service for managing certificates for use by OpenSSH