Install

This guide tells you how to install sshwifty (https://github.com/nirui/sshwifty)

Notes

We use here some redirection stuff, because it is not possible to use a webserver and the sshwifty without port

Running as yourself

Install

Firstly you have to go to https://github.com/nirui/sshwifty/releases/ and download sshwifty_<VERSION>_openbsd_amd64.tar.gz

At the moment of making this guide is that: https://github.com/nirui/sshwifty/releases/download/0.2.20-beta-release-prebuild/sshwifty_0.2.20-beta-release_openbsd_amd64.tar.gz

So what we do is:

$ mkdir ~/sshwifty
$ cd ~/sshwifty
$ wget https://github.com/nirui/sshwifty/releases/download/0.2.20-beta-release-prebuild/sshwifty_0.2.20-beta-release_openbsd_amd64.tar.gz
$ tar -xzf sshwifty_0.2.20-beta-release_openbsd_amd64.tar.gz

Setup

For the config it is very simple:

$ cp sshwifty.conf.example.json config.json
$ nano config.json

You can set the hostname, then if you don't go to the domain then you wont be seeing the page

You can edit the "SharedKey", this is what you need to login/use the sshwifty

You can edit the presets to what you want

Create SSL certs and put them into the "TLSCertificateFile" and "TLSCertificateKeyFile" (Recommended to copy them to your folder and chown it to you, so no perms errors)

Now open your /etc/httpd.conf and add:

server "ssh.YOURHOSTNAME" {
        listen on * port 8080
        location * {
                block return 302 "https://ssh.YOURHOSTNAME:8182$REQUEST_URI"
        }
}

and restart httpd

Then allow port 8182 at your pf.conf (add to the http one)

And reload your pf: $ doas pfctl -f /etc/pf.conf

Starting

To start the sshwifty, I recommend to create a start script:

start.sh

#!/bin/ksh
SSHWIFTY_CONFIG=./config.json ./sshwifty_openbsd_amd64

And chmod +x start.sh

Then do ./start.sh

and you should be good to go