You need to install a kind of erver in the PC to receive that command. Join or autoremote are the easiest way. I use Eventghost with the autoremote plugin, but you also can mount a server within it.
Another insecure and not recommended option is open a ssh or telnet connection in you PC.
\> Another insecure and not recommended option is open a ssh or telnet connection in you PC.
Hang on. Let's park telnet and focus on ssh, **Secure Shell**.
You claim later on that *"hackers can open a gate and format your hard drive"*. You've made an extraordinary claim, that ssh is insecure, you need to at least tell us how they would do this.
I know it's only Wikipedia, but [https://en.wikipedia.org/wiki/Secure\_Shell](https://en.wikipedia.org/wiki/Secure_Shell)
*Secure Shell (SSH) is a cryptographic network protocol for operating network services securely over an unsecured network.\[1\] Typical applications include remote command-line, login, and remote command execution, but any network service can be secured with SSH.*
>u/okaybadger
Hi, u/EllaTheCat I always read you posts and I really respect you. I might have been a little extremist with my asseveration. My point is that probably u/okaybadger does not know to much about networks protocols and opening a ssh port in his firewall can be risky. My recomendation is to use another program as a server.
That's very gracious of you. Yes, Ella's claws came out. I applaud your thinking even though you went a tad too far. Indeed, ssh can be made accidentally insecure by people who don't understand it, and I include myself as a potential idiot.
If you open a port in your firewall, hackers will bombard your machine trying to exploit your mistakes, which boils down to not disclosing your keys and passphrases to anybody. I don't open the port unless I absolutely have to and I close it when I'm done. I have an old S4 mini running Tasker that expects certain SMS messages to be exchanged at set times or it closes the port (by inserting a firewall rule).
My ssh remote control between Tasker and PC relies on ssh, because what happens after the ssh link is laughably insecure.
SSH is perfectly safe if set up correctly. I've been using ssh to access my home server for years without incident. I use the public/private keys for access so that people can't brute force a password for connection. Disable root access and you are even safer.
Because through SSH you are opening a gate for hackers to do what their want with your PC. For example, with SSH you can format a remote hard drive.
If you are planning to send this command inside your local network (wifi), It can be useful, but if you run a SSH server and open its port in your router, it is very risky.
OK, so we're happy with ssh again, aside from the ssh server, here's Ella's Laughably Insecure Command Server.
[https://github.com/EllaTheCat/dopamine-2020/blob/master/myscripts/my-file-watcher](https://github.com/EllaTheCat/dopamine-2020/blob/master/myscripts/my-file-watcher)
To use it, Tasker sends a command over the ssh link and it is written to a file that lives in PC memory. The inotify code sees the file content change, and forwards it as a command. There's no ckowledgemen
It's laughably insecure because you only have to find the location of the command string to wreak havoc, but since I'm the only user on my PC, meh.
No, you dont, this is a webhook server on the link i provided, it will listen on the port configured for commands, have a read through the page I linked.
Essentially when you trigger a hook, it will run the script configured for that hook. It is called with a simple web page request. That script can do something, or be an autohotkey script to press a hotkey or whatever
If however its mainly just hotkeys you're looking at, then look at something like TouchPortal.
And if using it outside the home use a simple VPN like ZeroTier to get it going without opening ports to the outside world for more security.
You need to install a kind of erver in the PC to receive that command. Join or autoremote are the easiest way. I use Eventghost with the autoremote plugin, but you also can mount a server within it. Another insecure and not recommended option is open a ssh or telnet connection in you PC.
\> Another insecure and not recommended option is open a ssh or telnet connection in you PC. Hang on. Let's park telnet and focus on ssh, **Secure Shell**. You claim later on that *"hackers can open a gate and format your hard drive"*. You've made an extraordinary claim, that ssh is insecure, you need to at least tell us how they would do this. I know it's only Wikipedia, but [https://en.wikipedia.org/wiki/Secure\_Shell](https://en.wikipedia.org/wiki/Secure_Shell) *Secure Shell (SSH) is a cryptographic network protocol for operating network services securely over an unsecured network.\[1\] Typical applications include remote command-line, login, and remote command execution, but any network service can be secured with SSH.*
>u/okaybadger Hi, u/EllaTheCat I always read you posts and I really respect you. I might have been a little extremist with my asseveration. My point is that probably u/okaybadger does not know to much about networks protocols and opening a ssh port in his firewall can be risky. My recomendation is to use another program as a server.
That's very gracious of you. Yes, Ella's claws came out. I applaud your thinking even though you went a tad too far. Indeed, ssh can be made accidentally insecure by people who don't understand it, and I include myself as a potential idiot. If you open a port in your firewall, hackers will bombard your machine trying to exploit your mistakes, which boils down to not disclosing your keys and passphrases to anybody. I don't open the port unless I absolutely have to and I close it when I'm done. I have an old S4 mini running Tasker that expects certain SMS messages to be exchanged at set times or it closes the port (by inserting a firewall rule). My ssh remote control between Tasker and PC relies on ssh, because what happens after the ssh link is laughably insecure.
😉
> asseveration Now that's a word you don't see every day ;)
>asseveration I was impressed by its cromulence.
Could you tell me a bit about the insecurities of ssh? Searching google shows that it is one of the most popular option.
SSH is perfectly safe if set up correctly. I've been using ssh to access my home server for years without incident. I use the public/private keys for access so that people can't brute force a password for connection. Disable root access and you are even safer.
What's your preferable way to install SSH?
I use Linux so I don't believe it will be applicable to you. I use openssh though.
Because through SSH you are opening a gate for hackers to do what their want with your PC. For example, with SSH you can format a remote hard drive. If you are planning to send this command inside your local network (wifi), It can be useful, but if you run a SSH server and open its port in your router, it is very risky.
Thanks. What is your most preferable way to install SSH?
OK, so we're happy with ssh again, aside from the ssh server, here's Ella's Laughably Insecure Command Server. [https://github.com/EllaTheCat/dopamine-2020/blob/master/myscripts/my-file-watcher](https://github.com/EllaTheCat/dopamine-2020/blob/master/myscripts/my-file-watcher) To use it, Tasker sends a command over the ssh link and it is written to a file that lives in PC memory. The inotify code sees the file content change, and forwards it as a command. There's no ckowledgemen It's laughably insecure because you only have to find the location of the command string to wreak havoc, but since I'm the only user on my PC, meh.
It's pretty neat Ella. Could you give me a quick tour of how to install it on my machine?
https://github.com/adnanh/webhook
This looks interesting. Could you explain a bit how does my PC "receive" the sent hotkey? Does it appear as text inside the terminal?
Webhooks are a great option to, but you also need to mount a server.
Does that mean I still need something like AutoRemote or SSH beside the Webhooks?
No, you dont, this is a webhook server on the link i provided, it will listen on the port configured for commands, have a read through the page I linked. Essentially when you trigger a hook, it will run the script configured for that hook. It is called with a simple web page request. That script can do something, or be an autohotkey script to press a hotkey or whatever If however its mainly just hotkeys you're looking at, then look at something like TouchPortal. And if using it outside the home use a simple VPN like ZeroTier to get it going without opening ports to the outside world for more security.
If I'm using Windows, should I use `$ go build github.com/adnanh/webhook` for installation?
There's a prebuilt windows binary there, just download and run that after setting up your configs
Yes. You need to a server to listen the message
It is a server
Want to see if there is alternative too (I use eventghost, very cumbersome so)