Describe the bug

--passwd is part of the CLI. At face value it suggests that it is for the remote account's password, but it is actually for the passphrase of the SSH private key locally.

Expected behavior

I would think this would be better as --passphrase or --pki-passphrase

so, if not root user, how to offer authentication info to efs2 so that it can copy the file to root permission folders?

run sudo is not an option, I think

say, the following works:

RUN CMD cd elasticsearch-6.2.3 && sudo sysctl -w vm.max_map_count=262144

but this will NOT:

RUN CMD cd elasticsearch-6.2.3 && ./bin/elasticsearch -d -p pid or RUN CMD cd elasticsearch-6.2.3 && ./bin/elasticsearch -d -p pid

but it's a common sense to combine and run like this.

we can parse this line and send to server, I don't think this is difficult, but I am not a gopher so I can't make my hand dirty, hope this can be done in the near future.

：）

Describe the idea

After I discovered efs2 shortly I wondered how one could execute arbitrary scripts or programs remotely. Sure you, can

PUT script.sh /tmp/script.sh 0700 RUN /tmp/script.sh; rm /tmp/script.sh

But that seemed not very userfriendly to me.

Then I discovered in that there were once RUN CMD and RUN SCRIPT commands. Now there is only RUN (which is the same as RUN CMD I think). RUN SCRIPT is still there, but undocumented.

Describe possible implementations

Keep RUN SCRIPT and document it.

Suggested Improvement: For security reasons mktemp(1) should be used to create the temporary script on the target.

Goal

An exchange for people wanting to read and contribute to Efs2file scripts that purport to do something useful that others may want to copy.

Design

Some directory structure:

components/
  nginx/
    static-content/
      Efs2file
      readme.md
  sinatra/
    hello-world/
      Efs2file
      readme.md
applications/
  plex-server
    default-setup/
      Efs2file
      readme.md

Examples

The Nginx example of the main README could also exist in this directory structure.

Unknowns

Efs2 doesn't purport to provide a language that adapts to apk/apt/rpm differences, so that might need to be codified in the file or directory naming:

applications/
  plex-server
    default-setup-debian8-and-lower/
      Efs2file
      readme.md
    default-setup-debian9-and-above/
      Efs2file
      readme.md

Description

Please include a summary of the change and which issue is fixed. Please also include relevant motivation and context. List any dependencies that are required for this change.

This change adds some fine-tuning to the documentation but it also addresses the issue of undocumented legacy instructions being available within Efs2.

Type of change

Please delete options that are not relevant.

• [X] New feature (non-breaking change which adds functionality)

Checklist:

• [X] I have performed a self-review of my own code
• [X] I have commented my code, ensuring GoDoc readability and clarity in hard-to-understand areas
• [X] I have made corresponding changes to documentation
• [X] I have added tests that ensure my fix is effective or that my feature works
• [X] Any dependent changes have been merged and published in downstream modules

If checklist items are unchecked please explain.

Describe the bug

Currently, only single-line shell commands are supported.

To Reproduce

This works:

RUN this command does stuff

This doesn't:

RUN this command \
does stuff

Expected behavior

When using multi-line commands, Efs2 should detect the \ and adjust the commands appropriately.

Description

Small README change

Type of change

Please delete options that are not relevant.

• [X] This change requires a documentation update

Checklist:

• [X] I have performed a self-review of my own code
• [X] I have commented my code, ensuring GoDoc readability and clarity in hard-to-understand areas
• [X] I have made corresponding changes to documentation
• [X] I have added tests that ensure my fix is effective or that my feature works
• [X] Any dependent changes have been merged and published in downstream modules

If checklist items are unchecked please explain.

Description

This pull request adds the ability to use the --passwd flag to force Efs2 to ask the user for a password. The password will then be used for authentication to the remote SSH server.

Type of change

Please delete options that are not relevant.

• [X] New feature (non-breaking change which adds functionality)
• [X] This change requires a documentation update

Checklist:

• [X] I have performed a self-review of my own code
• [X] I have commented my code, ensuring GoDoc readability and clarity in hard-to-understand areas
• [X] I have made corresponding changes to documentation
• [X] I have added tests that ensure my fix is effective or that my feature works
• [X] Any dependent changes have been merged and published in downstream modules

If checklist items are unchecked please explain.

Description

This change adds a command line and configuration flag to silence execution output. It does not change any exit codes as users will still rely on those for understanding success or failure.

Type of change

Please delete options that are not relevant.

• [X] New feature (non-breaking change which adds functionality)
• [X] This change requires a documentation update

Checklist:

• [X] I have performed a self-review of my own code
• [X] I have commented my code, ensuring GoDoc readability and clarity in hard-to-understand areas
• [X] I have made corresponding changes to documentation
• [X] I have added tests that ensure my fix is effective or that my feature works
• [X] Any dependent changes have been merged and published in downstream modules

If checklist items are unchecked please explain.

This will fix #1 by adding an error handler after a failed attempt at parsing an encrypted private key. The error handler will prompt the user for the passphrase and try again.

Describe the idea

It would be an advantage to have a configuration file where you could write the default in, so you don't have to always give the parameters.

Describe possible implementations

In the HOME directory, look in the .config folder for an efs2 with a file named config.yml. The structure could be as follows:

verbose: false
ssh_key: ~/.ssh/id_dsa
ssh_port: 2000
ssh_user: root

Maybe it is possible to adjust config/config.go so that it first searches for the config file, and then reads the parameters of the input from the terminal.

Describe the idea

I've a fleet os Raspberry Pi's and smaller less well known devices (Odroid). First boot or first SSH connection of these things oftent goes into an interactive session for initial setup. Completing that workflow before attaching Efs2 for proper post boot setup is a need.

Describe possible implementations

Dialog is a thing that people use. Automating it is a frequent question on Stack Overflow (etc) - https://superuser.com/questions/1041735/automating-dialog - one of the answers links to https://stackoverflow.com/questions/3804577/have-bash-script-answer-interactive-prompts. This seems limited though.

There's https://pypi.org/project/webssh/ which could be used with Selenium (I'm co-creator of v1 back in 2004) to do any timing sensitive navigation of DOM representation of the terminal, and complete that setup.

With that, you'd launch wssh in the background, open selenlium-webdriver, do the needed one-time setup, exit, kill the wssh process.

Then you'd go back in with Efs2 to o the rest (reset default passwords, packages, etc)

Question: Is this the right approach or does Efs2 have a different way?

Additional context

Some little devices have something closer to cloud-init for setup, but there's huge variance for the different OSs that can be used.

Describe the idea

The installation of Efs2 should be as easy as possible. For Mac OS, that means getting into the Brew list of installable programs.

Describe possible implementations

Brew has custom taps that can be used to package and distribute Efs2.

https://docs.brew.sh/How-to-Create-and-Maintain-a-Tap

Additional context

Probably need another issue like this for Linux.

Describe the idea

PUT command enhanced like so for new optional way:

PUT """ blah
        blah
        blah ...""" /etc/nginx/nginx.conf 0644

Additional context

In some cases items to be PUT on the target vm are short/clear and inlining them might boost the quick learning of the Es2file.

With passphrase on key:

efs2 -i /Users/hbokh/.ssh/id_rsa -v -u root hostname.home
Unable to setup SSH client configuration - Unable to read private key file - ssh: cannot decode encrypted private keys

With empty passphrase on key (host was down hence the other errors):

efs2 -i /Users/hbokh/.ssh/id_rsa_nopassphrase -v -u root hostname.home
linux008.internal:22: Executing task 0 - RUN CMD apt-get update
linux008.internal:22: Error connecting to host - dial tcp 192.168.1.1:22: getsockopt: operation timed out
linux008.internal:22: Error executing command - dial tcp 192.168.1.1:22: getsockopt: operation timed out

Since I only use passphrased keys, this is somewhat of a showstopper for me... Can this be fixed?