add

Dockerfile

@@ -0,0 +1,48 @@
+FROM ubuntu:22.04
+
+ENV DEBIAN_FRONTEND=noninteractive
+ENV NODE_VERSION=20
+
+RUN apt-get update && apt-get install -y \
+    python3 \
+    python3-pip \
+    wget \
+    curl \
+    gnupg \
+    build-essential \
+    zlib1g-dev \
+    iproute2 \
+    && apt-get clean \
+    && rm -rf /var/lib/apt/lists/*
+
+RUN curl -fsSL https://deb.nodesource.com/setup_${NODE_VERSION}.x | bash - \
+    && apt-get install -y nodejs
+
+RUN wget https://matt.ucc.asn.au/dropbear/dropbear-2024.85.tar.bz2 \
+    && tar xjf dropbear-2024.85.tar.bz2 \
+    && cd dropbear-2024.85 \
+    && ./configure \
+    && make \
+    && make install \
+    && cd .. \
+    && rm -rf dropbear-2024.85 dropbear-2024.85.tar.bz2
+
+RUN useradd -u 1000 -m -s /bin/bash user \
+    && echo 'user:password' | chpasswd
+
+WORKDIR /home/user/app
+
+COPY package*.json ./
+RUN npm ci
+
+COPY . .
+
+RUN chown -R user:user /home/user \
+    && mkdir -p /etc/dropbear \
+    && chown -R user:user /etc/dropbear
+
+EXPOSE 3000 2222
+
+USER user
+
+CMD ["/bin/bash", "start.sh"]

app.js

@@ -0,0 +1,53 @@
+const express = require('express');
+const { Client } = require('ssh2');
+const fs = require('fs').promises;
+
+const app = express();
+const port = process.env.PORT || 3000;
+
+app.use(express.json());
+
+app.post('/execute', async (req, res) => {
+    const { command } = req.body;
+
+    if (!command) {
+        return res.status(400).json({ error: 'Command is required' });
+    }
+
+    try {
+        const conn = new Client();
+        const privateKey = await fs.readFile('/home/user/.ssh/id_rsa');
+
+        conn.on('ready', () => {
+            conn.exec(command, (err, stream) => {
+                if (err) {
+                    conn.end();
+                    return res.status(500).json({ error: 'Failed to execute command' });
+                }
+
+                let output = '';
+                stream.on('close', (code, signal) => {
+                    conn.end();
+                    res.json({ output: output.trim(), code });
+                }).on('data', (data) => {
+                    output += data;
+                }).stderr.on('data', (data) => {
+                    output += data;
+                });
+            });
+        }).on('error', (err) => {
+            res.status(500).json({ error: 'SSH connection failed', details: err.message });
+        }).connect({
+            host: 'localhost',
+            port: 2222,
+            username: 'user',
+            privateKey
+        });
+    } catch (error) {
+        res.status(500).json({ error: 'Internal server error', details: error.message });
+    }
+});
+
+app.listen(port, '0.0.0.0', () => {
+    console.log(`Server running on port ${port}`);
+});

package.json

@@ -0,0 +1,13 @@
+{
+    "name": "ssh-web-app",
+    "version": "1.0.0",
+    "description": "Web app to execute commands via SSH",
+    "main": "app.js",
+    "scripts": {
+        "start": "node app.js"
+    },
+    "dependencies": {
+        "express": "^4.17.1",
+        "ssh2": "^1.11.0"
+    }
+}

start.sh

@@ -0,0 +1,37 @@
+#!/bin/bash
+
+set -e
+set -x
+
+if [ ! -f /etc/dropbear/dropbear_rsa_host_key ]; then
+    dropbearkey -t rsa -f /etc/dropbear/dropbear_rsa_host_key
+fi
+
+if [ ! -f ~/.ssh/id_rsa ]; then
+    mkdir -p ~/.ssh
+    ssh-keygen -t rsa -N "" -f ~/.ssh/id_rsa
+    cat ~/.ssh/id_rsa.pub >> ~/.ssh/authorized_keys
+    chmod 600 ~/.ssh/authorized_keys
+fi
+
+/usr/local/sbin/dropbear -R -F -E -p 2222 &
+
+sleep 2
+
+echo "测试SSH连接..."
+if ssh -o StrictHostKeyChecking=no -p 2222 localhost 'echo SSH连接成功'; then
+    echo "SSH连接测试成功"
+else
+    echo "SSH连接测试失败"
+    exit 1
+fi
+
+npm start &
+
+echo "当前用户: $(whoami)"
+echo "Dropbear 进程: $(pgrep dropbear)"
+echo "Node.js 进程: $(pgrep node)"
+echo "2222 端口监听状态: $(ss -tuln | grep 2222)"
+echo "3000 端口监听状态: $(ss -tuln | grep 3000)"
+
+wait