web-installer-authenticator

    1.0.6 • Public • Published

    Web Installer Authenticator

    NPM

    Make sure you win the race

    Motivation

    I was recently testing out various software on my Lightsail server, and I am disappointed by the poor security of web installers. A lot of them treat the first user to connect as the administrator, which is unfortunately not guaranteed to be you.

    Web Installer Authenticator will crate a cryptographically secure random key to make sure the person typing into the terminal is the same person connecting to the web installer.

    Installation

    You need the latest version of Node.js.

    sudo npm install --global web-installer-authenticator

    Usage

    Usage: wiauth domain target
    
      domain - domain of this proxy server
      target - address to web installer
               a port, a domain, or both
               domain defaults to localhost
    
    Make sure to secure your installer with firewall
    

    It is up to you to secure your installer with a firewall!

    A TLS certificate is highly recommended, you can get free ones from Let's Encrypt.

    Contacts

    Simply open an issue on GitHub.

    If you are reporting a vulnerability or otherwise wish to communicate privately, you can open a confidential issue on GitLab.

    Install

    npm i web-installer-authenticator

    DownloadsWeekly Downloads

    1

    Version

    1.0.6

    License

    MIT

    Unpacked Size

    13.6 kB

    Total Files

    4

    Last publish

    Collaborators

    • jspenguin2017