SSH over websockets

Phil Lello phil at
Fri Jan 30 06:55:25 AEDT 2015

Hi all,

I can't find a working archive search for this list, so please forgive me
if this has been discussed before.

Has any thought been given to supporting websockets in the ssh client? I'm
talking about solely using a websocket as the transport layer, and leaving
the actual protocol intact, as opposed to the (to me, frankly terrifying)
idea of allowing a web server to act as an ssh client to a regular sshd and
providing a terminal interface.

I'm weighing up the pros and cons of this idea in my own mind at the
moment, and whilst I like the idea for providing another transport to
services such as git-over-ssh, I can't help wonder if it would encourage
poor network security.

My main motivation is that it is generally easier to route HTTP across
multiple corporate firewalls than getting ports opened for ssh (even if it
is an embedded sshd such as in gerrit rather than an actual shell). That
said, my main motivation is also probably the biggest reason not to push
this as a standard part of the ssh client.

I'm not subscribed to the list, please cc me in any responses.

Best wishes,

Phil Lello

More information about the openssh-unix-dev mailing list