I wanted a way to access my mac terminal from my iphone without setting up any vpn or weird router rules and then buying a separate ssh app in app store. So I built macky.dev as a fun side project.
When the mac app is running it makes an outbound connection to my signaling server and registers itself under the account. iPhone also connects to this same signaling server to request a connection to this mac. Once both the host and remote are verified it establishes a direct p2p webrtc connection.
If you're using tmux, you can try my plugin https://github.com/bjesus/muxile . It sends your tmux session to your phone, with quick QR code scanning and WebSockets.
I’m not sure I get why this is better. Something like Tailscale makes it trivial to connect to your own machines and is likely more secure than this will be. Tailscale even has a free plan these days. Combine that with something like this that was shared on HN a few days ago: https://replay.software/updates/introducing-echo
Then you’re all in for like $3. What about webRTC makes this better?
In no serious case have I ever considered connecting to my PC terminal using phone. Connecting from PC to phone makes sense, but when talking the opposite situation, phones simply are terrible at doing things from terminal. Keyboard takes roughly 40% of the screen, and displaying wide lines is awkward. Forget about TUI applications, Midnight Commander and such. Other than toying around and extreme emergencies, why?
Shell In A Box has been a thing for like two decades now, and gives you a simple web-based interface ssh interface you can use from any device. https://github.com/shellinabox/shellinabox
Is this profitable? Can imagine it competing with programming tools like Replit, Val town, Openclaw; acting as server for occasionally syncing tools like Bitwarden, Obsidian; webhook receiving tools; VPSes etc.
Regardless of the poor security guarentees and or personal disinterest in such a service. I don't think services which offer continuous services should ever have a "lifetime" price. With a lifetime subscription the incentive of the company is to offer poor service, or to stop alltogether when revenue from growth is no longer outpacing operating costs. I'd much prefer it if the $29/lifetime would just be $29 / 4 years instead, it would make me much more secure in onboarding onto your proprietary service as I would feel more secure about it's future existence.
I had a play with it using mitmproxy and one thing is for sure, it doesn't implement certificate pinning. It happily connected to my self-signed certificate. When you set a master password for access to your Mac it's sent to their server (a Cloudflare Worker) as plaintext (albeit over TLS) rather than using it as input to a key derivation function. That makes me think it's probably stored server-side with little to no security. All in all, there ain't a bargepole long enough for me to touch this with.
I also love seeing it used for 'kill the jump box' and file transfer. Just drives me crazy that we lets files sit on file providers.
Especially if you are transferring in the office! Send it right over the LAN and could be instant. Being forced to upload + download from remote servers frustrates me.
29 comments
[ 3.8 ms ] story [ 47.7 ms ] threadWhen the mac app is running it makes an outbound connection to my signaling server and registers itself under the account. iPhone also connects to this same signaling server to request a connection to this mac. Once both the host and remote are verified it establishes a direct p2p webrtc connection.
Then you’re all in for like $3. What about webRTC makes this better?
https://news.ycombinator.com/item?id=47122939 (yesterday, 3 points, 4 comments)
https://news.ycombinator.com/item?id=47103613 (Sunday, 1 point, 0 comments)
Just kidding
It is not at all safe and should absolutely not be on the FP.
I also love seeing it used for 'kill the jump box' and file transfer. Just drives me crazy that we lets files sit on file providers.
Especially if you are transferring in the office! Send it right over the LAN and could be instant. Being forced to upload + download from remote servers frustrates me.