tunnel-manager
Verified Safeby Knuckles-Team
Overview
This project provides a FastMCP server exposing SSH connection and file transfer capabilities, enabling AI agents to programmatically perform remote server management and automation.
Installation
docker run -d --name tunnel-manager-mcp -p 8002:8002 -e HOST=0.0.0.0 -e PORT=8002 -e TRANSPORT=streamable-http -e TUNNEL_REMOTE_HOST=<your_remote_host> -v ~/.ssh:/root/.ssh:ro docker.io/knucklessg1/tunnel-manager:latest tunnel-manager-mcpEnvironment Variables
- HOST
- PORT
- TRANSPORT
- TUNNEL_REMOTE_HOST
- TUNNEL_USERNAME
- TUNNEL_PASSWORD
- TUNNEL_REMOTE_PORT
- TUNNEL_IDENTITY_FILE
- TUNNEL_INVENTORY
- TUNNEL_INVENTORY_GROUP
- ENABLE_DELEGATION
- OIDC_CLIENT_ID
- OIDC_CLIENT_SECRET
- OIDC_CONFIG_URL
- FASTMCP_SERVER_AUTH_JWT_PUBLIC_KEY
Security Notes
The server uses `paramiko.AutoAddPolicy()` which automatically adds unknown host keys, increasing susceptibility to man-in-the-middle attacks if not in a controlled environment. Direct calls to `os.system` for `ssh-keygen` are made, though arguments appear controlled. The Docker setup mounts `~/.ssh` as read-only into the container, granting access to host SSH keys, which is a necessary but high-privilege operation. Password-based authentication can be used for initial setup, which typically involves passing passwords directly.
Similar Servers
ssh-mcp-server
Bridging AI assistants to remote SSH server operations for command execution, file transfer, and server status retrieval via the Model Context Protocol (MCP).
mcp-ssh-manager
Manages remote SSH servers via the Model Context Protocol (MCP), enabling AI assistants like Claude Code and OpenAI Codex to execute commands, transfer files, monitor health, and automate DevOps tasks.
ssh-mcp-server
Provides secure remote server management capabilities, including SSH connection, command execution, and SFTP file transfers, via the MCP protocol for integration with AI agents.
systems-manager
This project provides a multi-OS system management CLI and an MCP server for automating system maintenance, application management, and configuration via AI or automation systems.