mcp-ssh-session
Verified Safeby devnullvoid
Overview
Enables AI agents to establish and manage persistent SSH sessions for remote command execution and file operations on servers and network devices.
Installation
uvx mcp-ssh-sessionEnvironment Variables
- PYTHONUNBUFFERED
- PYTHONDONTWRITEBYTECODE
- DEBUG
Security Notes
The server implements several security measures including running as a non-root user in Docker, read-only mounting of SSH keys/config, output/file size limiting to prevent memory exhaustion, and using base64 for file content during `sudo tee` operations to mitigate shell injection risks. It also explicitly mentions and has fixed a prompt injection vulnerability. However, it uses Paramiko's `AutoAddPolicy` for host keys, which automatically accepts new host keys. While convenient for automation, this bypasses strict host key verification and can be susceptible to MITM attacks if the initial connection is compromised. This is a known trade-off clearly stated in the documentation.
Similar Servers
ssh-mcp-server
Bridging AI assistants to remote SSH server operations for command execution, file transfer, and server status retrieval via the Model Context Protocol (MCP).
mcp-ssh-orchestrator
Provides secure, policy-driven SSH orchestration for AI agents to manage server infrastructure with audit logging, enforcing zero-trust principles.
mcp-ssh-manager
Manages remote SSH servers via the Model Context Protocol (MCP), enabling AI assistants like Claude Code and OpenAI Codex to execute commands, transfer files, monitor health, and automate DevOps tasks.
gbox-mcp-server
Enable AI agents to automate Android devices, Linux environments, and browser sessions.