README
¶
ts-trail
Command ts-trail uploads Tailscale SSH session recordings to an S3 bucket. It deletes uploaded files.
This tool only works on Linux, and assumes that “tailscaled” process runs under systemd. Tested with Tailscale v1.26.1.
Setup
This program is primarily targeted for use in AWS environment, so it relies on AWS SDK credentials discovery logic.
It only needs s3:PutObject permission to upload recordings.
To build from the source, you need to have Go installed.
Then you can either:
-
Clone this repository,
cdinto the clone directory and runGOOS=linux GOARCH=amd64 go buildAdjust
GOARCHfor your target architecture. The resultingts-trailbinary will be in your current directory. -
Install it like by running
GOOS=linux GOARCH=amd64 go install github.com/Doist/ts-trail@latestAdjust
GOARCHfor your target architecture. The resulting binary can be found under your$GOBINdirectory if it's configured, or under the$HOME/go/binotherwise. Notice that if the target OS/architecture differs from the current, the binary will be stored under a subdirectory named likelinux_amd64, so the full path will be something like$HOME/go/bin/linux_amd64/ts-trail.
Copy the binary to the target host, and run it there in self-install mode:
AWS_REGION=us-east-1 ./ts-trail -bucket=myBucketName -install
Adjust the S3 bucket name and AWS region.
The -install flag makes it copy itself to the canonical location, and configures/launches systemd service.
Documentation
Source Files