Show HN：Sshsync – 用于在多个远程服务器上运行 shell 命令的 CLI 工具

Show HN：Sshsync – 用于在多个远程服务器上运行 shell 命令的 CLI 工具
Show HN: Sshsync – CLI tool to run shell commands across multiple remote servers

原始链接: https://github.com/Blackmamoth/sshsync

sshsync是一个命令行工具，用于通过SSH在多台服务器上执行shell命令和传输文件，简化了系统管理员和开发人员的任务。它利用你现有的`~/.ssh/config`文件定义主机，使用`Host`别名进行识别。命令可以在所有主机或`~/.config/sshsync/config.yaml`文件中配置的特定组上运行。主要功能包括并发执行、可配置超时、用于预览操作的预演模式和操作历史记录。文件传输支持推送和拉取文件，并提供目录的递归选项。`gadd`和`sync`命令简化了组管理。身份验证依赖于`asyncssh`和SSH代理转发来处理密码保护的密钥。克隆仓库后，通过`pipx install .`进行安装。命令包括`all`、`group`、`push`、`pull`、`gadd`、`hadd`、`sync`和`ls`。未来的功能包括实时结果和性能增强。

Hacker News用户blackmamoth分享了他们的新CLI工具`sshsync`。它受到`pssh`等工具的启发，旨在通过SSH并发运行shell命令和在多台服务器之间传输文件。主要功能包括：并行命令执行，带有进度指示器的推送/拉取文件传输，使用`~/.ssh/config`的基于YAML的主机分组，用于预览操作的`--dry-run`模式，以及由`rich`提供支持的视觉效果良好的输出。该工具利用`Typer`和`asyncssh`，无需守护进程或复杂的设置，仅依赖于现有的SSH配置。创建者寻求反馈，尤其是在改进`--dry-run`输出方面。一位评论者询问它与Ansible的简化版本有何相似之处。

（评论） 2024-09-21

Pyinfra：使用 Python 自动化基础设施 2024-05-01

TinySSH 是一个使用 NaCl、TweetNaCl 的小型 SSH 服务器 2024-03-25

SSH3：使用 HTTP/3 和 QUIC 的 SSHv2 2023-12-17

Show HN：Nerdlog——快速、多主机 TUI 日志查看器，带时间线直方图 2025-04-21

原文

sshsync is a fast, minimal CLI tool to run shell commands across multiple remote servers via SSH. Easily target all servers or just a specific group, great for sysadmins, developers, and automation workflows.

IMPORTANT:

sshsync uses asyncssh for SSH connections. If you use passphrase-protected SSH keys, you MUST have your ssh-agent running with the keys added via ssh-add. sshsync will rely on SSH agent forwarding to authenticate with protected keys.

Throughout this documentation, whenever "host" is mentioned, it refers to the SSH alias defined by the Host directive in your ~/.ssh/config file, not the actual hostname (HostName directive). sshsync uses these aliases for all operations.

🔁 Run shell commands on all hosts or specific groups
🚀 Executes commands concurrently across servers
🧠 Group-based configuration for easy targeting
🕒 Adjustable SSH timeout settings
📁 Push/pull files between local and remote hosts
📊 Operation history and logging
🔍 Dry-run mode to preview actions before execution

Clone and install manually:

git clone https://github.com/Blackmamoth/sshsync.git
cd sshsync
pipx install .

sshsync [OPTIONS] COMMAND [ARGS]...

Global Options:

--install-completion - Install completion for the current shell
--show-completion - Show completion for the current shell
--help - Show help message and exit

sshsync [OPTIONS] COMMAND [ARGS]...

Running Commands on Servers

sshsync all [OPTIONS] CMD

Options:

--timeout INTEGER - Timeout in seconds for SSH command execution (default: 10)
--dry-run - Show command and host info without executing

Examples:

# Check disk space on all servers with a 20 second timeout
sshsync all --timeout 20 "df -h"

# Preview which hosts would receive the command without executing
sshsync all --dry-run "systemctl restart nginx"

Execute on a Specific Group

sshsync group [OPTIONS] NAME CMD

Options:

--timeout INTEGER - Timeout in seconds for SSH command execution (default: 10)
--dry-run - Show command and host info without executing

Examples:

# Restart web services on production servers
sshsync group web-servers "sudo systemctl restart nginx"

# Preview the command execution on database servers without executing
sshsync group db-servers --dry-run "service postgresql restart"

Push Files to Remote Hosts

sshsync push [OPTIONS] LOCAL_PATH REMOTE_PATH

Options:

--all - Push to all configured hosts
--group TEXT - Push to a specific group of hosts
--host TEXT - Push to a single specific host
--recurse - Recursively push a directory and its contents
--dry-run - Show transfer and host info without executing

Examples:

# Push configuration file to all hosts
sshsync push --all ./config.yml /etc/app/config.yml

# Push directory to web-servers group recursively
sshsync push --group web-servers --recurse ./app/ /var/www/app/

# Preview file transfer to a specific host without executing
sshsync push --host staging-db --dry-run ./db-config.json /etc/postgres/conf.d/

Pull Files from Remote Hosts

sshsync pull [OPTIONS] REMOTE_PATH LOCAL_PATH

Options:

--all - Pull from all configured hosts
--group TEXT - Pull from a specific group of hosts
--host TEXT - Pull from a single specific host
--recurse - Recursively pull a directory and its contents
--dry-run - Show transfer and host info without executing

Examples:

# Pull log files from all database servers
sshsync pull --group db-servers /var/log/mysql/error.log ./logs/

# Pull configuration directory from a specific host
sshsync pull --host prod-web-01 --recurse /etc/nginx/ ./backups/nginx-configs/

# Preview which files would be pulled without executing
sshsync pull --group web-servers --dry-run /var/log/nginx/access.log ./logs/

sshsync gadd [OPTIONS] GROUP

Arguments:

GROUP - The group to add hosts to (required)

Example:

# Add hosts to the 'web' group
sshsync gadd web

This command interactively adds a new host to your SSH config file.

Example:

# Add a new host to your SSH configuration
sshsync hadd

Synchronize Ungrouped Hosts

This command prompts for group assignments for all ungrouped hosts and updates the config.

Example:

# Assign groups to all ungrouped hosts
sshsync sync

List Configured Hosts and Groups

Options:

--with-status - Show whether a host is reachable

Example:

# List all hosts with their connection status
sshsync ls --with-status

sshsync stores its configuration in a YAML file located at ~/.config/sshsync/config.yaml. It uses your existing SSH configuration from ~/.ssh/config for host connection details and stores only group information in its own config file. Before running other commands, it's recommended to run sshsync sync to assign hosts to groups for easier targeting.

Note about hosts: sshsync uses the SSH alias (the Host directive) from your ~/.ssh/config file, not the actual hostname. This means when you specify a host in any sshsync command, you're referring to the SSH alias that you've defined in your SSH config.

Configuration File Structure

groups:
  dev:
  - example.site
  work:
  - work.dev
  - ssh.work.dev
  web:
  - cloudmesh
  - example.com

You can edit this file manually or use the built-in commands to manage groups and hosts.

Note: sshsync leverages your existing SSH configuration for host details, making it easier to maintain a single source of truth for SSH connections.

sshsync now includes operation history and logging functionality. Logs are stored in platform-specific locations:

Windows: %LOCALAPPDATA%\sshsync\logs
macOS: ~/Library/Logs/sshsync
Linux: ~/.local/state/sshsync

These logs track command executions, file transfers, and any errors that occur during operations.

# Check disk space on all servers
sshsync all "df -h"

# View memory usage on all database servers with increased timeout
sshsync group db-servers --timeout 30 "free -m"

# Preview a potentially destructive command without execution
sshsync all --dry-run "sudo apt update && sudo apt upgrade -y"

# Push configuration files to production servers recursively
sshsync push --group production --recurse ./configs/ /etc/app/configs/

# Pull log files from all web servers
sshsync pull --group web-servers /var/log/nginx/error.log ./logs/

# Preview file transfers to validate paths before execution
sshsync push --all --dry-run ./sensitive-config.json /etc/app/config.json

# Add hosts to the dev group
sshsync gadd dev

# Add a new host to your SSH configuration
sshsync hadd

# Assign groups to all ungrouped hosts
sshsync sync

# Check if hosts are reachable
sshsync ls --with-status

Upcoming Features 🛣️

Live results display (--live flag) to show command outputs as they complete
Performance optimizations for large server fleets
Support for additional authentication methods
Automated versioning using release-please for streamlined releases

MIT License