feature request: SSH toggle

Yes. It will be really easy to add. Plus when I need it, I will just toggle it on, if not needed-toggle off.

Plus I don't really like sending ROOT (!) shell (even in LAN) as it can be a possibility for attack vector.

And pls add some script to automatically regenerate HTTPS certs for admin panel after they will run of time. It is needed if product will be EOL, but certs will be new.

For example something like this (found somewhere):

Script
#!/bin/sh

# Configuration
CERT_DIR="/etc/ssl/certs"  # Directory to store the certificate
KEY_DIR="/etc/ssl/private"  # Directory to store the private key
CERT_FILE="$CERT_DIR/selfsigned.crt"
KEY_FILE="$KEY_DIR/selfsigned.key"
EXPIRY_THRESHOLD=30  # Days before expiration to renew

# Check if the certificate exists
if [ ! -f "$CERT_FILE" ]; then
    echo "Certificate not found. Generating a new one."
    openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout "$KEY_FILE" -out "$CERT_FILE" -subj "/CN=yourdomain.com"
    exit 0
fi

# Get the expiration date of the certificate
EXPIRY_DATE=$(openssl x509 -in "$CERT_FILE" -noout -enddate | cut -d= -f2)
EXPIRY_TIMESTAMP=$(date -d "$EXPIRY_DATE" +%s)
CURRENT_TIMESTAMP=$(date +%s)

# Calculate the number of days until expiration
DAYS_UNTIL_EXPIRY=$(( (EXPIRY_TIMESTAMP - CURRENT_TIMESTAMP) / 86400 ))

# Check if the certificate is about to expire
if [ "$DAYS_UNTIL_EXPIRY" -le "$EXPIRY_THRESHOLD" ]; then
    echo "Certificate is expiring in $DAYS_UNTIL_EXPIRY days. Generating a new one..."
    openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout "$KEY_FILE" -out "$CERT_FILE" -subj "/CN=yourdomain.com"
else
    echo "Certificate is valid for $DAYS_UNTIL_EXPIRY more days."
fi

Also @alzhao please take a look on this thread. I created new, not to flood off topic here.