← Back to Skills Marketplace

ZeroTier Remote Web Access

Name: ZeroTier Remote Web Access
Author: maoyf0571

by maoyf0571 · GitHub ↗ · v1.0.1

cross-platform ⚠ suspicious

388

Downloads

Stars

Active Installs

Versions

Install in OpenClaw

/install zerotier-remote-web

Description

通过 ZeroTier 自动绑定 OpenClaw Gateway 到虚拟 IP，实现安全便捷的远程 WEB 控制和访问管理功能。

Usage Guidance

This skill appears to do what it says: it will back up and modify ~/.openclaw/openclaw.json, bind the gateway to 0.0.0.0, add your ZeroTier IP to allowedOrigins, and intentionally relax authentication (allowInsecureAuth = true, dangerouslyDisableDeviceAuth = true). Those are powerful, security-reducing changes — only enable them if you fully understand the risks and trust all devices on the ZeroTier network. Before running: 1) Manually inspect the scripts (they're included) and confirm you accept the auth changes. 2) Make an independent manual backup of ~/.openclaw/openclaw.json and test recovery. 3) Do not blindly run the suggested `curl | sudo bash` installer — instead use official distribution channels or review the installer script. 4) After enabling, rotate or securely manage tokens printed by the script and restrict ZeroTier network membership to trusted devices. 5) Note there are some coding issues (use of await/import in places that may cause runtime errors); test in a safe environment before using on production systems. If you want, I can highlight the exact lines that change authentication and show a safer recommended config alternative.

Capability Analysis

Type: OpenClaw Skill Name: zerotier-remote-web Version: 1.0.1 The skill is classified as suspicious due to several security-weakening configurations in `scripts/enable-remote.mjs` and a risky prerequisite installation method in `SKILL.md`. Specifically, `enable-remote.mjs` configures the OpenClaw gateway to bind to `0.0.0.0` (all network interfaces) and sets `controlUi.allowInsecureAuth: true` and `controlUi.dangerouslyDisableDeviceAuth: true`, which significantly expands the attack surface and weakens the authentication mechanism. While these changes are intended to enable remote access as per the skill's stated purpose, they introduce critical vulnerabilities. Additionally, `SKILL.md` suggests `curl https://install.zerotier.com | sudo bash` for ZeroTier installation, an inherently risky pattern if executed by the agent.

Capability Assessment

✓ Purpose & Capability

The name/description (ZeroTier remote web access) matches the implementation: scripts check ZeroTier, read/modify ~/.openclaw/openclaw.json, back up files, and restart the OpenClaw gateway. No unrelated credentials or cloud APIs are requested.

ℹ Instruction Scope

The SKILL.md and scripts perform file reads/writes under the user's home (~/.openclaw/openclaw.json), system commands (systemctl, zerotier-cli, ip, ss, pgrep, pkill, nohup), and modify auth-related fields (allowInsecureAuth, dangerouslyDisableDeviceAuth) and bind to 0.0.0.0. These actions are within the stated scope but have significant security implications (they deliberately relax authentication and expose services). SKILL.md also suggests installing ZeroTier via `curl | sudo bash`, which is a potentially risky installation pattern to follow blindly.

✓ Install Mechanism

This is an instruction-only skill with included scripts; there is no install spec that downloads external archives. The skill does not pull code from third-party URLs at install time. The only external installation guidance in SKILL.md is a recommendation to run ZeroTier's installer via curl, which is common but should be treated cautiously.

✓ Credentials

The skill requests no environment variables or external credentials. It reads and writes the local OpenClaw config and uses local system tools (ZeroTier CLI, systemctl). That access is proportional to the purpose of changing gateway binding and authentication.

✓ Persistence & Privilege

The skill is not always-enabled and is user-invocable. It only modifies the OpenClaw configuration in the user's home directory and restarts the gateway process; it does not alter other skills or system-wide agent settings. This is expected for its functionality.

How to Use

Make sure OpenClaw is installed (local or Docker)
Run the install command in chat: /install zerotier-remote-web
After installation, invoke the skill by name or use /zerotier-remote-web
Provide required inputs per the skill's parameter spec and get structured output

Version History

v1.0.1

Updated to bind 0.0.0.0 for better compatibility with SSH and local access

v1.0.0

Initial release

Metadata

Slug zerotier-remote-web

Version 1.0.1

License —

All-time Installs 0

Active Installs 0

Total Versions 2

Frequently Asked Questions

What is ZeroTier Remote Web Access?

通过 ZeroTier 自动绑定 OpenClaw Gateway 到虚拟 IP，实现安全便捷的远程 WEB 控制和访问管理功能。 It is an AI Agent Skill for Claude Code / OpenClaw, with 388 downloads so far.

How do I install ZeroTier Remote Web Access?

Run "/install zerotier-remote-web" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is ZeroTier Remote Web Access free?

Yes, ZeroTier Remote Web Access is completely free (open-source). You can download, install and use it at no cost.

Which platforms does ZeroTier Remote Web Access support?

ZeroTier Remote Web Access is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created ZeroTier Remote Web Access?

It is built and maintained by maoyf0571 (@maoyf0571); the current version is v1.0.1.

More Skills