[WLANware] Features added to the Freifunk Kit
Dan Flett
conhoolio at hotmail.com
Tue Aug 22 02:31:03 CEST 2006
Hi Sven-Ola,
tcp_westwood is compiled into the kernel, but it doesn't seem to be
activated anywhere. Here is my default /etc/sysctl.conf from the freifunk
kit v1.2.5.
root at kittest02:/proc/sys/net/ipv4# cat /etc/sysctl.conf
kernel.panic = 3
net.ipv4.ip_forward = 1
net.ipv4.ip_conntrack_max = 16348
net.ipv4.icmp_echo_ignore_broadcasts = 1
net.ipv4.icmp_ignore_bogus_error_responses = 1
net.ipv4.tcp_fin_timeout = 30
net.ipv4.tcp_keepalive_time = 120
net.ipv4.tcp_timestamps = 0
net.ipv4.netfilter.ip_conntrack_tcp_timeout_established = 7200
root at kittest02:/proc/sys/net/ipv4# cat tcp_westwood
0
I've been browsing the CVS at:
http://ff-firmware.cvs.sourceforge.net/ff-firmware/
and I can't find sysctl.conf at all there. Where are the base files for the
filesystem kept?
I added the routine in gen-openwrt to simply add net.ipv4.tcp_westwood = 1
to sysctl.conf if that's what the user wants.
As for the password - I see now that the nvram var ff_pw is not set at
firstboot time. I had a typo in the password-setting routine anyway. I
fixed that and I see that by editing "ff_pw=admin" to something else only
sets the encrypted password in /etc/passwd, leaving ff_pw untouched.
After the typo fix I could log in via ssh with the custom password, but
httpd seems to accept "admin" by default if ff_pw is unset.
So it might be a better approach to leave /bin/firstboot alone and set ff_pw
as the md5crypt-ed password hash in S14ffnvram - and probably use S14ffnram
to re-create /etc/passwd at the same time.
I can find no simple, small program that does an md5crypt hash. So I guess
the best way is to do it the way it is done inside the firmware - httpd from
busybox. So can we include an x86 binary blob of busybox/httpd in the kit?
Cheers,
Dan
> -----Original Message-----
> From: wlanware-bounces at freifunk.net
> [mailto:wlanware-bounces at freifunk.net] On Behalf Of Sven-Ola Tücke
> Sent: Monday, 21 August 2006 6:53 PM
> To: wlanware at freifunk.net
> Subject: Re: [WLANware] Features added to the Freifunk Kit
>
> Dan,
>
> nice work - thanx. Will consider adding that stuff. The
> password ist stored encrypted in NVRAM. You need to build a
> password/dropbear compatible hash for ff_pw. What is wrong
> with tcp_westwood (that's enabled by default?)
>
> PS: Current prime focus is the Multicast-via-UDP stuff aka
> olsr-bmf and (as
> always) JFF2-space. Have found another 128k of flash mem
> without big feature-cuts, so here's the outcome which enable
> one to install a complete tcpdump/libpcap on a WRT54Gv5 with
> only 2Mb Flash:
>
> testing/_trx/openwrt-freifunk-1.3.4-de.trx (usable JFFS2 on
> 2Mb: 320k):
> Kernel: 463k, RootFS: 814k, Jffs2: 2496k/0x270000, TRX: 0x13f000
> openwrt-brcm-2.4-squashfs-rc5.trx: (usable JFFS2 on 2Mb:
> virtally none)
> Kernel: 497k, RootFS: 999k, Jffs2: 2240k/0x230000, TRX:
> 0x176000 openwrt-brcm-2.4-squashfs-micro.trx (usable JFFS2 on
> 2Mb: 256k)
> Kernel: 497k, RootFS: 771k, Jffs2: 2496k/0x270000, TRX: 0x13d000
>
> //Sven-Ola
>
> Dan Flett wrote:
>
> > Hi all,
> >
> > I've been doing some work on the English version of the
> Freifunk Kit -
> > hopefully it will work for other languages too. I've
> modified it so
> > gen-openwrt can set any nvram variable you want as default
> in S14ffnvram.
> > I've also added some routines to gen-openwrt make some other
> > hard-coded settings changeable as well - such as the nameservice
> > suffix, tcp_westwood and the default password.
> >
> > At the moment, the ability to change the default password is broken.
> > Currently my modded gen-openwrt simply uses sed to change
> the "export
> > ff_pw=admin" statement in /bin/firstboot to the user-specified
> > cleartext password. Obviously it's slightly more complex
> than that.
> > :) When you set a custom default password the web interface still
> > accepts "admin" as the password, but ssh doesn't let you in
> at all - no password works.
> >
> > Anyway, even though it's not ready for prime-time, I
> thought I'd share
> > a patch of where I'm at at the moment and get people's feedback
> > (especially Sven-Ola :).
> >
> > Here's the patch against en-kit v1.2.5:
> > http://users.bigpond.net.au/flett/freifunk-kit/freifunk-kit_dan.diff
> >
> > And here are the files I've modified or added. Notice that I have
> > left root.tgz alone. :)
> >
> > http://users.bigpond.net.au/flett/freifunk-kit/gen-openwrt
> > http://users.bigpond.net.au/flett/freifunk-kit/config.sed
> > http://users.bigpond.net.au/flett/freifunk-kit/defaults.network.conf
> > http://users.bigpond.net.au/flett/freifunk-kit/defaults.node.conf
> > http://users.bigpond.net.au/flett/freifunk-kit/functions.sh
> >
> > Cheers,
> >
> > Dan Flett
> >
> > _______________________________________________
> > WLANware mailing list
> > WLANware at freifunk.net
> > Abonnement abbestellen? ->
> > https://freifunk.net/mailman/listinfo/wlanware
> >
> > Weitere Infos zu den freifunk.net Mailinglisten und zur An- und
> > Abmeldung unter http://freifunk.net/mailinglisten
>
> _______________________________________________
> WLANware mailing list
> WLANware at freifunk.net
> Abonnement abbestellen? ->
> https://freifunk.net/mailman/listinfo/wlanware
>
> Weitere Infos zu den freifunk.net Mailinglisten und zur An-
> und Abmeldung unter http://freifunk.net/mailinglisten
>
More information about the WLANware
mailing list