[WLANware] Features added to the Freifunk Kit

Dan Flett conhoolio at hotmail.com
Tue Aug 22 02:31:03 CEST 2006 

Hi Sven-Ola,

tcp_westwood is compiled into the kernel, but it doesn't seem to be
activated anywhere.  Here is my default /etc/sysctl.conf from the freifunk
kit v1.2.5.

root at kittest02:/proc/sys/net/ipv4# cat /etc/sysctl.conf
kernel.panic = 3
net.ipv4.ip_forward = 1
net.ipv4.ip_conntrack_max = 16348
net.ipv4.icmp_echo_ignore_broadcasts = 1
net.ipv4.icmp_ignore_bogus_error_responses = 1
net.ipv4.tcp_fin_timeout = 30
net.ipv4.tcp_keepalive_time = 120
net.ipv4.tcp_timestamps = 0
net.ipv4.netfilter.ip_conntrack_tcp_timeout_established = 7200

root at kittest02:/proc/sys/net/ipv4# cat tcp_westwood
0

I've been browsing the CVS at:
http://ff-firmware.cvs.sourceforge.net/ff-firmware/
and I can't find sysctl.conf at all there.  Where are the base files for the
filesystem kept?

I added the routine in gen-openwrt to simply add net.ipv4.tcp_westwood = 1
to sysctl.conf if that's what the user wants.

As for the password - I see now that the nvram var ff_pw is not set at
firstboot time.  I had a typo in the password-setting routine anyway.  I
fixed that and I see that by editing "ff_pw=admin" to something else only
sets the encrypted password in /etc/passwd, leaving ff_pw untouched.  

After the typo fix I could log in via ssh with the custom password, but
httpd seems to accept "admin" by default if ff_pw is unset.

So it might be a better approach to leave /bin/firstboot alone and set ff_pw
as the md5crypt-ed password hash in S14ffnvram - and probably use S14ffnram
to re-create /etc/passwd at the same time.

I can find no simple, small program that does an md5crypt hash.  So I guess
the best way is to do it the way it is done inside the firmware - httpd from
busybox.  So can we include an x86 binary blob of busybox/httpd in the kit?

Cheers,

Dan

> -----Original Message-----
> From: wlanware-bounces at freifunk.net 
> [mailto:wlanware-bounces at freifunk.net] On Behalf Of Sven-Ola Tücke
> Sent: Monday, 21 August 2006 6:53 PM
> To: wlanware at freifunk.net
> Subject: Re: [WLANware] Features added to the Freifunk Kit
> 
> Dan,
> 
> nice work - thanx. Will consider adding that stuff. The 
> password ist stored encrypted in NVRAM. You need to build a 
> password/dropbear compatible hash for ff_pw. What is wrong 
> with tcp_westwood (that's enabled by default?)
> 
> PS: Current prime focus is the Multicast-via-UDP stuff aka 
> olsr-bmf and (as
> always) JFF2-space. Have found another 128k of flash mem 
> without big feature-cuts, so here's the outcome which enable 
> one to install a complete tcpdump/libpcap on a WRT54Gv5 with 
> only 2Mb Flash:
> 
> testing/_trx/openwrt-freifunk-1.3.4-de.trx (usable JFFS2 on 
> 2Mb: 320k):
>   Kernel: 463k, RootFS: 814k, Jffs2: 2496k/0x270000, TRX: 0x13f000
> openwrt-brcm-2.4-squashfs-rc5.trx: (usable JFFS2 on 2Mb: 
> virtally none)
>   Kernel: 497k, RootFS: 999k, Jffs2: 2240k/0x230000, TRX: 
> 0x176000 openwrt-brcm-2.4-squashfs-micro.trx (usable JFFS2 on 
> 2Mb: 256k)
>   Kernel: 497k, RootFS: 771k, Jffs2: 2496k/0x270000, TRX: 0x13d000
> 
> //Sven-Ola
> 
> Dan Flett wrote:
> 
> > Hi all,
> > 
> > I've been doing some work on the English version of the 
> Freifunk Kit - 
> > hopefully it will work for other languages too.  I've 
> modified it so 
> > gen-openwrt can set any nvram variable you want as default 
> in S14ffnvram.
> > I've also added some routines to gen-openwrt make some other 
> > hard-coded settings changeable as well - such as the nameservice 
> > suffix, tcp_westwood and the default password.
> > 
> > At the moment, the ability to change the default password is broken.
> > Currently my modded gen-openwrt simply uses sed to change 
> the "export 
> > ff_pw=admin" statement in /bin/firstboot to the user-specified 
> > cleartext password.  Obviously it's slightly more complex 
> than that. 
> > :)  When you set a custom default password the web interface still 
> > accepts "admin" as the password, but ssh doesn't let you in 
> at all - no password works.
> > 
> > Anyway, even though it's not ready for prime-time, I 
> thought I'd share 
> > a patch of where I'm at at the moment and get people's feedback 
> > (especially Sven-Ola :).
> > 
> > Here's the patch against en-kit v1.2.5:
> > http://users.bigpond.net.au/flett/freifunk-kit/freifunk-kit_dan.diff
> > 
> > And here are the files I've modified or added.  Notice that I have 
> > left root.tgz alone. :)
> > 
> > http://users.bigpond.net.au/flett/freifunk-kit/gen-openwrt
> > http://users.bigpond.net.au/flett/freifunk-kit/config.sed
> > http://users.bigpond.net.au/flett/freifunk-kit/defaults.network.conf
> > http://users.bigpond.net.au/flett/freifunk-kit/defaults.node.conf
> > http://users.bigpond.net.au/flett/freifunk-kit/functions.sh
> > 
> > Cheers,
> > 
> > Dan Flett
> > 
> > _______________________________________________
> > WLANware mailing list
> > WLANware at freifunk.net
> > Abonnement abbestellen? -> 
> > https://freifunk.net/mailman/listinfo/wlanware
> > 
> > Weitere Infos zu den freifunk.net Mailinglisten und zur An- und 
> > Abmeldung unter http://freifunk.net/mailinglisten
> 
> _______________________________________________
> WLANware mailing list
> WLANware at freifunk.net
> Abonnement abbestellen? -> 
> https://freifunk.net/mailman/listinfo/wlanware
> 
> Weitere Infos zu den freifunk.net Mailinglisten und zur An- 
> und Abmeldung unter http://freifunk.net/mailinglisten
>

More information about the WLANware mailing list