iLiad Userhack v2

[Tscherno]

I've modified the user hack from Ali a little bit:

• The browser from R2D2 is included
• The Wireless script isn't started directly anymore
• It starts the script user_wlan.sh which can be modified to include your SSID and WEP-Key
• The PDF includes a button to chmod the user_wlan.sh

Have fun

Edit: Added chmod

[tribble]

Is that really working? Even if the user_wlan.sh is not set +x?

And you need an "enc" before the WEP key, and the script name for wireless is wireless.sh
So it should be something like this:

Code:

  #Enter your values below. Wep-Key is optional
  ssid="INSECURE"
  wep_key=""
  
  if ["$wep_key" = ""] 
     then /usr/bin/wireless.sh start $ssid
     else /usr/bin/wireless.sh start $ssid enc $wep_key
  fi

[Tscherno]

Quote:

Originally Posted by tribble

Is that really working? Even if the user_wlan.sh is not set +x?

Damn forgot this. I couldn't try it - i'm at work at the moment. Should be possible to chmod it from the pdf, should'nt it?

Quote:

Originally Posted by tribble

And you need an "enc" before the WEP key.
So it should be something like this:

Code:

 #Enter your values below. Wep-Key is optional
 ssid="INSECURE"
 wep_key=""
 
 if ["$wep_key" = ""] 
    then /usr/bin/wired.sh start $ssid
    else /usr/bin/wired.sh start $ssid enc $wep_key
 fi

You are right - i'll change it.

[tribble]

Quote:

Originally Posted by Tscherno

Damn forgot this. I couldn't try it - i'm at work at the moment. Should be possible to chmod it from the pdf, should'nt it?

I think so. As long as we run as root

[Tscherno]

Ok i changed the files. Please try.

[DHer]

you read about the "improved security" fix in v2.5?

i think i know what this might mean. :\

[Tscherno]

Quote:

Originally Posted by DHer

you read about the "improved security" fix in v2.5?

i think i know what this might mean. :\

Where do you read about this?

[tribble]

Quote:

Originally Posted by Tscherno

Where do you read about this?

Irex Homepage.
They say the OS 2.5 is due today and it mentions improved security.

[DHer]

in "my iliad has arrived..." is a list with the v2.5 changelog


And i wanted to try setting up a toolchain next week

I really hope improved security just means that we can set the admin password ourselves so we can use it in insecure networks. But i don't believe it...

[tribble]

Quote:

Originally Posted by DHer

in "my iliad has arrived..." is a list with the v2.5 changelog


And i wanted to try setting up a toolchain next week

I really hope improved security just means that we can set the admin password ourselves so we can use it in insecure networks. But i don't believe it...

Why dont we just add another user? And make him able to login vis ssh and start the wired.sh script? Or do you think the update procedure is so etensive, that they change all files?

[Tscherno]

Quote:

Originally Posted by tribble

Why dont we just add another user? And make him able to login vis ssh and start the wired.sh script? Or do you think the update procedure is so etensive, that they change all files?

I think they simply deliver a new passwd file...

[arivero]

Quote:

Originally Posted by Tscherno

I think they simply deliver a new passwd file...

I hope so. Then it should still be possible to launch things from xpdf, with explicit user authorisation.

In fact a non guessable root passwort is a real need. A local network can have worms.

[DHer]

thus removing our new user.

nicht gut.

[Tscherno]

Yes - i think the best way is really to create an startup script, which creates an user, starts sshd and networking...

[DHer]

HOLY F***ING S***

i bricked my iliad.

i installed netcat (no problem), created a startup script containing the line to make netcat listen to a port and provide a shell (worked) and named it S25something.

The only thing i forgot: networking is enabled later

now the listening netcat blocks the iliad boot process. And i can't use netcat because the network interface is down.

damn.

now i'll be the one to figure out how friendly the iRex user support is. :\