Register Guidelines E-Books Search Today's Posts Mark Forums Read

Go Back   MobileRead Forums > E-Book Readers > Amazon Kindle > Kindle Developer's Corner

Notices

Reply
 
Thread Tools Search this Thread
Old 01-30-2014, 09:48 PM   #91
knc1
Embedded Cheerleader
knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.
 
knc1's Avatar
 
Posts: 6,386
Karma: 5840126
Join Date: Feb 2012
Device: Too many.
Quote:
Originally Posted by Ethereal View Post
I had to add an entry to allow SSH (over wifi specifically). Seems like that should be the default? I added the following to fw-base.txt:

-A wlan-in -p tcp --dport 22 -j ACCEPT
there are multiple ways to enable / disable ssh - -

add that rule insert and delete into the corresponding method you use to enable / disable ssh.
knc1 is offline   Reply With Quote
Old 02-03-2014, 11:43 AM   #92
Ethereal
Junior Member
Ethereal began at the beginning.
 
Posts: 9
Karma: 10
Join Date: Jan 2014
Device: Kindle PW1
After I have the filter set up to my liking, is there any downside to issuing something like

Quote:
iptables-save > /etc/sysconfig/iptables
In order to avoid automatically enabling the firewall upon reboot? I was able to add my SSH rules easily because the extension is nicely modularized, but I would really like to firewall it on boot because by my family members are not going to turn on airplane mode if they happen to reboot, nor do I want them to be messing with the KUAL extensions anyway.
Ethereal is offline   Reply With Quote
Old 02-03-2014, 12:08 PM   #93
knc1
Embedded Cheerleader
knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.
 
knc1's Avatar
 
Posts: 6,386
Karma: 5840126
Join Date: Feb 2012
Device: Too many.
Quote:
Originally Posted by Ethereal View Post
After I have the filter set up to my liking, is there any downside to issuing something like



In order to avoid automatically enabling the firewall upon reboot? I was able to add my SSH rules easily because the extension is nicely modularized, but I would really like to firewall it on boot because by my family members are not going to turn on airplane mode if they happen to reboot, nor do I want them to be messing with the KUAL extensions anyway.
We like to avoid modifying files in the Amazon image, but other than the chance that this change will cause problems installing a future update, I don't know of any problems.

Keep a copy of the current (Amazon) saved iptables file, just in case you have to revert to them in the future.
knc1 is offline   Reply With Quote
Old 05-16-2014, 07:33 PM   #94
Cykotitan
Enthusiast
Cykotitan is kind to children and small, furry animalsCykotitan is kind to children and small, furry animalsCykotitan is kind to children and small, furry animalsCykotitan is kind to children and small, furry animalsCykotitan is kind to children and small, furry animalsCykotitan is kind to children and small, furry animalsCykotitan is kind to children and small, furry animalsCykotitan is kind to children and small, furry animalsCykotitan is kind to children and small, furry animalsCykotitan is kind to children and small, furry animalsCykotitan is kind to children and small, furry animals
 
Posts: 44
Karma: 6550
Join Date: May 2013
Location: Bosnia & Herzegovina
Device: Kindle Paperwhite 1 WiFi
Just saw this when executing showlog -f, is there any reason for concern? The packets are exiting via wlan-out

-- Before activating firewall:
Code:
   140517:012540 phd[2981]: I udp_tph:listening:host = 23.23.189.4:
   140517:012540 phd[2981]: I udp_tph:goto:srv=23.23.189.27, port=33434:GOTO server
-- After activating:
Code:
   140517:013011 phd[2981]: E udp_tph:sendto_error:to = 23.23.189.27:33434, ret = -1 (of 149), errno = Operation not permitted (1):
   140517:013011 phd[2981]: I udp_tph:restart_udp_tph_rcvr:ret = 6:
   140517:013013 phd[2981]: I udp_tph:listening:host = 23.23.189.4:
   140517:013013 phd[2981]: E udp_tph:sendto_error:to = 23.23.189.4:33434, ret = -1 (of 136), errno = Operation not permitted (1):
   140517:013013 phd[2981]: I udp_tph:restart_udp_tph_rcvr:ret = 6:
   140517:013015 phd[2981]: I udp_tph:listening:host = 23.23.189.4:
   140517:013015 phd[2981]: E udp_tph:sendto_error:to = 23.23.189.4:33434, ret = -1 (of 136), errno = Operation not permitted (1):
   140517:013015 phd[2981]: I udp_tph:restart_udp_tph_rcvr:ret = 6:
Last 3 messages repeat every 2 seconds until firewall is enabled again or airplane mode activated.

Here are the fw stats:
Code:
[root@kindle root]# iptables -L wlan-out -nv | head -n5
Chain wlan-out (1 references)
 pkts bytes target     prot opt in     out     source               destination
    0     0 DROP       all  --  *      *       0.0.0.0/0            23.0.0.0/12
  154 25269 DROP       all  --  *      *       0.0.0.0/0            23.20.0.0/14
    0     0 DROP       all  --  *      *       0.0.0.0/0            50.16.0.0/14

Last edited by Cykotitan; 05-16-2014 at 07:35 PM.
Cykotitan is offline   Reply With Quote
Old 05-16-2014, 08:06 PM   #95
knc1
Embedded Cheerleader
knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.
 
knc1's Avatar
 
Posts: 6,386
Karma: 5840126
Join Date: Feb 2012
Device: Too many.
Just shows that it is working as intended.

I.E: the packet "drop" target is the cause of the "operation not permitted" message.
Which is correct, the purpose is to not permit the Kindle to call home in that address range.

- - - -

Note: It would be more correct (and/or better) if I had used the "reject" target rather than the "drop" target.

But, the stock Kindle firmware build did not include the "reject" target. Duh...
knc1 is offline   Reply With Quote
Old 06-29-2014, 05:01 AM   #96
phoenix512
Member
phoenix512 began at the beginning.
 
phoenix512's Avatar
 
Posts: 21
Karma: 10
Join Date: Feb 2014
Device: kindle PW2
I have PW2 5.4.3.2. Does this app work for me? I want to disable updates
Thanks
phoenix512 is offline   Reply With Quote
Old 06-29-2014, 07:56 AM   #97
knc1
Embedded Cheerleader
knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.
 
knc1's Avatar
 
Posts: 6,386
Karma: 5840126
Join Date: Feb 2012
Device: Too many.
Quote:
Originally Posted by phoenix512 View Post
I have PW2 5.4.3.2. Does this app work for me? I want to disable updates
Thanks
This will prevent the downloading of updates, but that is not its purpose.

Use the "Backdoor Lock" to control updates instead of this.
knc1 is offline   Reply With Quote
Old 07-23-2014, 11:39 AM   #98
Belenos
Enthusiast
Belenos got an A in P-Chem.Belenos got an A in P-Chem.Belenos got an A in P-Chem.Belenos got an A in P-Chem.Belenos got an A in P-Chem.Belenos got an A in P-Chem.Belenos got an A in P-Chem.Belenos got an A in P-Chem.Belenos got an A in P-Chem.Belenos got an A in P-Chem.Belenos got an A in P-Chem.
 
Posts: 28
Karma: 6090
Join Date: Oct 2013
Device: PW
My PW is associated with an Italian account (mine), should I change anything in the filter list or is the "Big Brother" universal?

Thanks knc1
Belenos is offline   Reply With Quote
Old 07-23-2014, 01:02 PM   #99
knc1
Embedded Cheerleader
knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.knc1 ought to be getting tired of karma fortunes by now.
 
knc1's Avatar
 
Posts: 6,386
Karma: 5840126
Join Date: Feb 2012
Device: Too many.
The list is getting fairly old, there may have been some additions to the Amazon network.

But once established, they are part of their network system (mostly served by their "cloud" service - an international abstraction).
I do not expect that there are any "country local" addresses.
knc1 is offline   Reply With Quote
Reply

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
KUAL: Kindle Unified Application Launcher (v 2.4) twobob Kindle Developer's Corner 1343 08-17-2014 10:05 PM
Tools A helpful list of Extensions for KUAL twobob Kindle Developer's Corner 85 07-23-2014 09:29 AM
Tools KUAL DateTime Button knc1 Kindle Developer's Corner 23 05-03-2014 08:52 PM
[KUAL] Button Def. Packages (SUPERSEDED) knc1 Kindle Developer's Corner 6 09-27-2013 07:56 PM
Tutorial HELP ME - with data for Big Brother Blocker (BBB) knc1 Kindle Developer's Corner 12 02-11-2013 08:58 PM


All times are GMT -4. The time now is 07:51 AM.


MobileRead.com is a privately owned, operated and funded community.