MobileRead Forums - View Single Post

elinkser · 11-04-2024, 09:41 AM

OK, I don't have a BW or even a bluetooth-capable ereader, but if I may stick my two cents where it may or may not belong...

-Inkvt: relatively easy to compile on Linux, seems like a pro designed it, but not as easy as Fbpad to get working - in fact the devs literally say:
Warning: this project is very experimental! It might brick your device. Only install this if you know what you are doing.
https://www.mobileread.com/forums/sh...16&postcount=4

-KOReader terminal: Koreader release page on github says initial support for BW, so this could be your backup plan. Basic terminal works fine for shell, ssh, vi, but not so great for w3m.

-SSH: I think lordeagle already installed NiLuJe's kobostuff dev utilities package on Elipsa 2E, which is MTK device like BW. If not, there's Alpine binaries, etc,(not an issue).

Security: I personally don't like using my Kobo as an SSH client to a device that does critical stuff like email. I would much rather use an up-to-date iphone or chromebook, or even an out-of-date Blackberry - you know, a device that has concepts of non-root users, fine-grained filesystem access, sandboxing, firewalls, and stuff like that.
Ironically, by locking down the bootloader for the new MTK series, Kobo also succeeded in locking out Quill/Inkbox, which WAS adressing these kinds of issues!
But if you're SSHing to a non-critical device, I guess it's analogous to securing a beater bike with a lightweight cable lock - I do that too!
Edit: I guess if I ONLY use the Kobo for SSHing (not for javascript browsing,running untrusted apps,running Telnet on public networks,etc)then my attack surface is reduced, analogous maybe to only parking my bike in safe neighborhoods, for short periods, etc...
You may also say "no one is targetting your widdle Kobo." I don't argue with that, but I also won't rely on that as a defence of a high-value (critical) device.Funnily, I did have another bike analogy where I used to lock $60 pawnshop bike with a dollar store lock, and it actually worked for months...until one day I parked it in a rundown neighborhood - had to take the bus home.

Buy or Not:Cmon, where you going to get so much functionality and FUN for such a low price?
It'll probably SAVE you money you would spend on other gadgets, but you will now be too busy for!

11-04-2024, 09:41 AM	#3
elinkser Addict Posts: 242 Karma: 146236 Join Date: Oct 2022 Device: Kobo Clara HD	OK, I don't have a BW or even a bluetooth-capable ereader, but if I may stick my two cents where it may or may not belong... -Inkvt: relatively easy to compile on Linux, seems like a pro designed it, but not as easy as Fbpad to get working - in fact the devs literally say: Warning: this project is very experimental! It might brick your device. Only install this if you know what you are doing. https://www.mobileread.com/forums/sh...16&postcount=4 -KOReader terminal: Koreader release page on github says initial support for BW, so this could be your backup plan. Basic terminal works fine for shell, ssh, vi, but not so great for w3m. -SSH: I think lordeagle already installed NiLuJe's kobostuff dev utilities package on Elipsa 2E, which is MTK device like BW. If not, there's Alpine binaries, etc,(not an issue). Security: I personally don't like using my Kobo as an SSH client to a device that does critical stuff like email. I would much rather use an up-to-date iphone or chromebook, or even an out-of-date Blackberry - you know, a device that has concepts of non-root users, fine-grained filesystem access, sandboxing, firewalls, and stuff like that. Ironically, by locking down the bootloader for the new MTK series, Kobo also succeeded in locking out Quill/Inkbox, which WAS adressing these kinds of issues! But if you're SSHing to a non-critical device, I guess it's analogous to securing a beater bike with a lightweight cable lock - I do that too! Edit: I guess if I ONLY use the Kobo for SSHing (not for javascript browsing,running untrusted apps,running Telnet on public networks,etc)then my attack surface is reduced, analogous maybe to only parking my bike in safe neighborhoods, for short periods, etc... You may also say "no one is targetting your widdle Kobo." I don't argue with that, but I also won't rely on that as a defence of a high-value (critical) device.Funnily, I did have another bike analogy where I used to lock $60 pawnshop bike with a dollar store lock, and it actually worked for months...until one day I parked it in a rundown neighborhood - had to take the bus home. Buy or Not:Cmon, where you going to get so much functionality and FUN for such a low price? It'll probably SAVE you money you would spend on other gadgets, but you will now be too busy for! Last edited by elinkser; 11-05-2024 at 07:54 AM. Reason: sp,attack surface,MTK