Buffalo NAS-Central Forums

Welcome to the Linkstation Wiki community
It is currently Mon Jun 18, 2018 12:55 pm

All times are UTC+01:00




Post new topic  Reply to topic  [ 26 posts ]  Go to page 1 2 Next
Author Message
PostPosted: Sat Feb 06, 2010 10:38 pm 
Offline
Regular Member

Joined: Sat Nov 11, 2006 10:56 am
Posts: 714
This is how you setup telnet and ssh to work well on chl v2 and xhl 1.24 firmware

add this to
/etc/securetty

pts/0
pts/1
pts/2
pts/3
pts/4
pts/5
pts/6
pts/7
pts/8
pts/9

make sshd_config consist of only the following
/etc/sshd_config

port 22
Protocol 2,1
PermitRootLogin yes
StrictModes yes
PermitEmptyPasswords yes
UsePrivilegeSeparation no
Subsystem sftp /usr/local/libexec/sftp-server

have these in /etc
I just copy'd mine from /etc on my HS-DHGL 1.20 Jap firmware

ssh_host_dsa_key
ssh_host_dsa_key.pub
ssh_host_key
ssh_host_key.pub
ssh_host_rsa_key
ssh_host_rsa_key.pub

use the latest busybox at http://busybox.net/downloads/binaries/1.16.0/busybox-armv5l
and rename it to busybox

just put it in /bin
and make a shortcut to it in /usr/sbin
by going to /usr/sbin and typing ln -s ../../bin/busybox ./telnetd

chown root:root /bin/busybox
chmod 4755 /bin/busybox


Image

you are now able to log into any account even after passwd -d root etc on telnet and ssh


Last edited by Shonk on Fri Feb 19, 2010 6:45 pm, edited 7 times in total.

Top
   
 Post subject: Re: 1.24 Telnet/SSH
PostPosted: Sun Feb 07, 2010 8:22 am 
Offline
Moderator

Joined: Fri Jun 29, 2007 10:39 am
Posts: 2604
Can you access the machine using acp_commander?
If yes, start an interactive session and do this:
Code:
chmod 4555 /bin/su

Now you should be able to su to root.
For ssh root access you have to edit the config file and set this:
Code:
PermitRootLogin yes
UsePrivilegeSeparation no


And don't forget to put your public key into the authorized_keys file.

_________________
Please do not use private mail (PN/M) to ask questions. Use the proper forum instead. (me)

If there is no verified backup of a dataset, the dataset, by definition, is unimportant. (c't 2012)

RAID (no matter which level) never ever substitutes a backup. (me)


Top
   
 Post subject: Re: 1.24 Telnet/SSH
PostPosted: Sun Feb 07, 2010 12:56 pm 
Offline
Regular Member

Joined: Sat Nov 11, 2006 10:56 am
Posts: 714
nope dont work


Last edited by Shonk on Mon Feb 08, 2010 1:42 am, edited 1 time in total.

Top
   
 Post subject: Re: 1.24 Telnet/SSH
PostPosted: Sun Feb 07, 2010 1:26 pm 
Offline
Moderator

Joined: Fri Jun 29, 2007 10:39 am
Posts: 2604
Should look like this:
Code:
-r-sr-xr-x    1 root     root        24684 Nov 14 00:30 /bin/su


The "s" is the important one, which is set by the command I gave you.
Without acp_commander access I do not know any way to set this but
to remove the drive, connect it to a Linux machine and change it then.

_________________
Please do not use private mail (PN/M) to ask questions. Use the proper forum instead. (me)

If there is no verified backup of a dataset, the dataset, by definition, is unimportant. (c't 2012)

RAID (no matter which level) never ever substitutes a backup. (me)


Top
   
 Post subject: Re: 1.24 Telnet/SSH
PostPosted: Sun Feb 07, 2010 1:36 pm 
Offline
Regular Member

Joined: Sat Nov 11, 2006 10:56 am
Posts: 714
i have root access via acp ofc

i have also built firmware with telnet and such into it already
the idea is once i have fully opened up ssh and telnet and su
to release a firmware for other's

Image


Top
   
 Post subject: Re: 1.24 Telnet/SSH
PostPosted: Sun Feb 07, 2010 1:56 pm 
Offline
Regular Member

Joined: Sat Nov 11, 2006 10:56 am
Posts: 714
editing /etc/pam.d/su

and commenting out auth required pam_wheel.so use_uid
results in
admin@Nas:/etc/pam.d$ su
su: Authentication failure


Top
   
 Post subject: Re: 1.24 Telnet/SSH
PostPosted: Sun Feb 07, 2010 2:24 pm 
Offline
Regular Member

Joined: Sat Nov 11, 2006 10:56 am
Posts: 714
ok im in as root via ssh

login as: root
root@Nas:~#


Top
   
 Post subject: Re: 1.24 Telnet/SSH
PostPosted: Sun Feb 07, 2010 2:45 pm 
Offline
Regular Member

Joined: Sat Nov 11, 2006 10:56 am
Posts: 714
...


Last edited by Shonk on Mon Feb 08, 2010 1:43 am, edited 1 time in total.

Top
   
 Post subject: Re: 1.24 Telnet/SSH
PostPosted: Sun Feb 07, 2010 3:20 pm 
Offline
Regular Member

Joined: Sat Nov 11, 2006 10:56 am
Posts: 714
...


Top
   
PostPosted: Fri Feb 19, 2010 9:11 am 
Offline
Newbie

Joined: Sat Jan 09, 2010 4:58 pm
Posts: 10
Hi.

I am kinda new to this stuff. How exactly do you get telnet access for a newly installed 1.24 firmware?

I tried the acp_commander but this does not appear to work anymore (worked for me in 1.10). Do you have to mod the hddrootfs.img before updating to enable ssh/telnet?

Please help.


Top
   
PostPosted: Fri Feb 19, 2010 9:57 am 
Offline
Moderator

Joined: Fri Jun 29, 2007 10:39 am
Posts: 2604
You can try this: http://buffalo.nas-central.org/wiki/Ope ... are_LS-XHL
Maybe this works for 1.24 also.

_________________
Please do not use private mail (PN/M) to ask questions. Use the proper forum instead. (me)

If there is no verified backup of a dataset, the dataset, by definition, is unimportant. (c't 2012)

RAID (no matter which level) never ever substitutes a backup. (me)


Top
   
PostPosted: Fri Feb 19, 2010 6:49 pm 
Offline
Regular Member

Joined: Sat Nov 11, 2006 10:56 am
Posts: 714
if you are new save your self the trouble
and install the open stock 1.24 firmware


Decapdk wrote:
Hi.

I am kinda new to this stuff. How exactly do you get telnet access for a newly installed 1.24 firmware?

I tried the acp_commander but this does not appear to work anymore (worked for me in 1.10). Do you have to mod the hddrootfs.img before updating to enable ssh/telnet?

Please help.


Top
   
PostPosted: Fri Feb 19, 2010 6:51 pm 
Offline
Regular Member

Joined: Sat Nov 11, 2006 10:56 am
Posts: 714
the guide doesnt work for 1.24

kenatonline wrote:
You can try this: http://buffalo.nas-central.org/wiki/Ope ... are_LS-XHL
Maybe this works for 1.24 also.


Top
   
PostPosted: Sat Feb 27, 2010 7:07 pm 
Offline
Moderator

Joined: Fri Jun 29, 2007 10:39 am
Posts: 2604
I added a new section for opening the 1.24 firmware (although this should
work for ALL versions) to the guide.
Hopefully this will now last longer than just one release of the firmware. :-(

_________________
Please do not use private mail (PN/M) to ask questions. Use the proper forum instead. (me)

If there is no verified backup of a dataset, the dataset, by definition, is unimportant. (c't 2012)

RAID (no matter which level) never ever substitutes a backup. (me)


Top
   
PostPosted: Wed Mar 03, 2010 5:02 pm 
Offline
Total Newbie

Joined: Wed Mar 03, 2010 4:48 pm
Posts: 2
kenatonline wrote:
I added a new section for opening the 1.24 firmware (although this should
work for ALL versions) to the guide.
Hopefully this will now last longer than just one release of the firmware. :-(


Hi kenatonline,

this is my first post since the box just arrived ;) but I did read all the possible topics on the subject...
First of all, I followed your guide and would mention it is very clear and supported well with all the needed files, thanks for well done work! After upgrading my box with the modified fw I am able to get in via telnet but not the same for ssh. I followed the recommendation for root user password reset and it is cleared, but still could not log in:

LS-XHL19E (Linux release 2.6.22.18-88f6281 #50 Tue Dec 22 18:06:23 JST 2009) (0)

login: admin
Password for admin:
login: Configuration file does not specify default realm when parsing name admin
admin@LS-XHL19E:~$
admin@LS-XHL19E:~$ cd /etc
admin@LS-XHL19E:/etc$ vi shadow
root::11009:0:99999:7:::
t::11009:0:99999:7:::
bin:*:11009:0:99999:7:::
daemon:*:11009:0:99999:7:::
halt:*:11009:0:99999:7:::
ftp:*:11009:0:99999:7:::
rpc:*:11009:0:99999:7:::
rpcuser:*:11009:0:99999:7:::
apache:*:11009:0:99999:7:::
admin:$1$C6l2WzPj$3UwK35Eq8lDAPb0Bo5Uai.:14668:0:99999:7:::
sshd:!:13241:0:99999:7:::
nobody:!:13148:0:99999:7:::
guest:!:13148:0:99999:7:::


Any idea/recommendation?

Thank you,
Alexander


Last edited by Alexander on Wed Mar 03, 2010 8:46 pm, edited 1 time in total.

Top
   
Display posts from previous:  Sort by  
Post new topic  Reply to topic  [ 26 posts ]  Go to page 1 2 Next

All times are UTC+01:00


Who is online

Users browsing this forum: No registered users and 3 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Powered by phpBB® Forum Software © phpBB Limited