On Wednesday 07 April 2010 11:55:09 Jo-Philipp Wich wrote: > > Can someone have a look at this again please? > > Cannot verify this.
I testet this again with a fresh installation and made the following log of my actions. Between two lines I made some comments to say what happened. ---------- Build informaton ---------- [floh1...@myhost openwrtbuild_branch3]$ svn info Pfad: . URL: svn://svn.openwrt.org/openwrt/branches/backfire Basis des Projektarchivs: svn://svn.openwrt.org/openwrt UUID des Projektarchivs: 3c298f89-4303-0410-b956-a3cf2f4a3e73 Revision: 20736 Knotentyp: Verzeichnis Plan: normal Letzter Autor: jow Letzte geänderte Rev: 20736 Letztes Änderungsdatum: 2010-04-07 00:57:54 +0200 (Mi, 07. Apr 2010) ---------- I used a fresh installation. I used the following tool for flashing: http://x-alina.freifunk-potsdam.de/downloads/dir300-flash/ ---------- ----------- This is the configuration of the network like it was on the device when I connected over telnet. I did not changed enything during the process except the password with passwd. ----------- r...@openwrt:/# cat /etc/config/network config 'interface' 'loopback' option 'ifname' 'lo' option 'proto' 'static' option 'ipaddr' '127.0.0.1' option 'netmask' '255.0.0.0' config 'interface' 'lan' option 'type' 'bridge' option 'proto' 'static' option 'ipaddr' '192.168.1.1' option 'netmask' '255.255.255.0' option 'ifname' 'eth0.1' config 'switch' 'eth0' option 'name' 'eth0' option 'reset' '1' option 'enable_vlan' '1' config 'switch_vlan' 'eth0_1' option 'device' 'eth0' option 'vlan' '1' option 'ports' '0 1 2 3 5t' config 'switch_vlan' 'eth0_2' option 'device' 'eth0' option 'vlan' '2' option 'ports' '4 5t' config 'interface' 'wan' option 'ifname' 'eth0.2' option 'proto' 'dhcp' ---------- What I tried to determine the problem: ---------- -------- -------- Cable from WAN to DHCP-Server (Fritz!Box 7170 Fon Wlan) -------- -------- [floh1...@myhost openwrtbuild_branch3]$ nmap -sP 192.168.178.0/24 Starting Nmap 5.21 ( http://nmap.org ) at 2010-04-07 14:29 CEST Nmap scan report for fritz.box (192.168.178.1) Host is up (0.0012s latency). Nmap scan report for 192.168.178.26 Host is up (0.00043s latency). Nmap scan report for 192.168.178.59 Host is up (0.0021s latency). Nmap done: 256 IP addresses (3 hosts up) scanned in 2.92 seconds ---------- [floh1...@myhost openwrtbuild_branch3]$ ping 192.168.178.59 PING 192.168.178.59 (192.168.178.59) 56(84) bytes of data. 64 bytes from 192.168.178.59: icmp_seq=1 ttl=64 time=3.24 ms 64 bytes from 192.168.178.59: icmp_seq=2 ttl=64 time=3.07 ms ---------- [floh1...@myhost openwrtbuild_branch3]$ telnet 192.168.178.59 Trying 192.168.178.59... telnet: Unable to connect to remote host: Connection refused ---------- [floh1...@myhost openwrtbuild_branch3]$ ssh r...@192.168.178.59 ssh: connect to host 192.168.178.59 port 22: Connection refused ---------- Firefox can't establish a connection to the server at 192.168.178.59. -------------- Why can I see the device but not connect??? 192.168.178.26 is my desktop pc and 192.168.178.1 is the fritz!box. -------------- ---------- ---------- Cable at LAN directly connected to Desktop-PC with IP 192.168.1.5 ---------- ---------- [floh1...@myhost openwrtbuild_branch3]$ nmap -sP 192.168.1.0/24 Starting Nmap 5.21 ( http://nmap.org ) at 2010-04-07 14:34 CEST Nmap scan report for 192.168.1.1 Host is up (0.0046s latency). Nmap scan report for 192.168.1.5 Host is up (0.00019s latency). Nmap done: 256 IP addresses (2 hosts up) scanned in 2.92 seconds ---------- [floh1...@myhost openwrtbuild_branch3]$ telnet 192.168.1.1 Trying 192.168.1.1... Connected to 192.168.1.1. Escape character is '^]'. === IMPORTANT ============================ Use 'passwd' to set your login password this will disable telnet and enable SSH ------------------------------------------ BusyBox v1.15.3 (2010-04-07 01:50:53 CEST) built-in shell (ash) Enter 'help' for a list of built-in commands. _______ ________ __ | |.-----.-----.-----.| | | |.----.| |_ | - || _ | -__| || | | || _|| _| |_______|| __|_____|__|__||________||__| |____| |__| W I R E L E S S F R E E D O M Backfire (10.03, r20736) -------------------------- * 1/3 shot Kahlua In a shot glass, layer Kahlua * 1/3 shot Bailey's on the bottom, then Bailey's, * 1/3 shot Vodka then Vodka. --------------------------------------------------- r...@openwrt:/# exit Connection closed by foreign host. ------------ [floh1...@myhost openwrtbuild_branch3]$ ssh r...@192.168.1.1 The authenticity of host '192.168.1.1 (192.168.1.1)' can't be established. RSA key fingerprint is 39:aa:f2:8e:cb:ac:01:0c:a3:e7:66:71:dd:77:b7:24. Are you sure you want to continue connecting (yes/no)? yes Warning: Permanently added '192.168.1.1' (RSA) to the list of known hosts. r...@192.168.1.1's password: Permission denied, please try again. ---------- --> SSH is enabled before setting passwd over telnet!!! --> What is the password??? Why is SSH enabled? ---------- http://192.168.1.1/cgi-bin/luci Hello and welcome in the network of Freifunk! ---------- [floh1...@myhost openwrtbuild_branch3]$ telnet 192.168.1.1 Trying 192.168.1.1... Connected to 192.168.1.1. Escape character is '^]'. === IMPORTANT ============================ Use 'passwd' to set your login password this will disable telnet and enable SSH ------------------------------------------ BusyBox v1.15.3 (2010-04-07 01:50:53 CEST) built-in shell (ash) Enter 'help' for a list of built-in commands. _______ ________ __ | |.-----.-----.-----.| | | |.----.| |_ | - || _ | -__| || | | || _|| _| |_______|| __|_____|__|__||________||__| |____| |__| W I R E L E S S F R E E D O M Backfire (10.03, r20736) -------------------------- * 1/3 shot Kahlua In a shot glass, layer Kahlua * 1/3 shot Bailey's on the bottom, then Bailey's, * 1/3 shot Vodka then Vodka. --------------------------------------------------- r...@openwrt:/# passwd Changing password for root New password: Retype password: Password for root changed by root r...@openwrt:/# exit Connection closed by foreign host. --------- Now telnet should be disabled and ssh should be enabled --------- [floh1...@myhost openwrtbuild_branch3]$ telnet 192.168.1.1 Trying 192.168.1.1... Connected to 192.168.1.1. Escape character is '^]'. Login failed. Connection closed by foreign host. [floh1...@myhost openwrtbuild_branch3]$ ssh r...@192.168.1.1 r...@192.168.1.1's password: BusyBox v1.15.3 (2010-04-07 01:50:53 CEST) built-in shell (ash) Enter 'help' for a list of built-in commands. _______ ________ __ | |.-----.-----.-----.| | | |.----.| |_ | - || _ | -__| || | | || _|| _| |_______|| __|_____|__|__||________||__| |____| |__| W I R E L E S S F R E E D O M Backfire (10.03, r20736) -------------------------- * 1/3 shot Kahlua In a shot glass, layer Kahlua * 1/3 shot Bailey's on the bottom, then Bailey's, * 1/3 shot Vodka then Vodka. --------------------------------------------------- r...@openwrt:~# --------- This works correctly --------- r...@openwrt:~# reboot && exit Connection to 192.168.1.1 closed. --------- I controlled that the device is rebooting over the led´s (turn on and off) Now the device is booting up and and after bootup telnet should be disabled and ssh enabled like I set before! -------- [floh1...@myhost openwrtbuild_branch3]$ telnet 192.168.1.1 Trying 192.168.1.1... Connected to 192.168.1.1. Escape character is '^]'. === IMPORTANT ============================ Use 'passwd' to set your login password this will disable telnet and enable SSH ------------------------------------------ BusyBox v1.15.3 (2010-04-07 01:50:53 CEST) built-in shell (ash) Enter 'help' for a list of built-in commands. _______ ________ __ | |.-----.-----.-----.| | | |.----.| |_ | - || _ | -__| || | | || _|| _| |_______|| __|_____|__|__||________||__| |____| |__| W I R E L E S S F R E E D O M Backfire (10.03, r20736) -------------------------- * 1/3 shot Kahlua In a shot glass, layer Kahlua * 1/3 shot Bailey's on the bottom, then Bailey's, * 1/3 shot Vodka then Vodka. --------------------------------------------------- r...@openwrt:/# exit Connection closed by foreign host. ------- Hu? I can access telnet??? ------- [floh1...@myhost openwrtbuild_branch3]$ ssh r...@192.168.1.1 @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @ @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY! Someone could be eavesdropping on you right now (man-in-the-middle attack)! It is also possible that the RSA host key has just been changed. The fingerprint for the RSA key sent by the remote host is af:c1:65:15:17:0f:f8:63:0c:16:08:cb:33:22:50:9f. Please contact your system administrator. Add correct host key in /home/floh1111/.ssh/known_hosts to get rid of this message. Offending key in /home/floh1111/.ssh/known_hosts:3 RSA host key for 192.168.1.1 has changed and you have requested strict checking. Host key verification failed. --------- Why that? SSH should be enabled as I set before and not change the host identification!? Okay lets remove the old identification and try again -------- [floh1...@myhost openwrtbuild_branch3]$ rm ~/.ssh/known_hosts [floh1...@myhost openwrtbuild_branch3]$ ssh r...@192.168.1.1 The authenticity of host '192.168.1.1 (192.168.1.1)' can't be established. RSA key fingerprint is af:c1:65:15:17:0f:f8:63:0c:16:08:cb:33:22:50:9f. Are you sure you want to continue connecting (yes/no)? yes Warning: Permanently added '192.168.1.1' (RSA) to the list of known hosts. r...@192.168.1.1's password: Permission denied, please try again. r...@192.168.1.1's password: Permission denied, please try again. r...@192.168.1.1's password: Permission denied (publickey,password). -------- What is going on there??? OpenWrt is not saving my configurations!!!! --------
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ openwrt-devel mailing list openwrt-devel@lists.openwrt.org https://lists.openwrt.org/mailman/listinfo/openwrt-devel
