Messages

1

Debian / Debian Eabi Power Issues

« on: August 07, 2008, 04:22:54 pm »

What sort of battery times are we talking about ?

It seemed like I only got about 45 mins or so in console.
I did do a full apt-get update though over wifi.

I expect the whole thing is an error on my part, but over the weekend (im new to debian on z) ill do a lot more testing and hopefully confirm that its just an illusion!

Well, installing updates over wifi - microdrive spinning all the time + wifi active + backlight set above average (by default, before decreasing it in X) would suck the battery quite fast. 45 minutes seems extremely short, though. I normally get 3+ hours with backlight set to minimum, no wifi, but quite intensive tasks such as playing games in emus, multimedia etc. (my battery is more than a year old).

You can change the back light in andromeda while in console by issuing:
 display-brightness.sh (up/down)  

Wifi annoyingly doesn't have power-saving enabled by default; you have to issue something like "iwconfig wlan0 power 1" to turn it on. Doing that made a massive difference on my Z; in fact I can't tell the difference in runtime between a wifi card in powersave mode (but still being used) and having no wifi card inserted at all!

You are absolutely right,  enabling power saving extends the battery life greatly . The iwconfig manual has examples on controlling the power and rate of your card; here are the related parameters for iwconfig:

txpower
    For cards supporting multiple transmit powers, sets the transmit power in dBm. If W is the power in Watt, the power in dBm is P = 30 + 10.log(W). If the value is postfixed by mW, it will be automatically converted to dBm.
    In addition, on and off enable and disable the radio, and auto and fixed enable and disable power control (if those features are available).
    Examples :
    iwconfig eth0 txpower 15
    iwconfig eth0 txpower 30mW
    iwconfig eth0 txpower auto
    iwconfig eth0 txpower off

power
    Used to manipulate power management scheme parameters and mode.
    To set the period between wake ups, enter period 'value'. To set the timeout before going back to sleep, enter timeout 'value'. You can also add the min and max modifiers. By default, those values are in seconds, append the suffix m or u to specify values in milliseconds or microseconds. Sometimes, those values are without units (number of beacon periods, dwell or similar).
    off and on disable and reenable power management. Finally, you may set the power management mode to all (receive all packets), unicast (receive unicast packets only, discard multicast and broadcast) and multicast (receive multicast and broadcast only, discard unicast packets).
    Examples :
    iwconfig eth0 power period 2
    iwconfig eth0 power 500m unicast
    iwconfig eth0 power timeout 300u all
    iwconfig eth0 power off
    iwconfig eth0 power min period 2 power max period 4

2

Debian / [new] Kernel 2.6.24.4 With Cpufreq

« on: August 07, 2008, 03:26:16 pm »

Can 20r0 please add the ip_table related modules to the kernel?

Check here. I added ip_table related modules.
http://yonggun.tistory.com/72

Yonggun

Thanks 20r0 !!!

Ur the best.

3

Debian / [new] Kernel 2.6.24.4 With Cpufreq

« on: August 06, 2008, 04:47:20 am »

UPDATE: (Partial success)

i tried the  MITM attack (ettercap) using my laptop on my home network and noticed i get the same error (can't initialize 'nat' table) that i get on the zaurus but it works on my laptop running ubuntu so i figured that this error might not be the root of the problem. After trial and error i came to a solution of steps that will make my zaurus so as to be able sniff through ettercap but it still cannot handle sites that use ssl so as to create and fill  fake ssl-certificates on the fly.

Now the other error on the z that does not appear on my laptop is :          dissector 'dns' not supported (etter.conf line 70)

line 70 in etter.conf reads dns=53

The commands corresponding to the ssl dissection used by ettercap  are :

redir_command_on = "iptables -t nat -A PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport"
redir_command_off = "iptables -t nat -D PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport"

Also the extra modules which i think are needed to be able to do this ssl redirectio that appear on my laptop and not on the zaurus are :

ipt_REDIRECT
iptable_nat
nf_nat
nf_conntrack_ipv4
nf_conntrack

On the zaurus i have iptable_mangle loaded instead of the ones above  (among the common ones in both; ip_tables, iptable_filter and x_tables)

Any ideas any1 to get ssl sniffing working ? or how to get (some of) these modules ?

Thnx in advance

Use the old kernel (23.9) with the integrated ip-tables modules. This will work.

Thanks for the reply but I cant find this kernel for the c1000 for sharp rom !

Can 20r0 please add the ip_table related modules to the kernel?

4

Debian / Security Tools On Debian Eabi (long Live The Z)

« on: July 31, 2008, 04:04:54 pm »

Ok next up is metasploit!
Small guide
To install u need to get the required files which are all available through apt-get but cause dependency issues if not installed at the same time.
In a terminal:  apt-get install subversion libruby rdoc libyaml-ruby libzlib-ruby libopenssl-ruby libdl-ruby libreadline-ruby libiconv-ruby rubygems1.8 sqlite3-ruby

then type : svn co http://metasploit.com/svn/framework3/trunk

It will download working files in a folder called trunk in ur home folder (assuming u didnt cd anywhere else)
then just: cd trunk and then ./msfconsole
Ur done, enjoy!

Problems: metasploit3 has an autopawn feature which requires a database. Inside msfconsole i issued: load db_sqlite3 which works fine bu then when i try to create a databad using db_create new, it spits out the following error "Plugin failed to load: failed to connect to database".
So far, i can apply the normal 'use' method (discussed in the link) to choose the exploits but i cant get the database automation through nmap going.
I am going to try fiddling with it or even using the faster but more complictated postgresql

UPDATE: To fix the sqlite3 database error, issue:  gem install activerecord
This installs other files as well and takes alot of time installing documentation ( overclock to 624HZ if u want, i always do)
Autopwn howto

Anyone who can shed some light on the problems or wants help with problems of their own , dont hesitate to reply  

5

Debian / Security Tools On Debian Eabi (long Live The Z)

« on: July 31, 2008, 03:34:04 pm »

Hi every1,

I had a hard time getting ettercap to do any sort of sniffing and firgured i would document what i did so far for myself and as well for others who might find it usueful.
I have only tested this on my home network and i advice against trying it on networks that you don not own as it is highly ILLEGAL and you could bla bla bla ....,.
ettercap at sourceforge
First to install etterrcap (GUI);    apt-get install ettercap
Then enable ip forwarding  by issuing: echo 1 > /proc/sys/net/ipv4/ip_forward in a terminal
To launch it, in a terminal type ettercap -G    (u can also use '-C' for ncurses or '-T' for text mode instead of '-G' which is gtk GUI)
Choose sniff from the top menu and select unified sniffing , then choose the network card u want to use for sniffing
At this point, for some reason, ettercap disables the ip forwarding in our debian ( u can check!  ) and therefore  before doing  anything else issue the following command again :
echo 1 > /proc/sys/net/ipv4/ip_forward
Now , click on hosts on the top menu and choose scan for hosts (or just press Ctrl-S )
After ur host file is loaded (and u check it) , you can proceed to click on Mitm on top menu and choosing arp poisoning. On the arp poisining window , make sure u have 'sniff remote connections' only checked .
Then start sniffing  ! Be careful, the zaurus will have to route traffic through its limited components so if there are many users, you can easily crash the network !

Problems:
I have enabled ssl redirection in /etc/etter.conf file but i still cannot sniff ssl-secured sites and the victim computers do not show the fake certificate required for it to work.
I think it had to do with a missing module but i will update as soon as i know more
I also get a "Disscector 'dns'  no supported (etter.conf line 70) error , no idea why :-)
I get the can't initialize iptables tabl 'nat' error which i also see on my laptop and thus should not be a problem

6

Debian / [new] Kernel 2.6.24.4 With Cpufreq

« on: July 31, 2008, 02:57:10 pm »

UPDATE: (Partial success)

i tried the  MITM attack (ettercap) using my laptop on my home network and noticed i get the same error (can't initialize 'nat' table) that i get on the zaurus but it works on my laptop running ubuntu so i figured that this error might not be the root of the problem. After trial and error i came to a solution of steps that will make my zaurus so as to be able sniff through ettercap but it still cannot handle sites that use ssl so as to create and fill  fake ssl-certificates on the fly.

Now the other error on the z that does not appear on my laptop is :          dissector 'dns' not supported (etter.conf line 70)

line 70 in etter.conf reads dns=53

The commands corresponding to the ssl dissection used by ettercap  are :

redir_command_on = "iptables -t nat -A PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport"
redir_command_off = "iptables -t nat -D PREROUTING -i %iface -p tcp --dport %port -j REDIRECT --to-port %rport"

Also the extra modules which i think are needed to be able to do this ssl redirectio that appear on my laptop and not on the zaurus are :

ipt_REDIRECT
iptable_nat
nf_nat
nf_conntrack_ipv4
nf_conntrack

On the zaurus i have iptable_mangle loaded instead of the ones above  (among the common ones in both; ip_tables, iptable_filter and x_tables)

Any ideas any1 to get ssl sniffing working ? or how to get (some of) these modules ?

Thnx in advance

7

Debian / [new] Kernel 2.6.24.4 With Cpufreq

« on: July 30, 2008, 05:44:31 pm »

Updated: Jul. 16 2008
- RNDIS patch
- PRISM2_DOWNLOAD_SUPPORT and PRISM2_NON_VOLATILE_DOWNLOAD enabled
http://yonggun.tistory.com/72

Great work!   2or0,

One question:
Why are the ip_tables related modules gone in the newer kernel?

Can´t find them in the 2.6.24.3/4 kernel.

Did you check here?
\lib\modules\2.6.24.4-yonggun\kernel\net\ipv4

Hi 20r0 ,

First of thanks for a great debian distro with your latest patches/optimizations that works (almost) flawlessly on my c1000 (though I had to extract rootf and flash the kernel manually).

I am trying to get some network penetration software working on my C1000 running andromeda with latest yonggun kernel , sharp bootloader  on a 4G sd.
I tried running a MITM (man in the middle ) attack using ettercap (GTK) on my home network but had no success ,while i can do it with my linux laptop on the same network just fine.

I get the following  error in the the console while starting sniffing in ettercap:
[div class=\'codetop\']CODE[/div][div class=\'codemain\' style=\'height:200px;white-space:pre;overflow:auto\']iptables v1.4.1.1: can't initialize iptables table 'nat': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.[/div]
I have also enabled forwarding in the configuration files in ettercap so as to use iptables and i enabled IP forwarding in /proc/sys/net/ipv4/ip_forward

Googling around led me to this needed modules

which says that i need these modules :  

modprobe ip_tables
modprobe ip_conntrack
modprobe iptable_filter
modprobe ipt_state

Through lsmod i see i have iptable_filter and ip_tables loaded but not the other two.  I have searched through the whole root filesystem  (/) but they are not there, even in \lib\modules\2.6.24.4-yonggun\kernel\net\ipv4.  Can you please add the remaining two to your next kernel or as separate modules?

If there are other solutions that to fix this problem , please let me know

You can get the same error if you type :
[div class=\'codetop\']CODE[/div][div class=\'codemain\' style=\'height:200px;white-space:pre;overflow:auto\']iptables -t nat -L -n[/div]
Any one managed to get ettercap to work properly ??

Thanks again 20r0 for your amazing contributions to the zaurus community!

8

Debian / So Close To Debian/pdaxii13 Dual Boot!

« on: April 13, 2008, 06:12:11 pm »

Success! I grabbed evilJazz's kernel source tarball (which is unbelievably easy to use) and modified it to use my NAND layout. Kexec'ing now works perfectly!

Can you please make a similarly edited kernel for the c1000, or post steps to do it since I am not familiar with compiling the kernel .
Thanks in advance

9

Debian / Mplayer With Debian Eabi

« on: April 13, 2008, 04:06:04 pm »

Now I just need to mash together a quick script to run mplayer and then redraw the screen as mplayer does not do it.  Anyone know an easy way to do this?

AFAIK ,to redraw the screen u can just just issue xrandr -o normal

good luck

10

Debian / New Icewm Desktop And Menu Solutions

« on: April 13, 2008, 03:38:03 pm »

Great work zdevil !!

Can't wait for the new rootfs which undoubtedly will include ur new fixes/additions!

11

Debian / Debain Eabi On C7x0 With Angstrom 2.6.24 Kernel

« on: April 03, 2008, 02:11:23 pm »

I have been trying to get debain working on my c860 with the new angstrom kernel (2.6.24) but had no luck

AFAIK, yongguns 2.6.24 works only on CK series not c860

12

Debian / Xfce4 With Eabi?

« on: April 01, 2008, 02:19:42 pm »

From what ive seen

rmmod mousedev has to be done outside x  . It doesn't need a reboot AFAIK

It can be also be blacklisted by being added to /etc/modrpobe.d/blacklist so it doesn't  load automatically by adding this to the end of the file .  

blacklist mousedev

a restart is required for blacklisting .
 
after mousedev isn't loaded (u can check by typing lsmod|grep mouse) do

 ts_calibrate and then startx.

13

Debian / Xfce4 With Eabi?

« on: April 01, 2008, 06:45:14 am »

comment out icewm-session in ur .xinitrc file and add under it startxfce4

for rotation add xrandr -o right before startxfce4 in the same file

then use startx to start xfce4

14

Debian / New Desktop Environment - Lxde

« on: March 27, 2008, 07:44:01 pm »

2. Are the desktop icons managed by pcmanfm or some other app? Right/middle clicks don't seem to do anything on the desktop.

You can force all gtk applications to use any icon theme by defining it in /root/.gtkrc.mine . Say, for example, you installed the xfce4 rodent icon theme, it will place a folder called Rodent in in /usr/share/icons. Add this line to the file

gtk-icon-theme-name ="Rodent"

Make sure your /root/.gtkrc links correctly to the .gtkrc.mine file

then reload x

hope this helps

15

Debian / [new] Kernel 2.6.24.4 With Cpufreq

« on: March 25, 2008, 04:44:13 pm »

Thank you 20r0 for the new kernel with cpufreq and fastfpe!!!