Thursday, 28 December 2006

I understand the Internet

Yesterday evening we got the last train at 2:15 am. We arrived in the Hostel at around 2:30 am. The night was ok. I guess a fell in sleep at around 3:30 am and slept until 8 am. Four and a half hours of sleep. Not long but actually I am not tired. I guess I dreamed something about the Internet, because when I awoke this morning I understand the Internet. Of course I knew everything about the Internet before, but I wasn't able to get the whole thing, you know? I knew how every single part work, but the whole Internet was a giant fnord for me. Actually I can't remember my dream, but I guess I in my dreams I was able to clear my mind. Now I can imagine the Internet.

Wednesday, 27 December 2006

23rd Chaos Communication Congress

Tomorrow morning I flew to Berlin where the 23rd Chaos Communication Congress takes place. Now it's 8pm local time and I am sitting somewhere in the building on the ground. My ass hurts. It's very uncomfortable. Furthermore I am feeling a bit tired because I not yet drunk something including caffeine except the coffee in the morning.
But all in all the congress is damn good. It's my first CCC and I really enjoy the atmosphere. This dark rooms with thousands of notebook screens illuminating the room. The geeks and nerds sitting all around. And of course the lectures are very interesting.
The infrastructure is a bit unstable. The Wireless-LAN is very slow and the IP-streaming of the lectures doesn't work.
But I am happy with my own infrastructure. The VPN, which connects me secure to my home computer and from there to the internet works very well. The VPN allows me to close all connections to my notebook except the VPN-UDP-port. Very useful in an area where are a lot of hackers.
I guess this day will be a long day. The last lecture will end at one o'clock. Then it will take around half an hour to my hostel.
I hope I won't be too tired tomorrow.

Monday, 25 December 2006

Simulate a laFonera

When you hack your laFonera and disable the heartbeat/autoupdate function or install a new firmware, FON will notice that and maybe lock your account.
I wrote a little bash-script which simulate a laFonera. You can run this script on your normal PC and it checks once a day if there is a new firmware version. I guess this check is the heartbeat of the laFonera. Older versions of the FON Router also connect http://download.fon.com/heartbeat.php but so far I wasn't able to find out if laFonera connect this website, too.
To run the script you need two things. First the public key of the fon server. You can find it on every laFonera. Download it with:
scp root@192.168.10.1:/etc/dropbear/key .
Maybe you have to replace the IP of your laFonera. And, of course, you need ssh enabled on your laFonera.
Second you need the dropbear-ssh-client: dbclient In Debian the package is named dropbear. openssh seems not to work. Nobody knows why.

Download the script from my webpage http://futejia.fu.funpic.de/simthefon.sh (safe as)
Before you run the script the first time, you have to edit three variables.
FONKEY=/home/futejia/fon-hack/key #the path to the fon-public-key you downloaded before
WLMAC=00:18:84:**:**:** #the WLAN mac-adress
MAC=00:18:84:14:**:**:** #the WAN mac-adress

You can find out this mac adresses while running ifconfig on your laFonera. eth0 is the WLAN mac-adress and ath0 is the WAN mac-adress. You can also find the WLAN mac-adress on the backside of the laFonera case.

Now you are ready to run the script. Please report any errors and give feedback. I hope the script is helpfull.

And please: If anybody outhere knows if the laFonere do more heartbeats than downloading the firmware, please leave a comment.

Thursday, 21 December 2006

My way to hack lafonera

I spend the last hours the get ssh-access on my lafonera. Now I want to write a little howto.
  1. Open the case of the router. This is not really necessary but it makes it easier and you can have a view on this beautifully circuit board. Remove the two black nipples on the bottom of the case. (The both on the other side of the antenna.) Under the nipple are bolts. Screw them out. Now you can remove the white part of the case.

  2. Enable the power supply.

  3. Now you need a computer with WLAN. On Linux run
    wpa_passphrase MyPlace serialnumber > /etc/wpa_supplicant/fonera.conf
    Replace serialnumber with the serial number of your lafonera. You can find it on the backside of the green circuit board or on the backside of the grey case.
    Start the wlan with
    wpa_supplicant -Dwext -ieth1 -c/etc/wpa_supplicant/fonera.conf
    Maybe you have to replace eth1 with the device of your WLAN.
    Get an IP with
    dhclient eth1
    and try to contact the fonera with
    ping 192.168.10.1

  4. The hack, described in this howto, is only tested with firmware version 0.7.1r1 and 0.7.0r4 Check on http://192.168.10.1 which firmware version runs on your lafonera. If the firmware is newer than 0.7.1r1 you have to reset the lafonera. Wait until both led's on the circuit board are lighting. (If only one is lighting, wait a few seconds) Now press the reset button on the backside of the circuit board. Press it until the one led stop blinking. It could take around one minute.
    Restart your wlan and check the web-frontend if the firmware version is now 0.7.0r4 or 0.7.1r1

  5. Now you need a little webshell. Copy the html code, you found here: http://futejia.fu.funpic.de/webshell.htm and safe it as webshell.htm or something else. (There are other versions of this webshell, but there are more complicated or didn't work.)
    With this little shell you can execude commands. First you need to open the ssh port. Run this command:
    /usr/sbin/iptables -I INPUT 1 -p tcp --dport 22 -j ACCEPT
    After you have to start the ssh daemon. Run this command:
    /etc/init.d/dropbear
    The run of a command was succesfull when the webfrontend reports no error.

  6. Last step is to connect the lafonera over ssh. Use
    ssh root@192.168.10.1
    1)to connect to lafonera. The password is admin.
    Now have fun with your lafonera. To automatically enable ssh after a restart. Run this on your ssh console:
    mv /etc/init.d/dropbear /etc/init.d/S50dropbear
    Then you have to edit the file /etc/firewall.user
    Uncomment the two lines
    # iptables -t nat -A prerouting_rule -i $WAN -p tcp --dport 22 -j ACCEPT
    # iptables -A input_rule -i $WAN -p tcp --dport 22 -j ACCEPT
    Uncomment means remove the # (In vi you can use x to remove one character. Then press ESC :wq to safe and quite)

I hope this howto was helpfull. Leave a comment if you have problems, or if you want to add something.
I took a few pictures of my lafonera. You can find them in my picasa-webalbum.

Friday, 15 December 2006

Laziness

I am fucking lazy this days. There is so much to day, but I am too lazy to do it. I have to write a letter to a chinese friend. I have to finish my registration for my exchange to China. I have to request my passport and a lot of other stuff. Furthermore there are so much things I want to blog about: Debian Etch running on my IBM Thinkpad T60, the 23rd Chaos Communication Congress and a OpenVPN wich secures my WLAN.
Maybe I am going to start with the blog entries...
And tomorrow I will go to the photographer and take a picture of me for the passport.
Damn it! Laziness sucks.

Monday, 4 December 2006

Casio Exilim S770

On Saturday I got my digicam. I ordered on November, 30th at Amazon and on December, 2nd it was there. (Thanks amazon for being so fast.) The Casio Exilim S770 is my first digicam. Before I always owned an analog camera. After two days of using my opinion is divided. On the one hand the digicam is very small, so I am able to take the camera with me wherever I go, but on the other hand the pictures are very bad. Compared to my analog SLR the photosensitivity of the digicam is very low which means I always have to use the flash and the quality of the pictures and videos becomes bad when I take pictures inside or in the evening.
But all in all I am happy with my new digicam. The camera is good enough for a quick picture you shoot by the way. And this is actually what I wanted. The SanDisk Extreme III SD-card with 2 GB space, I ordered too, is very fast. And there was a nice little docking station included which charges the camera and connects it with the computer.

Saturday, 2 December 2006

Twenty Four Season Five

I finished downloading the fifth season of Twenty Four and I already watched the first five episodes. Until now I can say that the fifth season is much better than the fourth. The fourth was divided into single parts. All six episodes a new case started. It seemed that the authors were out of ideas.
But the fifth season is full of new and fresh ideas. The story developed slowly and it seems that it's one single case. Now I am looking forward to see the rest of the season. I have to finished it until January because in January the 14th the sixth season will start in the USA.