我在安装openwrt原版luci的道路上越行越远,折腾好几宿了,能不成。
openv也能不成
实在不行就把wan口的ssh使能了,并把端口改了,就是不太安全。
然后弄个黑群辉。弄个博客。,定时备份。
技术好贴,收藏!
本帖最后由 yang1340751 于 2020-1-31 11:03 编辑
LZ,你好,我按照你的第一步操作,已经替换了/mnt/jffs2/hw_ctree.xml hw_ctree.xml
添加好SSH功能
cd /tmp#进入/tmp目录
cp /mnt/jffs2/hw_ctree.xml hw_ctree.xml.gz#复制/mnt/jffs2/hw_ctree.xml到/tmp目录并重命名为hw_ctree.xml.gz
aescrypt2 1 hw_ctree.xml.gz tmp #解密/tmp/hw_ctree.xml.gz结果如下
WAP(Dopra Linux) # cp /mnt/jffs2/hw_ctree.xml /tmp/hw_ctree.xml.gz
WAP(Dopra Linux) # aescrypt2 1 hw_ctree.xml.gz tmp
WAP(Dopra Linux) # gunzip hw_ctree.xml.gz
WAP(Dopra Linux) # grep -i ssh /tmp/hw_ctree.xml
<X_HW_CLISSHControl Enable="0" port="22" Mode="1" AluSSHAbility="0"/>
<AclServices HTTPLanEnable="1" HTTPWanEnable="0" FTPLanEnable="1" FTPWanEnable="0" TELNETLanEnable="1" TELNETWanEnable="0" SSHLanEnable="1" SSHWanEnable="0" SamBaLanEnable="1" SamBaWanEnable="0" HTTPPORT="80" FTPPORT="21" TELNETPORT="23" SSHPORT="22" WebPermanentCloseControl="0" HTTPWifiEnable="0" TELNETWifiEnable="0" WebAccessControl="1" TrustHost="">
进行第二步
cd /tmp#进入/tmp目录
wget http://archive.openwrt.org/chaos_calmer/15.05.1/omap/generic/packages/base/dropbear_2015.67-1_omap.ipk#下载安装包
tar xzf dropbear_2015.67-1_omap.ipk #解压安装包
cd /opt/upt/apps/apps/ #进入 /opt/upt/apps/apps/目录
tar xzf /tmp/data.tar.gz #解压data包,data包是解压ipk安装包后得到的
mkdir etc/rc.d && cd etc/rc.d #新建/opt/upt/apps/apps/etc/rc.d文件夹并进入。然后退出到WAP模式
WAP>ssh authentication-type mode 0 #设置为账号密码登陆模式
success!
WAP>save data #保存
success!
WAP>
然后用ssh方式登陆,提示错误
sshd listensocks
───────────────────────────────────────────────────────
Session stopped已解决,是ssh工具的问题,用power shell登陆解决了。
疑问:
第二步,好像没有将下载的dropbear替换掉原来的dropbear
软连接也是连接原来的dropbear
下载 dropbear 的包,解压,放入正确的位置。
将dropbear放到/opt/upt/apps/apps/etc/init.d/重启后,SSH可以进入,查看dropbear进程
WAP(Dopra Linux) # ps -w|grep dropbear
5501 root 1132 S dropbear -r /etc/dropbear/dropbear_rsa_host_key -p 22 -j -k
5559 root 1344 S grep dropbear确认为原来的dropbear,退出ssh,telnet登陆,然后kill掉dropbear之后,手动启动/opt/upt/apps/apps/etc/init.d/dropbear
提示错误
kill掉原来的dropbear后,再查看dropbear进程,不存在该进程
WAP(Dopra Linux) # ps -w|grep dropbear
3390 root 1344 S grep dropbear
手动启动/opt/upt/apps/apps/etc/init.d/dropbear,无法启动
提示无法打开/etc/rc.common,查看该文件不存在
WAP(Dopra Linux) # pwd
/opt/upt/apps/apps/etc/init.d
WAP(Dopra Linux) # ./dropbear -r /etc/dropbear/dropbear_rsa_host_key -p 22 -j -k
/bin/sh: can't open '/etc/rc.common'
WAP(Dopra Linux) # ls /etc/rc.common
ls: /etc/rc.common: No such file or directory
WAP(Dopra Linux) #
手动运行原来的dropbear正常
手动运行原来的dropbear,成功
WAP(Dopra Linux) # dropbear -r /etc/dropbear/dropbear_rsa_host_key -p 22 -j -k
WAP(Dopra Linux) # ps -w|grep dropbear
5501 root 1132 S dropbear -r /etc/dropbear/dropbear_rsa_host_key -p 22 -j -k
5559 root 1344 S grep dropbear
然后ssh登陆
用powershell登陆ssh
PS C:\Users\xxxx> ssh root@192.168.1.1
root@192.168.1.1's password:
WAP>su
success!
SU_WAP>shell
BusyBox v1.18.4 (2017-08-16 10:43:34 CST) built-in shell (ash)
Enter 'help' for a list of built-in commands.
profile close core dump
WAP(Dopra Linux) # su
Password:
BusyBox v1.18.4 (2017-08-16 10:43:34 CST) built-in shell (ash)
Enter 'help' for a list of built-in commands.
WAP(Dopra Linux) # ps -w|grep dropbear
5501 root 1132 S dropbear -r /etc/dropbear/dropbear_rsa_host_key -p 22 -j -k再次手动启动替换后的dropbear,仍然不成功
WAP(Dopra Linux) # pwd
/opt/upt/apps/apps/etc/init.d
WAP(Dopra Linux) # ls
S50dropbeardropbear
WAP(Dopra Linux) # dropbear
cp: can't stat '/etc/dropbear/dropbear_dss_host_key': No such file or directory
<hw_ssp_ctool.c:587>file (/tmp/sshd_de_aes_tmp) open failed, errno (2)
cp: can't stat '/etc/dropbear/dropbear_ecdsa_host_key': No such file or directory
<hw_ssp_ctool.c:587>file (/tmp/sshd_de_aes_tmp) open failed, errno (2)
没dropbear_dss_host_key和dropbear_ecdsa_host_key,想手动创建一个,但是提示文件夹自读
WAP(Dopra Linux) # cd /etc/dropbear/
WAP(Dopra Linux) # ls -l
-rwxr-xr-x 1 root root 872 Aug 162017 dropbear_rsa_host_key
WAP(Dopra Linux) # cp dropbear_rsa_host_key dropbear_dss_host_key
cp: can't create 'dropbear_dss_host_key': Read-only file system
查看dropbear目录又是root可写的,
WAP(Dopra Linux) # ls -l |grep dropbear
drwxr-xr-x 2 root root 44 Aug 162017 dropbear
WAP(Dopra Linux) # whoami
root
已解决,是我设置的软连接错误,正确的连接如下
WAP(Dopra Linux) # pwd
/opt/upt/apps/apps/etc/rc.d
WAP(Dopra Linux) # ls -l
lrwxrwxrwx 1 root root 18 Jan 30 15:07 S50dropbear -> ../init.d/dropbear
本帖最后由 yang1340751 于 2020-2-5 09:38 编辑
现在开始opkg修改,修改后配置如下
root@SAF:~# cat /etc/opkg.conf
dest root /
dest ram /tmp
lists_dir ext /var/opkg-lists
option overlay_root /overlay
option check_signature 1
arch all 1
arch noarch 1
arch omap 10
arch sd5116v1 12
root@SAF:~#
安装luci,提示已经安装了最新版的luci,不知道该怎么解决了
root@SAF:~# opkg install luci-base
上述问题解决了,需要先update后再install
root@SAF:~# opkg update
Downloading http://archive.openwrt.org/chaos_calmer/15.05.1/omap/generic/packages/base/Packages.gz.
Updated list of available packages in /var/opkg-lists/chaos_calmer_base.
Downloading http://archive.openwrt.org/chaos_calmer/15.05.1/omap/generic/packages/base/Packages.sig.
Signature check passed.
Downloading http://archive.openwrt.org/chaos_calmer/15.05.1/omap/generic/packages/luci/Packages.gz.
Updated list of available packages in /var/opkg-lists/chaos_calmer_luci.
Downloading http://archive.openwrt.org/chaos_calmer/15.05.1/omap/generic/packages/luci/Packages.sig.
Signature check passed.
Downloading http://archive.openwrt.org/chaos_calmer/15.05.1/omap/generic/packages/management/Packages.gz.
Updated list of available packages in /var/opkg-lists/chaos_calmer_management.
Downloading http://archive.openwrt.org/chaos_calmer/15.05.1/omap/generic/packages/management/Packages.sig.
Signature check passed.
Downloading http://archive.openwrt.org/chaos_calmer/15.05.1/omap/generic/packages/packages/Packages.gz.
Updated list of available packages in /var/opkg-lists/chaos_calmer_packages.
Downloading http://archive.openwrt.org/chaos_calmer/15.05.1/omap/generic/packages/packages/Packages.sig.
Signature check passed.
Downloading http://archive.openwrt.org/chaos_calmer/15.05.1/omap/generic/packages/routing/Packages.gz.
Updated list of available packages in /var/opkg-lists/chaos_calmer_routing.
Downloading http://archive.openwrt.org/chaos_calmer/15.05.1/omap/generic/packages/routing/Packages.sig.
Signature check passed.
Downloading http://archive.openwrt.org/chaos_calmer/15.05.1/omap/generic/packages/telephony/Packages.gz.
Updated list of available packages in /var/opkg-lists/chaos_calmer_telephony.
Downloading http://archive.openwrt.org/chaos_calmer/15.05.1/omap/generic/packages/telephony/Packages.sig.
Signature check passed.
安装好了之后,打开浏览器192.168.1.1,提示如下错误
按照隔壁right网友的提示安装luci-theme-bootstrap
root@SAF:~# opkg install luci-theme-bootstrap
Upgrading luci-theme-bootstrap on root from R159 to git-16.018.33482-3201903-1...
Downloading http://archive.openwrt.org/chaos_calmer/15.05.1/omap/generic/packages/luci/luci-theme-bootstrap_git-16.018.33482-3201903-1_all.ipk.
Removing obsolete file /usr/lib/lua/luci/view/themes/bootstrap/header.html.
Removing obsolete file /usr/lib/lua/luci/view/themes/bootstrap/footer.html.
Configuring luci-theme-bootstrap.
错误少了一点,先这样吧。晚点再看看
上述问题已解决,方法:安装luci-theme-bootstrap之后,重启光猫
学习了,谢谢分享
回复挣猫粮,回复挣猫粮
进来学习学习!!!
安装完luci-base 和luci-theme-bootstrap 访问192.168.1.1 出现如下错误,怎么搞
/usr/lib/lua/luci/controller/admin/index.lua:29: attempt to call global 'post' (a nil value)
stack traceback:
/usr/lib/lua/luci/controller/admin/index.lua:29: in function 'v'
/usr/lib/lua/luci/dispatcher.lua:536: in function 'createtree'
/usr/lib/lua/luci/dispatcher.lua:201: in function 'dispatch'
/usr/lib/lua/luci/dispatcher.lua:168: in function </usr/lib/lua/luci/dispatcher.lua:167>
折腾一下。。。。。。。。。。。。。。。。