|
|
发表于 2020-1-30 10:25:23
|
显示全部楼层
本帖最后由 yang1340751 于 2020-1-31 11:03 编辑 + s& b8 \4 b& B1 k' w6 V
* p7 S6 P" Q: ]+ sLZ,你好,我按照你的第一步操作,已经替换了/mnt/jffs2/hw_ctree.xml hw_ctree.xml9 [5 {* A7 K! [7 U7 q& w
添加好SSH功能
- I" d0 B9 F0 G" X
/ S0 O5 l( n' ~- cd /tmp #进入/tmp目录* d s7 w0 r! P2 J' K6 }
6 V: k" l; n, [% p2 A- cp /mnt/jffs2/hw_ctree.xml hw_ctree.xml.gz #复制/mnt/jffs2/hw_ctree.xml到/tmp目录并重命名为hw_ctree.xml.gz, U6 s B7 M1 m9 e* O" U5 `, l
# J# K( R: F$ T n( D# N% G- aescrypt2 1 hw_ctree.xml.gz tmp #解密/tmp/hw_ctree.xml.gz
2 T& |" s. @* ?% i$ Y- WAP(Dopra Linux) # cp /mnt/jffs2/hw_ctree.xml /tmp/hw_ctree.xml.gz
k3 O( H5 P( p5 s. p' u$ q$ T" \ - WAP(Dopra Linux) # aescrypt2 1 hw_ctree.xml.gz tmp: s2 B& m# ^; r/ w4 t
- WAP(Dopra Linux) # gunzip hw_ctree.xml.gz6 I5 Y/ a# m6 d$ D r3 \1 E7 L( S( {
- WAP(Dopra Linux) # grep -i ssh /tmp/hw_ctree.xml- m N5 G1 L$ e( x1 r- A! B e& V
- <X_HW_CLISSHControl Enable="0" port="22" Mode="1" AluSSHAbility="0"/>, X: [% @9 }6 c! e* X1 d5 i
- <AclServices HTTPLanEnable="1" HTTPWanEnable="0" FTPLanEnable="1" FTPWanEnable="0" TELNETLanEnable="1" TELNETWanEnable="0" SSHLanEnable="1" SSHWanEnable="0" SamBaLanEnable="1" SamBaWanEnable="0" HTTPPORT="80" FTPPORT="21" TELNETPORT="23" SSHPORT="22" WebPermanentCloseControl="0" HTTPWifiEnable="0" TELNETWifiEnable="0" WebAccessControl="1" TrustHost="">0 T/ ^. x/ H+ X/ O: u2 ?7 C; J
进行第二步! E. a8 _& P/ [' h. W0 i
- cd /tmp #进入/tmp目录% {; Z/ ^: w( t% i" }; Z
- wget http://archive.openwrt.org/chaos_calmer/15.05.1/omap/generic/packages/base/dropbear_2015.67-1_omap.ipk #下载安装包
( l) W( u* D% E& R& [ - tar xzf dropbear_2015.67-1_omap.ipk #解压安装包) a5 R% Q& v' ? P% Q
- cd /opt/upt/apps/apps/ #进入 /opt/upt/apps/apps/目录* h& O; r9 k9 O% ]5 }
- tar xzf /tmp/data.tar.gz #解压data包,data包是解压ipk安装包后得到的
. }: `4 m! z$ O$ c! N# U4 R7 C - mkdir etc/rc.d && cd etc/rc.d #新建/opt/upt/apps/apps/etc/rc.d文件夹并进入。
0 t' e& d- |! T( a! m0 d- w2 k* z5 |$ G( p( ?& r, Z K' O
- # Z$ ~ Q3 [, \) a6 V/ d
- WAP>ssh authentication-type mode 0 #设置为账号密码登陆模式, J: \8 c. j L& v8 J
- success!
$ R6 c1 x5 S& F- T& q4 _& w - WAP>save data #保存
1 g' O, c s) a% |4 b* S5 i - success!6 H. t. ^' H X3 y3 H$ I
- WAP>, _3 T* Z; l0 T" z' Y4 _# H
2 }2 E, W' n' P* i/ [1 V$ U+ p然后用ssh方式登陆,提示错误* n6 V. M( Z. O) o" Q
8 y8 R. K. T, x0 [2 o% O
- sshd listensocks[19]
. J. O ]1 k2 ~, V - ───────────────────────────────────────────────────────
1 k8 ?9 ^8 M1 }3 [$ r - Session stopped
2 v: `7 H4 n2 O8 F$ |) _
! u( Y: ]5 V1 U8 e5 u+ v; K( h& T$ D6 X! t, d/ E
疑问:& ]! B; f7 h5 n
第二步,好像没有将下载的dropbear替换掉原来的dropbear
+ @. c) f0 i" v8 Q# b! H软连接也是连接原来的dropbear1 t' k8 U( I E( R
- 下载 dropbear 的包,解压,放入正确的位置。
: ~9 u9 ?; ^, s6 C2 l) l3 |- Z3 C! _5 B" @ l% @
将dropbear放到/opt/upt/apps/apps/etc/init.d/重启后,SSH可以进入,查看dropbear进程% D9 M$ M/ w9 X
- WAP(Dopra Linux) # ps -w|grep dropbear4 U& j! y6 R& X* y
- 5501 root 1132 S dropbear -r /etc/dropbear/dropbear_rsa_host_key -p 22 -j -k3 i6 t4 \ a" O- w7 D! D' q. u
- 5559 root 1344 S grep dropbear
提示错误
- `( R/ F( V# e( Q9 S: P3 d3 B$ Y4 ?% w2 o. C
- kill掉原来的dropbear后,再查看dropbear进程,不存在该进程9 s2 m( c8 C9 f* \; e
- WAP(Dopra Linux) # ps -w|grep dropbear
, R: V8 c1 c2 I9 } - 3390 root 1344 S grep dropbear
! G$ k X, w. {5 z4 F( M! P4 E
1 S% C! P6 G' [9 q# y
+ ]/ A' M1 m) e V$ ` P- F5 k/ [2 c7 n& v/ ~. t, A' U e
9 J8 D$ i! b6 A! h: W3 x- t% }
+ B1 b6 S3 n6 K( ?" F2 S手动启动/opt/upt/apps/apps/etc/init.d/dropbear,无法启动. Q/ o3 n# B3 V: \2 Q5 q
提示无法打开/etc/rc.common,查看该文件不存在5 `* M" C0 q* ^. B5 f% y
U x/ p1 b& E
- WAP(Dopra Linux) # pwd
7 H) [; u6 U& M - /opt/upt/apps/apps/etc/init.d; y" Q: m! T4 A4 n: K4 n% G/ ^
- WAP(Dopra Linux) # ./dropbear -r /etc/dropbear/dropbear_rsa_host_key -p 22 -j -k5 k5 g5 V6 s" d- {6 ?
- /bin/sh: can't open '/etc/rc.common'
, q, p* j2 B3 U& j: Z - WAP(Dopra Linux) # ls /etc/rc.common; k7 y0 G- u) o+ |: A8 Y
- ls: /etc/rc.common: No such file or directory/ P9 x3 S; i3 k3 F) O5 e9 n' ]; U! P
- WAP(Dopra Linux) #
6 d9 b- V) D4 K: Q- Z, E$ X2 [手动运行原来的dropbear正常
7 d9 [, m* S& `: a- 手动运行原来的dropbear,成功7 j9 Q1 l, b& `
- WAP(Dopra Linux) # dropbear -r /etc/dropbear/dropbear_rsa_host_key -p 22 -j -k6 |! x& u' C U% C- @7 H: p
2 U8 Z% i+ [ [- WAP(Dopra Linux) # ps -w|grep dropbear
3 K' P+ ^ ]# t: K: d - 5501 root 1132 S dropbear -r /etc/dropbear/dropbear_rsa_host_key -p 22 -j -k
& Q$ `3 @7 W; f" T: v4 K1 G5 s4 r - 5559 root 1344 S grep dropbear
5 y0 c% y q5 W5 n g
8 R7 {. |: U9 U. R然后ssh登陆' q' H1 q' `; R' B& E) Z1 N2 ]
- 用powershell登陆ssh0 F5 o9 O, M) w( X
- PS C:\Users\xxxx> ssh root@192.168.1.1
4 a0 E2 K& S' w% P" r7 q, U. k - root@192.168.1.1's password:
% u: D2 u0 j9 s% \1 ^% V - % L1 v3 F* t: [( Y0 K" B
- WAP>su
7 V4 x2 U, `$ H o$ s* W6 R - success!( S4 M7 u4 K4 |6 [2 O
- SU_WAP>shell
6 Y- U3 H: |! Q: Q - 4 F1 j' Y# G+ I8 S
- BusyBox v1.18.4 (2017-08-16 10:43:34 CST) built-in shell (ash)
2 V; C j; m2 w+ l2 J. b7 h B$ e8 E - Enter 'help' for a list of built-in commands.
0 z# ~! g% d+ n. w/ B6 F
- z$ B7 ^4 \5 n- profile close core dump8 G* h0 w; v2 y3 C( f
- WAP(Dopra Linux) # su1 s0 `8 S. r- N* ?+ P: w
- Password:5 K* Y; y# {, p! v! l( @9 H
( \/ K! N# U" r2 h1 c9 r
! t/ Y$ Q# E3 J1 {: |* p# o- BusyBox v1.18.4 (2017-08-16 10:43:34 CST) built-in shell (ash)
3 G, j3 }$ @5 A9 |2 L - Enter 'help' for a list of built-in commands.
+ x# S! s% o5 u" F1 {2 X1 Z
) _% q2 f; e: Z+ y2 Q4 n+ k- WAP(Dopra Linux) # ps -w|grep dropbear
. M' {$ `, v/ _3 G% }7 z - 5501 root 1132 S dropbear -r /etc/dropbear/dropbear_rsa_host_key -p 22 -j -k
1 p8 C! M! v# W9 p- WAP(Dopra Linux) # pwd
! x% t; j. G! L) l1 s& L# S - /opt/upt/apps/apps/etc/init.d
8 \/ s4 f3 c5 C9 j
& W' @! W- o* A; s1 [" [% u- WAP(Dopra Linux) # ls1 V" l# t. K2 y9 ~" C" y& U
- S50dropbear dropbear
7 L+ J1 W' j4 n+ X$ H: j' N3 ? ~ - WAP(Dopra Linux) # dropbear
$ A! s! D5 V# j6 S, ` - cp: can't stat '/etc/dropbear/dropbear_dss_host_key': No such file or directory4 s& p1 u Z8 c- V: P2 P
- <hw_ssp_ctool.c:587>file (/tmp/sshd_de_aes_tmp) open failed, errno (2)
9 I! a% H7 L& T& Q' P! V - [svr-runopts.c_460]& f5 ?4 x; E5 T" I3 F
- cp: can't stat '/etc/dropbear/dropbear_ecdsa_host_key': No such file or directory
' o. b9 U m' X% d - <hw_ssp_ctool.c:587>file (/tmp/sshd_de_aes_tmp) open failed, errno (2)5 h0 ^9 J6 O, B8 g& H% B
- [svr-runopts.c_460]
( e: U& A- l$ o" J& x( v* `
& Z7 |8 A% G8 o) q6 f+ _4 ^- 没dropbear_dss_host_key和dropbear_ecdsa_host_key,想手动创建一个,但是提示文件夹自读3 P& l! ?" Z- y
- WAP(Dopra Linux) # cd /etc/dropbear/
% ~4 b' G. }4 W& W - WAP(Dopra Linux) # ls -l( S& {# S: e# {9 S1 s
- -rwxr-xr-x 1 root root 872 Aug 16 2017 dropbear_rsa_host_key
8 ^. b9 g" D9 C% E - WAP(Dopra Linux) # cp dropbear_rsa_host_key dropbear_dss_host_key
6 m- B6 q3 t* }) a, U1 m- e! m - cp: can't create 'dropbear_dss_host_key': Read-only file system
. I5 D5 A# {( z8 K
. |2 K( C4 s \! g$ O/ z- 查看dropbear目录又是root可写的,
. U- \3 b4 `# X2 H! V) f3 h0 Y' b9 u - WAP(Dopra Linux) # ls -l |grep dropbear- o& u) ]( H9 w
- drwxr-xr-x 2 root root 44 Aug 16 2017 dropbear
' @" F6 x$ o9 m - WAP(Dopra Linux) # whoami# a9 B/ \ \" G/ ^2 M2 t
- root
7 \5 C* m& }7 d% h* {
已解决,是我设置的软连接错误,正确的连接如下* t0 l4 T- V# }& T/ L9 a1 R) E
- WAP(Dopra Linux) # pwd
9 f u2 ?" ?7 k7 |/ ^7 W( v2 M - /opt/upt/apps/apps/etc/rc.d: N5 q( S: c4 p% R1 c1 `: P
- WAP(Dopra Linux) # ls -l! d( w' _: g$ l# a
- lrwxrwxrwx 1 root root 18 Jan 30 15:07 S50dropbear -> ../init.d/dropbear
: G4 Z4 {' y* k
9 j& q/ {2 }7 u5 B/ u5 H5 F- u' W3 a4 X) {' j
; |2 z0 c: S, o) y* A
; }2 L8 X! L$ a# Q7 Y
' A5 d* Q$ X$ Z
) \- `5 T) F/ {5 W
& C" v/ o! ?7 T* s. b3 E
: g7 E8 n- b e3 I6 S
C& n' G2 B7 E( t* ~3 H) [
7 T9 \ a- I+ k b Y' h
7 A6 [ X' B* r8 q* d
* L2 { @/ L- T( Z& ?1 L% Z
+ e0 M7 `; m+ k6 w8 s* V/ v' L
: N6 [! I$ W& k+ S3 y, x& M D% J6 Q6 L1 j9 n* y: D7 F
; h: N7 f5 G) R) ?5 h" F
& z+ i! F, o7 I% Y% ]/ U! J! C1 J- e# Z/ _# G8 @; p
! w, c! _9 V( g
7 Q, C# A+ e" z$ c# ~
+ V' O: U+ J7 n3 T- X, M9 z2 _# Z0 J7 m3 ~; [) R/ R" m
- K7 F0 ?* [$ R& |. B' L. z2 C1 J
& Y% Z4 s4 U. J( k |
本帖子中包含更多资源
您需要 登录 才可以下载或查看,没有账号?注册
×
|
粤公网安备44152102000001号 
