Linux Distro For Linksys WRT54G 227
scubacuda writes "Here is a tiny Linux distro for the Linksys wrt54g (d/l the distro here). In just a few seconds, you can give your access point's ramdisk syslog, telnetd, httpd (with cgi-bin support), vi, snort, mount, insmod, rmmod, top, grep, etc."
Interesting -- "The script installs strictly to the ram disk of the box. No permanent changes are made. If you mess something up, power-cycle it."
telnetd? (Score:5, Interesting)
Would this work with other Linksys routers? (Score:5, Interesting)
What is this for? (Score:2, Interesting)
Re:article in case of slashdotting... (Score:3, Interesting)
I've got a copy of the file itself if they go down, too.
ssh tunneling? (Score:5, Interesting)
Re:That's cool. (Score:5, Interesting)
Ramdisk based snort logs aren't too enticing to me.
Another HTTP server on 8000 doesn't do anything for me either, especially when the one on port 80 is already like molases running up hill in winter.
The fact is that this might be useful in troubleshootingsomething on the router but, for production use it isn't terribly practical. But, then again who's going to rely on this router for any real production use. This is after all, a home or small office device.
Yeah, but does it work with the BEFSR41? (Score:3, Interesting)
Thanks!
- Cary
Re:Secure? (Score:3, Interesting)
From the article:
Yes, un-authenticated open telnet as root seems really dumb to me too, but you could always remove telnetd and add SSH w SSH2 RSA only authentication.
Power outage anyone? (Score:1, Interesting)
Does this also mean that as soon as a power outage occurs, I will lose *all* logfiles, packet captures and even the distro?
worried (Score:3, Interesting)
We should be fighting this not supporting it.
Re:More constrained by memory (Score:3, Interesting)
I'm not sure what the point would be... if you have another box, why not just run your services on it... but they nifty value is significant.
Re:That's cool. (Score:2, Interesting)
How about a bind [isc.org] caching server ? How about a blackhole ad removal [schooner.com] server? How about a time server? How about pushing the logs to another machine? While it may be slow these things do not have to be lightning fast, just fast enough. It is afterall just a simple router. Its not meant for 300 machines all trying to get the interenet. Its meant for like 4-5 computers. Also a 125mhz mips processor will do alot more than an equiv x86 machine. The mips processor is AWSOME in pumping data. The limiting factor here will be the 16mb of memory... I used to work on a 25mhz 4 way mips machine. It wasnt till i got to a 766 x86 that I found a computer that was AS good.
Also some logging may not be a bad idea. As it is wireless do you REALLY trust it? What if your leet 12yr old neighbor decides your wireless is cool. Do you really trust him? Sure he may be exploring but do you want him in your network? No you want to know what is going on. And I dont know about you but the logging on this router, as it currently is, SUCKS. It just shows who and what. But does not show when and does not resolve the name. IP A.B.C.D means nothing to me, but www.yahoo.com DOES. I for one will be playing with it...
How does this compare... (Score:3, Interesting)
...with running a connection through a tool like stunnel? Both are doing encryption, SSH likes keys, stunnel/SSL likes certificates, but after that I'm somewhat ignorant.
I've been tunnelling all kinds of stuff through OpenSSH for years, and while I've heard of stunnel, I only just recently started using it (encrypting an IMAP connection because IMAPS isn't supported).
I'm not asking for an hour-long briefing on /. or anything, but if you know of any web pages, pointers would be appreciated.
wap11 (Score:3, Interesting)
More than SOHO (Score:2, Interesting)
It's more than that - I've used it to bridge several remote locations (1800 ft+) with external antennae.
Very reliable.Re:What is this for? (Score:3, Interesting)
Re:I'm still waiting... (Score:2, Interesting)
We're testing the AP 1200 802.11 a/b dual-mode with the WLSE (wireless solutions engine linux box which does mini site-surveys, code pushes, management, mass upgrades, etc) with all the latest features... Secure Fast Roaming, Wifi Protected Access, et al.
Cisco/Linksys do make good devices, although the competition is stepping up... SMC with the Media Player competitive unit (Cisco/Linksys only does pictures, while the SMC unit does MPEG and other video streaming)
Re:How does this compare... (Score:3, Interesting)
1) SSL has theoretically better key management, which is actually not theoretical for browsers (it's the only successful deployment of certificates in history), but stunnel by default barely checks SSL certificates. So, unfortunately, you're very vulnerable to a MITM attack (but you probably were anyway, since even if you had a cert, you almost certainly get it signed.)
2) SSH has theoretically worse key management, which is actually not theoretically awful for large installations (there's no real deployable cert systems, no centralized authority, etc.), but ssh by default actually does manage to allow one individual to manage access to a couple of personally relevant servers surprisingly well. SSH also has the advantage of having a port forwarding system flexible enough to execute VPN behaviors through, whereas SSL is really just a pipe to whatever's on the other end. (This is actually sometimes a good thing.)
HTH.
--Dan