alpcentaur
/
kc-interface
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
the interface of the KaosCube
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
21 Commits
1 Branch
2.1 GiB
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
kc-interface/README.md

361 lines
12 KiB
Raw Permalink Normal View History

changed the hs to node to bridge routine
1 year ago
added comment for on board wifi
1 year ago
added new description for the usb lte modem feature
1 year ago
changed the hs to node to bridge routine
1 year ago
updates to broken armbian images and update to the size of the microsd with the image.
7 months ago
changed the hs to node to bridge routine
1 year ago
updates to broken armbian images and update to the size of the microsd with the image.
7 months ago
updated first part of README.md
7 months ago
updates to broken armbian images and update to the size of the microsd with the image.
7 months ago
updated first part of README.md
7 months ago
updates to broken armbian images and update to the size of the microsd with the image.
7 months ago
updated first part of README.md
7 months ago
changed the hs to node to bridge routine
1 year ago
updates to broken armbian images and update to the size of the microsd with the image.
7 months ago
changed the hs to node to bridge routine
1 year ago
updated first part of README.md
7 months ago
updates to broken armbian images and update to the size of the microsd with the image.
7 months ago
added comment for on board wifi
1 year ago
updates to broken armbian images and update to the size of the microsd with the image.
7 months ago
updated first part of README.md
7 months ago
added comment for on board wifi
1 year ago
updated first part of README.md
7 months ago
changed the hs to node to bridge routine
1 year ago
updates to broken armbian images and update to the size of the microsd with the image.
7 months ago
changed the hs to node to bridge routine
1 year ago
updated first part of README.md
7 months ago
Update README.md with better explanation how to dd
7 months ago
changed the hs to node to bridge routine
1 year ago
updated first part of README.md
7 months ago
changed the hs to node to bridge routine
1 year ago
updated first part of README.md
7 months ago
better documentation in README.md seperating kaosimage and own image of trust in two logical branches
7 months ago
updated first part of README.md
7 months ago
better documentation in README.md seperating kaosimage and own image of trust in two logical branches
7 months ago
updates to broken armbian images and update to the size of the microsd with the image.
7 months ago
changed the hs to node to bridge routine
1 year ago
added comment to troubleshoot bad working buster os
1 year ago
changed the hs to node to bridge routine
1 year ago
did not install the dhcpd client, but server package
1 year ago
changed the hs to node to bridge routine
1 year ago
updates to broken armbian images and update to the size of the microsd with the image.
7 months ago
changed the hs to node to bridge routine
1 year ago
updates to broken armbian images and update to the size of the microsd with the image.
7 months ago
changed the hs to node to bridge routine
1 year ago
updates to broken armbian images and update to the size of the microsd with the image.
7 months ago
changed the hs to node to bridge routine
1 year ago
updates to broken armbian images and update to the size of the microsd with the image.
7 months ago
changed the hs to node to bridge routine
1 year ago
updates to broken armbian images and update to the size of the microsd with the image.
7 months ago
changed the hs to node to bridge routine
1 year ago
added comment for on board wifi
1 year ago
changes to setting up the ap
1 year ago
changed the hs to node to bridge routine
1 year ago
updates to broken armbian images and update to the size of the microsd with the image.
7 months ago
changed the hs to node to bridge routine
1 year ago
fixed error of header links in README.md
1 year ago
changed the hs to node to bridge routine
1 year ago
updates to broken armbian images and update to the size of the microsd with the image.
7 months ago
changed the hs to node to bridge routine
1 year ago
added a README
1 year ago
added comment for on board wifi
1 year ago
added new description for the usb lte modem feature
1 year ago
added comment for on board wifi
1 year ago
added new description for the usb lte modem feature
1 year ago
added a README
1 year ago
added new description for the usb lte modem feature
1 year ago
 
  1. # DIY - Setting up the KaosCube 

  2. 

  3. 1. [Hardware](#hardware)
  4.   *  [Components](#components)
  5.   *  [Installing the OS](#installing-the-os)
  6. 2. [Software](#software)
  7.   *  [Upgrade the OS](#upgrade-the-os)
  8.   *  [Setting up the Access Point](#setting-up-the-access-point)
  9.   *  [Installing firmware of the wifi dongle](#installing-firmware-of-the-wifi-dongle)
  10.   *  [Create network connection with new wifi dongle](#create-network-connection-with-new-wifi-dongle)
  11.   *  [Installing the KaosCube Interface](#installing-the-kaoscube-interface)
  12. 3. [Setting up functions of the KCInterface manually](#setting-up-functions-of-the-kcinterface-manually)
  13.   *  [Setting up the Hidden Service](#setting-up-the-hidden-service)
  14. 4. [Features](#features)
  15.   *  [Installing 12d1:1f01 Huawei E353/E3131 LTE Usb Modem](#installing-12d1\:1f01-huawei-e353\/e3131-lte-usb-modem)
  16. 

  17. # Hardware

  18. 

  19. ## Components

  20. 

  21. + Orange Pi Zero
  22. + MiniUsb2Usb Cable for power-supply
  23. + An Ethernet !Crossover! Cable for ssh access
  24. + An MicroSD 30 GB for the Installation of the OS
  25. + MicroSD2Usb Reader to plug in the Laptop
  26. + Linux Wifi Dongle
  27. + Wifi Antenna
  28. + A laptop, preferably with Linux installed
  29. 

  30. ## Installing the OS

  31. 

  32. Because Ubuntu is half proprietary, and there is a surveillance door for 
  33. Amazon on the system, the KAOS Cube runs on ARMbian - Debian based.
  34. 

  35. 

  36. 

  37. You could get a debian buster image from https://www.armbian.com/download/ for the orange pi
  38. zero, as sshd is still running by default on the resulting machine, for connecting. But all that images, if bullseye or buster, wont have a working ap enabling on board antenna driver. I also tried with openwrt, but that one did not even recognize the antenna.
  39. 

  40. The image provided has these working drivers. 
  41. And it gives an Access Point already configured.
  42. On the newest Bullseye Security, one of the securest in the internet.
  43. 

  44. Git clone the repository to get the image if you like. Or go on with an Armbian Buster image from your source of trust instead - but be aware that you wont have an access point over the on board antenna.
  45. 

  46. And, more importantly, as of my writing, the xradio does not work with Bullseye and Bookworm. But that is writing of a year ago.
  47. 

  48. 

  49. Download the file from this repository.
  50. Then untar the archive
  51. with
  52. 

  53.     tar -xzvf kaosimage.tar.gz
  54. 

  55. Now comes partitioning. 
  56. Be careful.
  57. 

  58. Look up the partitions, with 
  59. 

  60.     lsblk
  61. 

  62. Have a look that the microsd of minimum 30GB is not mounted, and 
  63. 

  64. the copying then has to go to the root of the microsd.
  65. 

  66. Copy binarywise the image to the device, not a partition if there is one:
  67. 	
  68.     sudo dd bs=4M if=kaosimage.img of=/dev/mmlp
  69. 

  70. If your MicroSD Card has /dev/mmlp1 and /dev/mmlp2, do not copy to them, but copy to the whole device /dev/mmlp (the root)
  71. 

  72. 

  73. 

  74. Thats it! The free system should be installed. Put the MicroSD into your OrangePi.
  75. 

  76. Now connect the micro usb cable, and be careful to have the right Voltage and Ampere as specified on the internet. The Orange Pi will boot by supplying it with 
  77. power.
  78. 

  79. Here would come the part, how to connect over ethernet to other computers.
  80. 

  81. The image provided just gives you a wpa2 encrypted interface and Access Point, so no need of ethernet and shared to other computers connection. 
  82. But as all the images have the same default password, it is not secure for first 
  83. setup of keys. Keys that will be placed on your client and on your new own autonomous server, to not let anyone intercept or play man in the middle.
  84. If you are sure to be in a cage of aluminium or other ;) , you can also make your first connection over the Wifi of the Kaoscube. Your first relaxed connection over an Access Point - an Access Point the Kaoscube.image will generate when put on power.
  85. 

  86. The SSID, the Password or the Access Point and the first user + its password will be published soon. Until then write me a private message or mail.
  87. 

  88. 

  89. Now it goes on with the setup for base armbian systems from your source of trust, but the taking the old bullseye release, because it has ssh over ethernet enabled by default.
  90. 

  91. For Connect your computer with ethernet (crossover, special one) cable to the orange pi zero.
  92. The first boot takes a bit longer, up to 2 minutes.
  93. 

  94. Make sure, that not only the lights of the ethernet port on the orange pi zero have the lights on.
  95. But there is another small green light on the side of the micro usb power plug. This one has to be on.
  96. Sometimes, especially with the buster image, the startup does not work properly, and you will not see a 
  97. connection on your Laptop, because the os did not start at all. Just replug the power if that is the case 
  98. (no light on).
  99. 

  100. 

  101. On the Armbian System, SSH on ethernet is enabled. We need to give the 
  102. Pi an IP Adress now.
  103. 

  104.     # Install a dhcp server, in my case it was Arch and dhcpd
  105.     sudo pacman -S dhcpd
  106. 

  107. Now we have to create a new local network.
  108. The easiest way is to go into your graphical network-manager. Select the 
  109. ethernet connection to your Pi and go on settings.
  110. 

  111. In my case I went to IPv4 settings. Then I selected "Shared to other 
  112. computers" Method. After this add a new Address:
  113. 

  114.     Address 10.0.0.1	# The 10.0.0.1 Number is normally used for local 
  115.     			# networks.
  116.     Netmask 24		# You can also put in 255.255.255.0, which only 
  117.     			# says to the dhcp to give a certain range of 
  118.     			# adresses starting at 10.0.0.0
  119.     Gateway 10.0.0.1	# The Gateway is the adress of your laptop 
  120.     			# itself
  121. 

  122. 

  123. Now you can run the command 
  124.     sudo arp -a
  125. 

  126. in your bash, after restarting the connection over ethernet to your Pi.
  127. 

  128. On your Orange Pi, the small green Light close to the mini usb port 
  129. should be lighting. If the connection is established, you should see it 
  130. blinking. If one or both are not the case, try to reinstall the ARMbian 
  131. image, or zero the first part of the partition, maybe it was not booting 
  132. 

  133. 

  134. You will see an assigned IP Adress on your ethernet interface, on arch 
  135. for me it was the standard one enp0s25
  136. 

  137. The IP was 10.0.0.254, so I could connect through ssh with my Orange 
  138. Pi now, and start to set up the system.
  139. 

  140.     ssh root@10.0.0.254
  141. 

  142. 

  143. If everything worked, type in 1234 as the password and follow the instructions.
  144. 

  145. If not, check out 
  146. https://docs.armbian.com/User-Guide_Getting-Started/#how-to-prepare-a-sd-card
  147. 

  148. For example, you can learn there how to verify the hash of your download, to be sure nobody
  149. gave you a virus instead of an OS :)
  150. 

  151. 

  152. # Software

  153. 

  154. ## Upgrade the OS

  155. 

  156. 

  157. In the newer versions of armbian, ssh is deactivated by default.
  158. To save time, we could have installed an armbian buster.
  159. Generally, it is important to keep your KaosCube up to date.
  160. That is why, after getting access to the Cube, the first thing would have been 
  161. an upgrade to bullseye (which is debian stable at the time of this 
  162. writing and has the latest debian-security updates inside)
  163. 

  164. With the kaosimage you dont have to do a system upgrade, but the updates are always important. To give you a Trick for updating servers, try to use only 
  165. 

  166.     sudo apt update
  167. 

  168.     sudo apt upgrade
  169. 

  170. During the upgrade, always choose ok or default :).
  171. 

  172. 

  173. When something appears broken, which will be the case if you have a lot of servers,
  174. it will be one of the updates.
  175. 

  176. That is why, we first check that.
  177. In case there is a break, we can have a rollback to before the update.
  178. Based on the cache of the package manager.
  179. 

  180. If everything went well on the other side, which will be the case if updates are made fast and rolled back directly if broken, then you can just go on to cleaning and auto cleaning the system and you are fresh to go.
  181. 

  182. 

  183. ## Setting up the Access Point (if you want to, because in the end the provided image has one configured, and one can copy paste that too. but one can extend too.)

  184. 

  185. 

  186. On buster, the access point can be set up persistently with the commands:
  187. 

  188.     nmcli con add type wifi ifname wlan0 mode ap con-name kaoscube ssid KaosCube ipv4.method shared
  189.     nmcli con modify kaoscube wifi-sec.key-mgmt wpa-psk
  190.     nmcli con modify kaoscube wifi-sec.psk "ThePasswordYouLike"
  191.     nmcli con up kaoscube
  192. 

  193. 

  194. ## Installing firmware of the wifi dongle

  195. 

  196. First thing to do is updating the apt ressources
  197. 

  198.     sudo apt update
  199. 

  200. Then install git
  201. 

  202.     sudo apt install git
  203. 

  204. Install dkms
  205. 

  206.     sudo apt install dkms
  207. 

  208. Install the newest headers
  209. 

  210.     sudo apt-get install linux-headers-current-sunxi build-essential
  211. 

  212. When installing build-essential, you will be prompted whether to restart
  213. or not. Enter no automatic restart and then for cron and ssh enter ok.
  214. For the ssh config, I kept the old one.
  215. after the install, restart the system with
  216. 

  217.     sudo reboot
  218. 

  219. Now download the firmware
  220. 

  221.     git clone https://github.com/kelebek333/rtl8188fu
  222. 

  223. Now go to the folder rtl8188fu. Add, build and install it with dkms
  224. 

  225.     sudo dkms add ./rtl8188fu
  226.     sudo dkms build rtl8188fu/1.0
  227.     sudo dkms install rtl8188fu/1.0
  228.     sudo cp ./rtl8188fu/firmware/rtl8188fufw.bin /lib/firmware/rtlwifi/
  229. 

  230. After all commands have run successfully, restart the system
  231. 

  232.     sudo reboot
  233. 

  234. ## Create network connection with new wifi dongle (not sure if thats already or still on the image)

  235. 

  236. First look up with ifconfig for the interfaces, and which one is the one of the dongle
  237. 

  238.     sudo ifconfig
  239. 

  240. there should be one called wlan0 or wlan1, which is the small one already on the orange pi zero.
  241. 

  242. In addition, there should be one with the name wlx00... something.
  243. 

  244. This one you should use with the following command:
  245. 

  246.     nmcli device wifi connect 'FRITZ!Box 6430 Cable TL' password "98475637998946115486" ifname wlan0
  247. 

  248. 

  249. 

  250. ## Installing the KaosCube Interface

  251. 

  252. First add a new user, if you are still root:
  253. 

  254.     adduser kaosuser
  255. 

  256. Then add the user to sudoers:
  257. 

  258.     usermod -aG sudo kaosuser
  259. 

  260. Now change to user (still being root) and go to home directory
  261. 

  262.     su kaosuser
  263.     cd
  264. 

  265. 

  266. 

  267. 

  268. Remember cloning the interface from git?
  269. 

  270.     git clone https://code.basabuuka.org/alpcentaur/kc-interface.git
  271. 

  272. 

  273. After that, install php (working version is 7.4, but newer ones should 
  274. also work)
  275. 

  276.     sudo apt install php
  277. 

  278. 

  279. Also the interface needs the following libraries:
  280. 

  281.     sudo apt install tor
  282. 

  283. Now go in the directory kc-interface and run
  284. 

  285.     bash startserver.sh
  286. 

  287. You will have the interface running on localhost:666
  288. 

  289. To get the interface, connect to the ap kaoscube and enter the 
  290. IP of its wifi interface with a double point and then 666.
  291. 

  292. # Setting up functions of the KCInterface manually

  293. 

  294. ## Setting up the Hidden Service

  295. 

  296. First install Tor:
  297. 

  298. 	sudo apt-get install tor
  299. 

  300. Edit the torrc file:
  301. 	
  302. 	sudo nano /etc/tor/torrc
  303. 

  304. 

  305. Look for the line ############### This section is just for location-hidden services ###
  306. 

  307. under this line, enable (uncomment) HiddenServiceDir and HiddenServicePort
  308. 

  309. in our case, 
  310. 

  311.     HiddenServiceDir /var/lib/tor/hidden_service/
  312.     HiddenServicePort 80 127.0.0.1:80
  313.     HiddenServicePort 22 127.0.0.1:22
  314. 

  315. 

  316. After restarting tor with
  317. 

  318.     sudo systemctl restart tor
  319. 

  320. 

  321. your hidden service is running, and you can get its address under 
  322. /var/lib/tor/hidden_service/ , or whatever name or path you wrote in
  323. the torrc. 
  324. 

  325. # Features

  326. 

  327. ## Installing 12d1:1f01 Huawei E353/E3131 LTE Usb Modem

  328. 

  329. 

  330. First issue 
  331. 

  332.     lsusb
  333. 

  334. to check, if you are trying to install the right LTE usb dongle.
  335. 

  336. Being connected to the internet with your laptop, and having the shared
  337. internet connection being issued from your laptop, the kaoscube has 
  338. internet too. 
  339. 

  340. Then, install usb_modeswitch with the command
  341. 

  342.     sudo apt install usb-modeswitch usb-modeswitch-data
  343. 

  344. 

  345. and then switch to modem mode for the usb stick
  346.     
  347.     sudo usb_modeswitch -v 12d1 -p 1f01 -M '55534243123456780000000000000a11062000000000000100000000000000'
  348. 

  349. 

  350. After that, lsusb will show you that the usb modem is now recognized as
  351. a modem.
  352. 

  353. Now you can issue
  354. 

  355.     ip a
  356. 

  357. and look for the new generated interface of the modem.
  358. 

  359. take it's IP address, in my case it was 192.168.8.100/24, and replace 
  360. the last bit with a 1 (192.168.8.1).
  361. Put that IP address into the browser of your laptop.