Thanks Thanks:  0
Ergebnis 1 bis 7 von 7
  1. #1
    Anfänger Avatar von davequattro
    Registriert seit
    06.07.2013
    Beiträge
    18
    Total Downloaded
    2,73 MB
    Total Downloaded
    2,73 MB
    ReceiverDankeAktivitäten

    What is the kill command for the OpenWebif

    Anybody knows what the kill command is for Openwebif?
    I want to kill the webinterface via a cronjob
    VU+duo4k openatv 6.3 sat+cable | Vu+duo2 openATV 6.3 1TB HDD sat+cable
    Zgemma-star H2H openATV 6.2 sat+cable
    Zgemma-star H7C openATV 6.2 sat+cable
    Wavefrontier T90. Titanium TQS Universal quad LNB's

    •   Alt Advertising

       

  2. #2
    Senior Mitglied Avatar von s3n0
    Registriert seit
    02.01.2017
    Beiträge
    725
    Total Downloaded
    173,2 KB
    Total Downloaded
    173,2 KB
    ReceiverDankeAktivitäten
    Box 1:
    Formuler F3
     
     
    Box 2:
    Vu+ Solo SE V2
     
     
    Box 3:
    Formuer F4-TURBO
     
     
    What do you mean by the kill ? Kill the process or disable user-login in OpenWebif ? Why you need to do ?

    Why not set a password to access the OpenWebif interface ?

    Why do not you just open OpenWebif over OpenATV MENU to disable it ? Press the MENU button on your remote control and then navigate to :
    Settings > System > Network > OpenWebif > Enabled : Yes / No

    OpenWebif is part of the Enigma2 (such as the plugin). Disabling or enabling the enigma2 plugins via the linux-shell (or via the crontab) is too complicated.

    It might be possible to block / allow the port directly via linux-shell (or crontab) on which OpenWebif runs (default http port = 80). But I do not know if it would work with this method. For example, with the iptables (tools for managing kernel packet filtering capabilities). Must be installed in OpenATV from feed server: opkg update && opkg install iptables
    Man page of IPTABLES
    linux - Script to Block and Unblock a Port - Stack Overflow
    Geändert von s3n0 (25.08.2018 um 00:59 Uhr)
    2 x Formuler F3 @ OpenATV
    1 x Vu+ Solo SE V2 @ OpenATV

  3. #3
    Anfänger Avatar von davequattro
    Registriert seit
    06.07.2013
    Beiträge
    18
    Themenstarter
    Total Downloaded
    2,73 MB
    Total Downloaded
    2,73 MB
    ReceiverDankeAktivitäten
    I would like to disable it, so thats never can be started, only when it's necessary.
    A friend of mine has some unwanted activity on his receiver, and no, the web interface is not shared on the www.
    Maybe he has some problems with phishing mail and that some people are sniffing around on his network, i don't know.
    I have already blocked ftp, ssh and telnet acces via cron.
    And the web interface is the only connecton possible that i kknow.
    But if it's not possible what i ask, , then the simplest way is to disable it ore delete it.
    Not everybody is using the web interce, he isn't anyway.
    VU+duo4k openatv 6.3 sat+cable | Vu+duo2 openATV 6.3 1TB HDD sat+cable
    Zgemma-star H2H openATV 6.2 sat+cable
    Zgemma-star H7C openATV 6.2 sat+cable
    Wavefrontier T90. Titanium TQS Universal quad LNB's

  4. #4
    Avatar von zeini
    Registriert seit
    24.06.2013
    Ort
    Österreich
    Beiträge
    4.051
    Total Downloaded
    14,12 MB
    Total Downloaded
    14,12 MB
    ReceiverDankeAktivitäten
    Box 1:
    Zgemma H5.2S
     
     
    Box 2:
    Edision Optimuss OS1+
     
     
    Box 3:
    Golden Interstar XPEED LX1
     
     
    Box 4:
    Spycat
     
     
    Box 5:
    Mut@nt HD1500
     
     
    You can disable OpenWebinterface in menue.
    ______________________
    Hans

    Dinobot 4k, Edision Optimuss OS1+, Edision OS nino pro, Spycat, Zgemma H5.2S
    TV - Hisense Ulra HD
    Astra 19,2°, Unicable


  5. #5
    Senior Mitglied Avatar von s3n0
    Registriert seit
    02.01.2017
    Beiträge
    725
    Total Downloaded
    173,2 KB
    Total Downloaded
    173,2 KB
    ReceiverDankeAktivitäten
    Box 1:
    Formuler F3
     
     
    Box 2:
    Vu+ Solo SE V2
     
     
    Box 3:
    Formuer F4-TURBO
     
     
    Zitat Zitat von davequattro Beitrag anzeigen
    I would like to disable it, so thats never can be started, only when it's necessary.
    A friend of mine has some unwanted activity on his receiver, and no, the web interface is not shared on the www.
    Maybe he has some problems with phishing mail and that some people are sniffing around on his network, i don't know.
    I have already blocked ftp, ssh and telnet acces via cron.
    And the web interface is the only connecton possible that i kknow.
    But if it's not possible what i ask, , then the simplest way is to disable it ore delete it.
    Not everybody is using the web interce, he isn't anyway.
    I have already answered. You can permanently disable the OpenWebif plugin in the OpenATV MENU (see my post above).

    There is also the option of permanently uninstalling the OpenWebif plugin from the system through OPKG package manager:
    Code:
    opkg update
    opkg list-installed | grep webif
    opkg remove --autoremove enigma2-plugin-extensions-openwebif
    However, in my opinion, it is enough to deactivate OpenWebif in MENU OpenATV - as I wrote in the post above.
    2 x Formuler F3 @ OpenATV
    1 x Vu+ Solo SE V2 @ OpenATV

  6. #6
    Avatar von betacentauri
    Registriert seit
    15.06.2013
    Beiträge
    1.994
    Total Downloaded
    1,32 MB
    Total Downloaded
    1,32 MB
    ReceiverDankeAktivitäten
    Box 1:
    ET-9200
     
     
    Box 2:
    ET-10000
     
     
    Box 3:
    ET-8500
     
     
    Box 4:
    ET-8000
     
     
    Box 5:
    Gigablue Quad+
     
     
    There might be more ports open on the box. Check with netstat.

    Nevertheless as long as you don’t forward any port from the router to your box only local network can be a threat. So think twice what you are doing with your devices in your LAN and which devices you allow to enter your LAN.
    By the way: The boxes will never be 99% save. They use old kernels without latest security updates. So if someone skilled is in your LAN and wants to hack your box he will do it.
    ET-10000, ET-9200, ET-8000, Gigablue Quad+

  7. #7
    Senior Mitglied Avatar von s3n0
    Registriert seit
    02.01.2017
    Beiträge
    725
    Total Downloaded
    173,2 KB
    Total Downloaded
    173,2 KB
    ReceiverDankeAktivitäten
    Box 1:
    Formuler F3
     
     
    Box 2:
    Vu+ Solo SE V2
     
     
    Box 3:
    Formuer F4-TURBO
     
     
    Exactly. Indeed, if a skiller is in the network, he can get into the box with an ordinary DNS attack (redirecting the update server to his PC, for example, from which he then downloads the "Trojan horse"). The ways to attack are countless. Some more complicated, some less complex. It really depends only on the skills of the attacker.

    Just close all network communication (especially ports 20-23, 80, ...) and allow up to one network port per remote card-share: P. Then the set top box will be safe.

    In my opinion, the best network policy is in the firewall style - to block all ports + communication protocols + incoming and outgoing connections, and only allow what exactly the set top box user needs.

    Or, disable the network completely (disconnect the LAN cable and disable WiFi). And connect the internet to the set top box only once in a month - due to the firmware upgrade. But this is only applicable if the set top box is only used for DVB-S (satellite signal). So when the Internet is not required (IPTV, YouTube, etc.).
    2 x Formuler F3 @ OpenATV
    1 x Vu+ Solo SE V2 @ OpenATV


Stichworte

Lesezeichen

Berechtigungen

  • Neue Themen erstellen: Nein
  • Themen beantworten: Nein
  • Anhänge hochladen: Nein
  • Beiträge bearbeiten: Nein
  •  
Diese Website benutzt Cookies
Wir benutzen Cookies um Sitzungsinformationen zu speichern. Dies erleichtert es uns z.B. Dich an Deine Login zu erinnern, Einstellungen der Webseite zu speichern, Inhalte und Werbung zu personalisieren, Social Media Funktionen anzubieten und unser Datenaufkommen zu analysieren. Wir teilen diese Informationen ebenfalls mit unseren Social Media-, Werbe- und Analysepartnern.
     
Alle Zeitangaben in WEZ +1. Es ist jetzt 17:31 Uhr.
Powered by vBulletin® Version 4.2.5 (Deutsch)
Copyright ©2019 Adduco Digital e.K. und vBulletin Solutions, Inc. Alle Rechte vorbehalten.
Resources saved on this page: MySQL 11,76%
Parts of this site powered by vBulletin Mods & Addons from DragonByte Technologies Ltd. (Details)
vBulletin Skin By: PurevB.com