Thanks Thanks:  0
Ergebnis 1 bis 7 von 7
  1. #1
    Anfänger Avatar von davequattro
    Registriert seit
    06.07.2013
    Beiträge
    24
    Thanks (gegeben)
    0
    Thanks (bekommen)
    4
    Total Downloaded
    2,73 MB
    Total Downloaded
    2,73 MB
    ReceiverDanke

    What is the kill command for the OpenWebif

    Anybody knows what the kill command is for Openwebif?
    I want to kill the webinterface via a cronjob
    VU+duo4k openATV 6.4 sat+cable | Vu+duo2 openATV 6.4 1TB HDD sat+cable
    Zgemma-star H9.2S SE openATV 6.4 sat+cable + android sat+cable
    Zgemma-star H9.2H SE openATV 6.4 sat+cable +android sat+cable
    Wavefrontier T90. Titanium TQS Universal quad LNB's

    •   Alt Advertising

       

  2. #2
    Senior Mitglied Avatar von s3n0
    Registriert seit
    02.01.2017
    Ort
    Slovakia
    Beiträge
    1.460
    Thanks (gegeben)
    91
    Thanks (bekommen)
    418
    Total Downloaded
    323,0 KB
    Total Downloaded
    323,0 KB
    ReceiverDanke
    Box 1:
    Vu+ Zero 4K
     
     
    Box 2:
    Vu+ Solo SE V2
     
     
    Box 3:
    Formuer F4-TURBO
     
     
    What do you mean by the kill ? Kill the process or disable user-login in OpenWebif ? Why you need to do ?

    Why not set a password to access the OpenWebif interface ?

    Why do not you just open OpenWebif over OpenATV MENU to disable it ? Press the MENU button on your remote control and then navigate to :
    Settings > System > Network > OpenWebif > Enabled : Yes / No

    OpenWebif is part of the Enigma2 (such as the plugin). Disabling or enabling the enigma2 plugins via the linux-shell (or via the crontab) is too complicated.

    It might be possible to block / allow the port directly via linux-shell (or crontab) on which OpenWebif runs (default http port = 80). But I do not know if it would work with this method. For example, with the iptables (tools for managing kernel packet filtering capabilities). Must be installed in OpenATV from feed server: opkg update && opkg install iptables
    Man page of IPTABLES
    linux - Script to Block and Unblock a Port - Stack Overflow

  3. #3
    Anfänger Avatar von davequattro
    Registriert seit
    06.07.2013
    Beiträge
    24
    Thanks (gegeben)
    0
    Thanks (bekommen)
    4
    Themenstarter
    Total Downloaded
    2,73 MB
    Total Downloaded
    2,73 MB
    ReceiverDanke
    I would like to disable it, so thats never can be started, only when it's necessary.
    A friend of mine has some unwanted activity on his receiver, and no, the web interface is not shared on the www.
    Maybe he has some problems with phishing mail and that some people are sniffing around on his network, i don't know.
    I have already blocked ftp, ssh and telnet acces via cron.
    And the web interface is the only connecton possible that i kknow.
    But if it's not possible what i ask, , then the simplest way is to disable it ore delete it.
    Not everybody is using the web interce, he isn't anyway.
    VU+duo4k openATV 6.4 sat+cable | Vu+duo2 openATV 6.4 1TB HDD sat+cable
    Zgemma-star H9.2S SE openATV 6.4 sat+cable + android sat+cable
    Zgemma-star H9.2H SE openATV 6.4 sat+cable +android sat+cable
    Wavefrontier T90. Titanium TQS Universal quad LNB's

  4. #4
    Avatar von zeini
    Registriert seit
    24.06.2013
    Ort
    Österreich
    Beiträge
    5.023
    Thanks (gegeben)
    835
    Thanks (bekommen)
    1489
    Total Downloaded
    15,72 MB
    Total Downloaded
    15,72 MB
    ReceiverDanke
    Box 1:
    Zgemma H9.Twin
     
     
    Box 2:
    Edision Optimuss OS1+
     
     
    Box 3:
    Golden Interstar XPEED LX1
     
     
    Box 4:
    Spycat
     
     
    Box 5:
    AX HD60
     
     
    You can disable OpenWebinterface in menue.
    ______________________
    Hans

    TV - Hisense Ulra HD
    Eutelsat 13°E und Astra 19,2°E Unicable-Matrix mit Wide-LNB


  5. #5
    Senior Mitglied Avatar von s3n0
    Registriert seit
    02.01.2017
    Ort
    Slovakia
    Beiträge
    1.460
    Thanks (gegeben)
    91
    Thanks (bekommen)
    418
    Total Downloaded
    323,0 KB
    Total Downloaded
    323,0 KB
    ReceiverDanke
    Box 1:
    Vu+ Zero 4K
     
     
    Box 2:
    Vu+ Solo SE V2
     
     
    Box 3:
    Formuer F4-TURBO
     
     
    Zitat Zitat von davequattro Beitrag anzeigen
    I would like to disable it, so thats never can be started, only when it's necessary.
    A friend of mine has some unwanted activity on his receiver, and no, the web interface is not shared on the www.
    Maybe he has some problems with phishing mail and that some people are sniffing around on his network, i don't know.
    I have already blocked ftp, ssh and telnet acces via cron.
    And the web interface is the only connecton possible that i kknow.
    But if it's not possible what i ask, , then the simplest way is to disable it ore delete it.
    Not everybody is using the web interce, he isn't anyway.
    I have already answered. You can permanently disable the OpenWebif plugin in the OpenATV MENU (see my post above).

    There is also the option of permanently uninstalling the OpenWebif plugin from the system through OPKG package manager:
    Code:
    opkg update
    opkg list-installed | grep webif
    opkg remove --autoremove enigma2-plugin-extensions-openwebif
    However, in my opinion, it is enough to deactivate OpenWebif in MENU OpenATV - as I wrote in the post above.

  6. #6
    Avatar von betacentauri
    Registriert seit
    15.06.2013
    Beiträge
    2.359
    Thanks (gegeben)
    287
    Thanks (bekommen)
    1399
    Total Downloaded
    1,32 MB
    Total Downloaded
    1,32 MB
    ReceiverDanke
    Box 1:
    hd51
     
     
    Box 2:
    vuduo4kse
     
     
    Box 3:
    und noch 20-30 andere
     
     
    There might be more ports open on the box. Check with netstat.

    Nevertheless as long as you don’t forward any port from the router to your box only local network can be a threat. So think twice what you are doing with your devices in your LAN and which devices you allow to enter your LAN.
    By the way: The boxes will never be 99% save. They use old kernels without latest security updates. So if someone skilled is in your LAN and wants to hack your box he will do it.
    hd51, vuduo4se,....

  7. #7
    Senior Mitglied Avatar von s3n0
    Registriert seit
    02.01.2017
    Ort
    Slovakia
    Beiträge
    1.460
    Thanks (gegeben)
    91
    Thanks (bekommen)
    418
    Total Downloaded
    323,0 KB
    Total Downloaded
    323,0 KB
    ReceiverDanke
    Box 1:
    Vu+ Zero 4K
     
     
    Box 2:
    Vu+ Solo SE V2
     
     
    Box 3:
    Formuer F4-TURBO
     
     
    Exactly. Indeed, if a skiller is in the network, he can get into the box with an ordinary DNS attack (redirecting the update server to his PC, for example, from which he then downloads the "Trojan horse"). The ways to attack are countless. Some more complicated, some less complex. It really depends only on the skills of the attacker.

    Just close all network communication (especially ports 20-23, 80, ...) and allow up to one network port per remote card-share: P. Then the set top box will be safe.

    In my opinion, the best network policy is in the firewall style - to block all ports + communication protocols + incoming and outgoing connections, and only allow what exactly the set top box user needs.

    Or, disable the network completely (disconnect the LAN cable and disable WiFi). And connect the internet to the set top box only once in a month - due to the firmware upgrade. But this is only applicable if the set top box is only used for DVB-S (satellite signal). So when the Internet is not required (IPTV, YouTube, etc.).


Stichworte

Lesezeichen

Berechtigungen

  • Neue Themen erstellen: Nein
  • Themen beantworten: Nein
  • Anhänge hochladen: Nein
  • Beiträge bearbeiten: Nein
  •  
Alle Zeitangaben in WEZ +1. Es ist jetzt 02:29 Uhr.
Powered by vBulletin® Version 4.2.5 (Deutsch)
Copyright ©2024 Adduco Digital e.K. und vBulletin Solutions, Inc. Alle Rechte vorbehalten.
Resources saved on this page: MySQL 6,25%
Parts of this site powered by vBulletin Mods & Addons from DragonByte Technologies Ltd. (Details)
vBulletin Skin By: PurevB.com