The following step-by-step is for newbies who can't get in using the other tutorials.
It's not because the other tutorials are wrong, it's because new users confuse the different credentials that are being used.
Let's start and open up this box.
Login to your WDMB with your Internetbrowser by typing in its IP.
My Worldbook's IP is 192.168.10.210. I will give that in the examples.
Of course you have to replace it by your own IP.
Use the default account: admin/123456
Leave "admin" as your login name, but change its password to something only you know.
If you want you can upgrade to the latest firmware.
Although the latest firmware doesn't have GCC and NFS I still advise you to do this. Your mybook will accept more commands and GCC and NFS can be added afterwards quite easily.
Anyhow… If you want the latest firmware then do it now.
if you do it later, all your hacks will be gone (this might be a good thing if you want to experiment first)
All the extra programs you can install after hacking it (like bittorrent-client, uPnP-server, CUPS, PHP) will be gone as well…
You will NOT lose the data on your shares…..
You are now in your worldbook as admin.
You can create shares and users.
Still using the webinterface, Create a filesharing user named WORLDBOOK with password WORLDBOOK.
Apply Martin Hinner's patch by putting this address in your browser (the IP of YOUR worldbook of course)
You might get an error message here saying "Firmware failed to download - try later" but you should continue anyhow and try to gain access using ssh
SSH (secure shell) is now enabled and the root account has no password.
Because root has no password, you can't login directly as root. You will have to use the credentials of a user created under "filesharing" and use only CAPITALS.
This is one of the pitfalls. You CAN NOT use the admin account. The admin account has no SSH-access.
So login using WORLDBOOK as username and password. (You can use putty, if you have Windows)
012.01.861.291|KOOBDLROW#012.01.861.291|KOOBDLROW's password: WORLDBOOK
ssh Could not chdir to home directory /home/WORLDBOOK: No such file or directory
you're in now, but as the restricted user WORLDBOOK.
Now login as root… No password is needed. This has been removed by Martin Hinner's script.
You will see the prompt change into: [root@mybook ~]#
Which means you are logged in as root on the host mybook and you're standing in your home directory (~)
Now you should change the password of the user root.
root is the linux "super user" with all rights.
When the root-account has a password, you'll be able to login directly as such.
Changing password for root
Enter the new password (minimum of 5, maximum of 8 characters)
Please use a combination of upper and lower case letters and numbers.
Enter new password: mylittlesecret
Bad password: too weak.
Re-enter new password: mylittlesecret
You can now login as root with your password. No need to login twice each time.
You should test this!
SSH will get disabled again after a reboot.
To change this, you have to modify the config of inetd. The line is already there, you only need to remove the #.
ssh stream tcp nowait root /usr/sbin/sshd sshd -i
If "vi" the standard editor in Unix gives you too much hassle you can add this extra line in a quick and dirty way. (Do take the time to learn the basic commands of vi. It's on almost every linux distro.)
echo "ssh stream tcp nowait root /usr/sbin/sshd sshd -i" » /etc/inetd.conf
To enable access with an ssh-key (recommended but maybe for the future) you can login without a password using a private key. If you have a private/public key-pair you can use it by putting your login key in the right place (~/.ssh):
mkdir ~/.ssh echo "ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAIB2yhsJkngVBGazm95UdWa7gyfkv7KXw7JPgrNSMe7l5wGFdpemSq2NFTZUkiCMrMhdAPuE/BfonpcTaUH9gnKT1IGU/ZMsEs8gGUlvfKD4VZT//7sZoNYkbcVXETUsQfqulWoAXp1UppqzmfjVMEuCVhd6iH9beYIERiYIEyH57Q== rsa-key-20060420" >> ~/.ssh/authorized_keys
This is of course my public key. You'll need to generate one of your own, but that's a different topic.
After you established that, you can login using your root account. Give it a reboot and check if it still gives you access through SSH.
Using the webinterface you can safely delete the user WORLDBOOK after that.
If you lost your password somehow, you can re-enable Martin Hinner's patch to remove password of the root. You need the admin's password for that. If you lost that too, you can regain that one by using the paperclip. Afterwards the account is admin/123456 again.
The next thing to do is install optware……