fringes

I believe starting the AP is the default mode following a flash. Just go into the "Network" system infusion to configure it. You can also install the Wifimanager infusion if you prefer to use that.

You should be able to just click the link in his signature block.

You're welcome. I hope you'll spend some time learning more about these commands. They're very useful and when implimented correctly, quite secure. I hope you're tunnelling in from your laptop to the Pi with the -L (local) port forwards, and not just connecting directly on the Pi. You could be ussing SSH and still have a very insecure setup. I use different ports mostly when I'm port forwarding the same services from different hosts onto the same firewall IP and I simply have to. But when I'm scanning for vulnerabilities, I don't think finding a service on a non-standard port slows me down much. It might make it less likely to show up in a Shodan search though.

Thanks for the link and encouragement, but I'm pretty sure Darren was all over this one.

Hey Darren and Seb, Before DEFCON (22), I thought Darren indicated he was working on an OpenVPN infusion. (Did that get lost?) I'd love this, as well as some SSH infusion enhancements. Is there any movement on this? Thanks. Ugh, I gave it the wrong title.

I'm having a little trouble following you, but those look like pretty good tutorials and explanations. I also thought Darren did an excellent job on this topic in season 11 (1112 and 1113) Are you using a RaspberryPi wwith an SSH server to emulate a "relay server" on the internet? If so, it appears that you've connected, though not tunneled or port forwarded to your RaspberryPi. The ssh comand I use would be something like: ssh -i /root/.ssh/id_rsa -N -T -R 1471:localhost:1471 -R 3322:localhost:22 tunneluser@miyagipi.org -p 3333 This would create one tunnel, no shell, and two port forwards from your pineapple to your RasberryPi (which you say has SSH on port 3333). I don't know why you put SSH on port 3333, but it doesn't matter. Now, on your raspberryPi, the pineapple's UI port 1471 is available on raspberryPi localhost port 1471, and the pineapple's SSH port (22) is available on the raspberryPi's localhost port 3322. (-R forwards from here to there.) So, to use this tunnel from someplace else, say your laptop running putty (for variety) I would do it differently for SSH and http. For the UI, I would create another tunnel with a single port forward from my laptop (-L forwards from there to here): plink.exe -N -L 1471:localhost:1471 tunneluser@miyagipi.org -P 3333 (This assumes I'm using pagent to provide the SSH key. Also note that putty/plink uses -P where SSH uses -p.) Then (on my laptop) I browse to: http://localhost:1471/ You could do exactly the same thing for SSH, but you could also create a single putty session (or configure an SSH session) to do it in one comand. Note that the only place I'm using the root user is on the pineapple. Also note that I'm using SSH keys instead of username passwords; I find that much easier in the long run. Also, to see what command the infusion is using: cat /etc/config/autossh I hope this is useful to you. If not, I hope it is useful to someone else.

It sure does. Thanks. And I did need to clean my cache again too.

A little update... In Firebug, I changed the overflow property from hidden to scroll on the tile_expanded div CSS style and I got my scroll bar. I hope that is helpful. Also, there is some wasted space in the top right that might be useable by a second column of the "Interfaces." That fould also free up some vertical space.

I did clear my cache of course, both FF and Chrome on Win7. I like the sub-tabs for "Radio0" and "Radio1", but there still isn't enough vertical space to display everything in the "Wireless" tab without a scroll bar. And I don't get a scroll bar for that page.

Perfect! It works now. Thanks Seb.

I seee this same behavior in Firefox. It works fine in Chrome. As soon as I upgraded to 2.0.4, I cleared my Firefox cache.

Happy belated birthday!

I upgraded to WiFi Manager 2.0 and the large tile no longer scrolls vertically (FF and Chrome).

That used to happen to me with the original micro-sd card. Another reboot always fixed it. It's happened once since I got my classs-10. It does seem like some kind of race condition doesn't it?

That's very useful Mr-Protocol, thanks. I don't agree with the "don't let the SSH server dropbear listen on the default port (22)" part, at least not as a security measure. There are other things you can do deo406 to help, and you are correct to be concerned. It sounds like you are worried about someone accessing your "relay server" by exploiting your pineapple. You absolutely do not want to add the pineapple's public key to the root account on your Internet facing server. In fact, if you are only using that key for the tunnel, create a special account on your server explicitly for the tunnel. (You can forward multiple ports over one tunnel by-the-way.) Then further protect that account by having it's shell be something like /bin/false. And you should also add options to the authorized_keys file entry for that account such as (no-agent-forwarding, no-pty, no-user-rc, no-X11-forwarding). There's a lot of information about this on Google. .

There was a wiki: [1855d1c7] 2014-09-11 23:06:44: Fatal exception of type MWException But when it's working, please do create a "cheat sheet" there. I think that's a nice idea.

Login to the UI. Log in to the UI. Open the "WiFi Pineapple MK5" infusion. Select the "Firmware Upgrade" tab. Read the warning. Click the "Check for upgrade" link. I don't know what comes next, mine's up to date.

Thank you again.

While Seb was on holiday (being dragged around by tractors?), damavox asked about creating a p0f infusion. p0f is a passive OS fingerprinting tool that sends no packets to the host being fingerprinted. It is especially well suited for use in devices with connected clients, such as the pineapple. In short order, Whistle Master created an infusion. However, because this required a custom p0f binary, he pulled the infusion and locked the support topic, pending Seb's return. Now that Seb's back, I was wondering about the status. Can we get this turned back on?

I can't help with the USB drive on the Mark V, but perhaps the most convenient way to format the micro-SD card properly is to open the Resources infusion, select the "USB Info" tab and click the "Format SD Card - (Experimental)" link.

A lot of Pineapple owners are buying this at a special discount. If you plug in another supported WiFi dongle, you'll have wlan2 too.

WiFi Cowboy, you clearly need more antennas. WiFi Cowboy and ananades, you both suggest that the problem isn't power, but might be some sort of resource exhaustion. Have you tried watching the "Status" infusion to get a picture of what's going on when things start to go south? Since you both can reproduce the problem, this shouldn't be difficult.

Sorry damavox, I knew that. Welcome back Seb.

You can also passively fingerprint OSes using Whistle master's p0f infusion. See the support forums.

Has anyone noticed other things, such as software rebooting, don't work when the Internet connection goes away?