Darren Kitchen Posted September 23, 2008 Share Posted September 23, 2008 This guide has been replaced with a version on the Hak5 wiki. Feel free to make edits there and add discussion here. http://wiki.hak5.org/wiki/Fon_Jasager_Install <---Unlocking the Fon 2100 and Installing Jasager Guide http://wiki.hak5.org/wiki/Jasager <--- Place for further Jasager tutorials, payloads, etc So I figured it would be best if I tried out the official release and seeing as how my old Fon has been through hell and back with all sorts of frankenstein experiments I figured why not just pop a new Fon and document the unlocking / install process. This was also great practice for an upcoming segment I'm doing on episode 405 I believe. At the bottom of this guide I have included a link to download all of the files used in this guide as well as links to resources I used while installing. If I borked something up or you know of an easier way to do this please post a comment. Also note I did this in Windows because it was easiest for me using Firefox, Putty, and WinSCP. Substitute tools for your OS. Warning: Applying these changes to your Fonera will void it of its warranty. FON does not support these modifications and will not be held responsible for their consequences. This should only be done by advanced users. Step 0: Unbox FON 2100. Make note of the serial number on the bottom and NO NOT UNDER ANY CIRCUMSTANCES PLUG HIM INTO THE INTERNET Step 1: Give FON some power but not Ethernet yet. Open your wireless connection manager and connect to the MyPlace access point. The WPA key is the serial number on the bottom of FON. Step 2: Browse to http://192.168.10.1/ and make sure FON is wearing firmware version 0.7.1 r1 or below. If not consult another thread on downgrading it. Step 3: Click the Advanced link and login with username admin and password admin. Step 4: Open sshenable.html (provided in download at the bottom of this post) and click Submit Step 5: SSH on over to 192.168.10.1 Step 6: Login as root with password admin Step 7: Rename dropbear to S50dropbear so that it comes up on boot mv /etc/init.d/dropbear /etc/init.d/S50dropbear Step 8: Transfer over out.hex and openwrt-ar531x-2.4-vmlinux-CAMICIA.lzma to /tmp/ using SCP (or wget them, or however you want to transfer 'em) Step 9: Patch the kernel, reboot, and eat some pineapple while it comes back up. mtd -e vmlinux.bin.l7 write openwrt-ar531x-2.4-vmlinux-CAMICIA.lzma vmlinux.bin.l7 reboot Step 10: Reconnect to MyPlace, SSH back in, patch the redboot config, reboot, eat some more pineapple. mtd -e "RedBoot config" write out.hex "RedBoot config" reboot Quote Link to comment Share on other sites More sharing options...
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.