
All posts by Jason O'Connell

bcm43xx on iBook G4 w/Ubuntu Breezy

d/l – ieee80211, softmac, bcm43xx, precompiled kernel + source

install build-essential, kernel-package

Magic formula:

1) Install kernel
2) Extract source kernel to /usr/src, make linux symlink
3) Copy /boot/config- /usr/src/linux/.config
4) make-mpkg clean
5) make-kpkg –initrd –stem linux –revision=temp1.0 kernel_image
Let it build until it gets past scripts/, then Ctrl-C
6) ybin -v
7) Reboot into new kernel.
7.5) Make symlink from /lib/modules/ to /usr/src/linux/
8) Install ieee80211, answer Y to all questions regarding removing files + links
9) Install softmac
10) Install bcm43xx driver. Edit bcm43xx.h, comment out checks for CONFIG_IEEE80211
11) modprobe bcm43xx


26 lines of code to help me remember how to make a connection to a MySQL database from a .php script

Adding a user into mysql

use mysql
select * from users G; (to get the format)
insert into users (Host, User, Password, Select_priv, etc) values (“localhost”, “php”, Password(“f00”), “Y”, etc);
flush privileges;
mysql -u php -p

*making the connection*


How to run stuff on an Actiontec DSL router

I read somewhere that 2 geeks got BitchX to run on an Actiontec router. The link to the site never worked,
so I set off on my own quest to make it work.

First, your gonna need to setup a toolchain. Dan Kegel’s crosstool produces binaries that work on the router:

un tar, move into contrib


mkdir -p /opt/crosstool
chown $USER /opt/crosstool


BitchX needs ncurses and ncurses needs to be re-compiled aginst uClibc to work correctly, so:

Cross compiling ncurses 5.4 for an Actiontec GT DSL Router

Get the source:


make sources

setup cross-compile environment – heres mine:

export BASE=~jloconne/mips-bin/
#export LINUX=$HOME/snapgear/linux-2.4.x/include/
export TOOLSBASE=/opt/crosstool/mipsel-unknown-linux-uclibc/gcc-3.3.3-uClibc-0.9.23/bin/mipsel-unknown-linux-uclibc
export CC=$TOOLSBASE-gcc
export STRIP=$TOOLSBASE-strip
export RANLIB=$TOOLSBASE-ranlib
export LDFLAGS=”-L/opt/crosstool/mipsel-unknown-linux-uclibc/gcc-3.3.3-uClibc-0.9.23/mipsel-unknown-linux-uclibc/lib -L/accts/jloconne/ncurses-5.4/lib”
export CFLAGS=-I/opt/crosstool/mipsel-unknown-linux-uclibc/gcc-3.3.3-uClibc-0.9.23/mipsel-unknown-linux-uclibc/include/
#export CFLAGS=”-I/accts/jloconne/actiontec-source/linux-2.4.17_mvl21/include/asm/”

export DEST=/accts/jloconne/mips-bin

./configure –host=mipsel-linux –without-ada –without-progs –without-cxx –prefix=$DEST

make install

Now, compile BitchX

Get source,

Tell autoconf where to find your new ncurses lib

export LDFLAGS=/path/to/ncurses/lib


Now, strip the binary to save space,

/opt/crosstool/mipsel-unknown-linux-uclibc/gcc-3.3.3-uClibc-0.9.23/bin/mipsel-unknown-linux-uclibc-strip BitchX

The easiest way I’ve found to put binaries on the router is by placing it on an ftp or web server, then doing
a wget once your telnetted in.


then, telnet to the router, and switch to /var/tmp

wget ftp://IPaddress/BitchX
wget ftp://IPaddress/vt102

mkdir ./terminfo/v
mv vt102 ./terminfo/v

export HOME=.

chmod 700 BitchX


There you have it…

Adding squashfs support into RedHat Enterprise Linux 3 U3

Squashfs must be patched and compiled into the kernel. There is no module available from RedHat or anywhere else on the web, at least not that I’ve been able to find.

Determine which kernel release your running with:

Uname –r


Check to see if you have the kernel-sources package installed for your running kernel:

Rpm –q kernel-source


Download the squashfs package from:

untar the archive (/tmp is a great spot)

su to root and move into /usr/src/linux-2.4 (may be different on your machine)

The default kernel on RHEL3 WS U3 is 2.4.21. squashfs has not patch for this specific version, so you’ll need to use the 2.4.22 patch.

Patch the kernel with:

Patch –p1

Prepare the kernel source tree:

Make mrproper

Copy your kernel’s configuration from /boot to the kernel source:

Cp /boot/Config-version ./.config

Edit the top level Makefile and edit EXTRAVERSION to remove custom

Make oldconfig

Hit m to compile as module

Make dep

Make bzImage

Make modules

Make modules_install

Copy arch/i386/bzImage to /boot/vmlinux-version-squashfs

Mkinitrd /path/to/kernel 2.4.21-20.EL

Edit /boot/grub/grub.conf


Building a cross-compiler on RedHat Enterpirse Linux 3 WS

First you’ll need to recompile the binutils package with the –target machines name.

For example: mips-linux, sparc-linux, etc.

The easiest way to do this is to download the source .RPM for the running version of binutils on the host system.

Rpm –q binutils (To see the current version)

Up2date –get-source binutils

Will place the .src.rpm in /var/spool/up2date

Extract the source with:

Rpm2cpio /var/spool/up2date/binutils-`version`.src.rpm | cpio –extract

Then extract the tarball with:

Tar jxvf binutils-`version` (replace j with t if your archive is a .gz)

I like to keep it clean and build outside the source, so I do:

Mkdir build-binutils && cd build-binutils

Export target=`your target here`, for example:

Export TARGET=mips-linux

Export PREFIX=/usr/local

../binutils`version`/configure –target=$TARGET –prefix=$PREFIX

If you specified an invalid target, configure will complain.

Make && make install

You should end up with some binaries prefixed with your target architecture in /usr/local/bin as well a /usr/local/`target`, with a bin and lib beneath that directory.

Next, you need glibc (or possibly uClibc).

Up2date -i

In RHEL3 (and probably others *nix’s), /etc/login.defs contains default settings for user password aging (how long before it must be changed), and expiration – amongst other things. Here is an expample:

# Password aging controls:
# PASS_MAX_DAYS Maximum number of days a password may be used.
# PASS_MIN_DAYS Minimum number of days allowed between password changes.
# PASS_MIN_LEN Minimum acceptable password length.
# PASS_WARN_AGE Number of days warning given before a password expires.

Strangely, PASS_MIN_LEN is not used, as it is overriden by what you set minlen= to for the cracklib PAM module.
These settings say:

passwords expire after 180 days
a password must be used for at least 7 days before it can be changed again
10 days before your password will expire, you will receive a notice. The notice will pop-up in a gdm window, or at the command prompt from a virtual terminal.

These settings apply to new user accounts created with adduser, and can be viewed by using the chage -l username command.

Another trick you can do with PAM is force your users to use complex passwords. This example sets a minimum password legnth of 8 characters composed of at least 1 digit, 1 uppercase, 1 lowercase, and 1 non-alphanumeric character:

password required /lib/security/$ISA/
retry=3 dcredit=-1 ucredit=-1 ocredit=-1 lcredit=-1 minlen=8

The retry means you get 3 chances to make a new password that complies to your rule until it gives up on you. Note also minlen=8 which sets the minimum password length to 8 characters.

Stuff that in your /etc/pam.d/system-auth. See my other post on how to expire a users password and make them comply to your new rule.

The PAM module pam_tally can be used to track the number of times a user enters a bad password and lock out their account after a specified number of attempts. The lock can be indefinite, or can reset itself after a period of time.

This example is from the system-auth file in /etc/pam.d on a RedHat Enterprise Linux machine:

# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.

# Enables failed login counts (section 1 of 2)
auth required /lib/security/$ISA/
onerr=fail no_magic_root
auth required /lib/security/$ISA/
auth sufficient /lib/security/$ISA/ likeauth nullok
auth required /lib/security/$ISA/

account required /lib/security/$ISA/

# Enables failed login counts (section 2 of 2)
account required /lib/security/$ISA/
deny=5 reset no_magic_root

password sufficient /lib/security/$ISA/ nullok use_authtok md5 shadow nis
password required /lib/security/$ISA/

session required /lib/security/$ISA/
session required /lib/security/$ISA/

Note in the example the module is referenced twice. Once in the auth part, and again in the account part. If you care about the details, read up on PAM. Otherwise just note it will lock out any user except root after 5 bad password attempts forever. If a user successfully logs in the counter is reset, e.g. 4 bad attempts and the 5th is successful, the tally counter is reset to 0. To view and unlock accounts, use the command pam_tally. By itself, pam_tally will show a username and the number of failed password attempts.

To unlock an account, do:

pam_tally –user username –reset

Seem like a simple thing to do, right? Create a user account, set an initial password, then force that user to enter a new password the first time they log in. Well it used to be easy, just use passwd -e to *expire* that users password. But someone decided that was too simple, so this functionality was moved to chage. Heres a breakdown of how to create a new user account with an initial password that expires the first time its used:

useradd username
passwd username
chage -d 0 username

Seems strange that several functions in passwd overlap with functions in chage, but expire was removed from passwd altogether.