Jump to content


Photo

Mac OS High Sierra - How to restore telnet client...

Started by Rick Hunter, 30 Sep 2017 22:10

  • Please log in to reply
31 replies to this topic

#1 Rick Hunter

  • PLi® Core member
  • 9,066 posts

+56
Good

Posted 30 September 2017 - 22:10

Dear all,

 

With the come of Mac OS High Sierra, Apple has decided to remove telnet client from the installation. 

I've made a simple manual how to restore telnet client on your mac. 

 

Please look at: https://wiki.openpli..._OS_High_Sierra when you're are in need of the telnet client. 

 

Best Regards,

Rick Hunter


Plinux member We have a.. (ehmm.. morgage) house.

Re: Mac OS High Sierra - How to restore telnet client... #2 Erik Slagter

  • PLi® Core member
  • 46,969 posts

+542
Excellent

Posted 1 October 2017 - 08:52

Is there still an ssh client? I'd say use that instead, then. Telnet has been dead for years (as Apple correctly states here).


* Wavefrontier T90 with 28E/23E/19E/13E via SCR switches 2 x 2 x 6 user bands
I don't read PM -> if you have something to ask or to report, do it in the forum so others can benefit. I don't take freelance jobs.
Ik lees geen PM -> als je iets te vragen of te melden hebt, doe het op het forum, zodat anderen er ook wat aan hebben.

Re: Mac OS High Sierra - How to restore telnet client... #3 betacentauri

  • PLi® Core member
  • 7,185 posts

+323
Excellent

Posted 1 October 2017 - 09:04

But after flashing you need to use a telnet client as ssh without password don't work.
Maybe set a random root password after flashing and show that in the menu? So we can get rid of telnet. Well not really as maybe tools depend on it.
Xtrend ET-9200, ET-8000, ET-10000, OpenPliPC on Ubuntu 12.04

Re: Mac OS High Sierra - How to restore telnet client... #4 Erik Slagter

  • PLi® Core member
  • 46,969 posts

+542
Excellent

Posted 1 October 2017 - 09:45

We could revert the default root password to something like, say, dreambox, but the risk of that is that people won't change it. So it should be like a one-off password. I don't think dropbear supports that.


* Wavefrontier T90 with 28E/23E/19E/13E via SCR switches 2 x 2 x 6 user bands
I don't read PM -> if you have something to ask or to report, do it in the forum so others can benefit. I don't take freelance jobs.
Ik lees geen PM -> als je iets te vragen of te melden hebt, doe het op het forum, zodat anderen er ook wat aan hebben.

Re: Mac OS High Sierra - How to restore telnet client... #5 betacentauri

  • PLi® Core member
  • 7,185 posts

+323
Excellent

Posted 1 October 2017 - 09:57

You can create a random password by your own in python code. But to show it in the menu so that users can access the box, you need to store it somewhere. That would be not very nice.
Xtrend ET-9200, ET-8000, ET-10000, OpenPliPC on Ubuntu 12.04

Re: Mac OS High Sierra - How to restore telnet client... #6 MiLo

  • PLi® Core member
  • 14,055 posts

+298
Excellent

Posted 1 October 2017 - 10:04

We could revert the default root password to something like, say, dreambox, but the risk of that is that people won't change it.


Worse than that, it would open up an attack window.

The reason that you're not allowed to log into ssh without the root password being set is that when you flash the box, but have a portforward from the router to port 22 active, there will be a period that the root password is still empty but the SSH server already running. At that point, it would let anyone in from the internet. By not allowing any login until root has a password, this is made impossible and you can securely forward port 22 anywhere you like.

Setting any default password will re-enable this loophole.

Even a random password (at first boot) will not be completely secure. The box doesn't have any randomness in its hardware, so there are a limited set of "random" values that the box could end up with at boot, and that would make it possible for an outsider to just guess the random number seed used to create the password.
Real musicians never die - they just decompose

Re: Mac OS High Sierra - How to restore telnet client... #7 MiLo

  • PLi® Core member
  • 14,055 posts

+298
Excellent

Posted 1 October 2017 - 10:06

You can create a random password by your own in python code. But to show it in the menu so that users can access the box, you need to store it somewhere. That would be not very nice.


A variation on that would work: A menu item to create and show a random root password. The password is shown on screen, and doesn't need to be stored permanently (other than its hash in /etc/shadow). If you forgot it, you can create a new one any time.
Real musicians never die - they just decompose

Re: Mac OS High Sierra - How to restore telnet client... #8 betacentauri

  • PLi® Core member
  • 7,185 posts

+323
Excellent

Posted 1 October 2017 - 10:24

Not a bad idea ;). As long as e2 runs as root. But I guess this won't change in near future.
Xtrend ET-9200, ET-8000, ET-10000, OpenPliPC on Ubuntu 12.04

Re: Mac OS High Sierra - How to restore telnet client... #9 Pr2

  • PLi® Contributor
  • 6,218 posts

+262
Excellent

Posted 1 October 2017 - 10:45

Hi,

 

If you already have installed brew on your mac, simply type:

 

brew update

brew upgrade

 

then

 

brew install telnet

 

If not, install brew on your mac.

 

https://brew.sh/index_fr.html

 

Pr2


Edited by Pr2, 1 October 2017 - 10:46.

NO SUPPORT by PM, it is a forum make your question public so everybody can benefit from the question/answer.
If you think that my answer helps you, you can press the up arrow in bottom right of the answer.

Wanna help with OpenPLi Translation? Please read our Wiki Information for translators

Sat: Hotbird 13.0E, Astra 19.2E, Eutelsat5A 5.0W
VU+ Solo 4K: 2*DVB-S2 + 2*DVB-C/T/T2 (used in DVB-C) & Duo 4K: 2*DVB-S2X + DVB-C (FBC)

AB-Com: PULSe 4K 1*DVB-S2X (+ DVB-C/T/T2)
Edision OS Mio 4K: 1*DVB-S2X + 1*DVB-C/T/T2
 

Re: Mac OS High Sierra - How to restore telnet client... #10 littlesat

  • PLi® Core member
  • 57,527 posts

+709
Excellent

Posted 1 October 2017 - 10:49

I think what we have now is fine... we only need to add something to clear the password, so you can restore it via telnet. And actually you do need a password at all. It is better to use keys without a password..

WaveFrontier 28.2E | 23.5E | 19.2E | 16E | 13E | 10/9E | 7E | 5E | 1W | 4/5W | 15W

Re: Mac OS High Sierra - How to restore telnet client... #11 Dream1975

  • Senior Member
  • 1,634 posts

+14
Neutral

Posted 1 October 2017 - 10:53

There is also a plugin that can reset the root password the plugin is in the feed and called setpasswd in systemlugins


Mutant HD2400, OpenPLi nightly, 2x DVB-C & 2x DVB-S

Mutant HD51, OpenPLi nightly, 1x DVB-C & 1x DVB-S

Wavefrontier T55 (Astra 1,2,3 en HB)

Smartcards Ziggo (Irdeto) and CDS (Seca) on Oscam

 

Re: Mac OS High Sierra - How to restore telnet client... #12 Pr2

  • PLi® Contributor
  • 6,218 posts

+262
Excellent

Posted 1 October 2017 - 11:48

 

You can create a random password by your own in python code. But to show it in the menu so that users can access the box, you need to store it somewhere. That would be not very nice.


A variation on that would work: A menu item to create and show a random root password. The password is shown on screen, and doesn't need to be stored permanently (other than its hash in /etc/shadow). If you forgot it, you can create a new one any time.

 

 

Simply use the MAC address of the box has password rather than a randon one (just have to know if you want it uppercase or lowercase), so people know in advance what the password will be and they don't need to turn on the TV to know it.


NO SUPPORT by PM, it is a forum make your question public so everybody can benefit from the question/answer.
If you think that my answer helps you, you can press the up arrow in bottom right of the answer.

Wanna help with OpenPLi Translation? Please read our Wiki Information for translators

Sat: Hotbird 13.0E, Astra 19.2E, Eutelsat5A 5.0W
VU+ Solo 4K: 2*DVB-S2 + 2*DVB-C/T/T2 (used in DVB-C) & Duo 4K: 2*DVB-S2X + DVB-C (FBC)

AB-Com: PULSe 4K 1*DVB-S2X (+ DVB-C/T/T2)
Edision OS Mio 4K: 1*DVB-S2X + 1*DVB-C/T/T2
 

Re: Mac OS High Sierra - How to restore telnet client... #13 betacentauri

  • PLi® Core member
  • 7,185 posts

+323
Excellent

Posted 1 October 2017 - 12:14

Who knows the MAC of his box? I don't. I know how to get it without trouble. But normal users don't know it.
Xtrend ET-9200, ET-8000, ET-10000, OpenPliPC on Ubuntu 12.04

Re: Mac OS High Sierra - How to restore telnet client... #14 Pr2

  • PLi® Contributor
  • 6,218 posts

+262
Excellent

Posted 1 October 2017 - 12:36

But you can display it on screen in place of the randon generated password, because indeed don't turn on TV was an option for "advanced" end-users.


NO SUPPORT by PM, it is a forum make your question public so everybody can benefit from the question/answer.
If you think that my answer helps you, you can press the up arrow in bottom right of the answer.

Wanna help with OpenPLi Translation? Please read our Wiki Information for translators

Sat: Hotbird 13.0E, Astra 19.2E, Eutelsat5A 5.0W
VU+ Solo 4K: 2*DVB-S2 + 2*DVB-C/T/T2 (used in DVB-C) & Duo 4K: 2*DVB-S2X + DVB-C (FBC)

AB-Com: PULSe 4K 1*DVB-S2X (+ DVB-C/T/T2)
Edision OS Mio 4K: 1*DVB-S2X + 1*DVB-C/T/T2
 

Re: Mac OS High Sierra - How to restore telnet client... #15 SpaceRat

  • Senior Member
  • 1,030 posts

+65
Good

Posted 1 October 2017 - 15:06

The theory that MAC addresses are unique is exactly that ... a theory.

In reality, some vendors use the same MAC for all boxes of a certain model (or simply all boxes) ... that's the reason there is a MAC changing functionality in oe-a.

 

Actually you do not need a telnet client anymore, at least as long as the box works or you prepared ssh to work.

We have a built-in terminal in OpenWebif, I'm not sure if OpenPLi builds/puts it on the feeds though:

 

image.png


1st box: Vu+ Ultimo 4k 4xDVB-S2 FBC / 2xDVB-C / 1.8 TB HDD / OpenATV 6.2
2nd box: Gigablue Quad 4k 2xDVB-S2 FBC / 2xDVB-C / 1.8 TB HDD / OpenATV 6.2
testing boxes: Vu+ Duo² + AX Quadbox HD2400 + 2x Vu+ Solo² + Octagon SF4008
Sats & Pay-TV: Astra 19.2°E + Hotbird 13°E with Redlight / SCT HD / SES Astra HD- / Sky V14 / 4th empire propaganda TV
Card-Server: Raspberry Pi + IPv6-capable oscam
Router: Linksys WRT1900ACS w/ LEDE + Fritz!Box 7390

Re: Mac OS High Sierra - How to restore telnet client... #16 WanWizard

  • PLi® Core member
  • 71,129 posts

+1,839
Excellent

Posted 1 October 2017 - 16:12

We use the standard E2OpenPlugins version of OpenWebIf. If your fork has fed any changes in your fork back upstream, it should be in OpenPLi too.


Currently in use: VU+ Duo 4K (2xFBC S2), VU+ Solo 4K (1xFBC S2), uClan Usytm 4K Ultimate (S2+T2), Octagon SF8008 (S2+T2), Zgemma H9.2H (S2+T2)

Due to my bad health, I will not be very active at times and may be slow to respond. I will not read the forum or PM on a regular basis.

Many answers to your question can be found in our new and improved wiki.

Re: Mac OS High Sierra - How to restore telnet client... #17 SpaceRat

  • Senior Member
  • 1,030 posts

+65
Good

Posted 1 October 2017 - 16:21

I spent ages on making E2OpenPlugins' and oe-a's versions of OpenWebif nearly identical again.
Since then, they are identical, except for transcoding.py which reads the transcoding settings from E2 in a different way and the owibranding.py which is missing in oe-a (Simply because it is nothing else but a poor man's rip-off of the oe-alliance branding).

If I'm not totally wrong you should have terminal inside the main package = always, as long as OWIF is installed.
Problem is: It requires "shellinabox" as RRECOMMEND, which probably does not exist in oe-core-openpli.

Feel free to "steal" the shellinabox recipe: https://github.com/o...ity/shellinabox
1st box: Vu+ Ultimo 4k 4xDVB-S2 FBC / 2xDVB-C / 1.8 TB HDD / OpenATV 6.2
2nd box: Gigablue Quad 4k 2xDVB-S2 FBC / 2xDVB-C / 1.8 TB HDD / OpenATV 6.2
testing boxes: Vu+ Duo² + AX Quadbox HD2400 + 2x Vu+ Solo² + Octagon SF4008
Sats & Pay-TV: Astra 19.2°E + Hotbird 13°E with Redlight / SCT HD / SES Astra HD- / Sky V14 / 4th empire propaganda TV
Card-Server: Raspberry Pi + IPv6-capable oscam
Router: Linksys WRT1900ACS w/ LEDE + Fritz!Box 7390

Re: Mac OS High Sierra - How to restore telnet client... #18 WanWizard

  • PLi® Core member
  • 71,129 posts

+1,839
Excellent

Posted 1 October 2017 - 16:25

We don't steal, credit where credit's due. :)

 

We indeed don't have shellinabox, the problem I have with it, is that it isn't particularly secure, and it hasn't been maintained for quite a few years. Personally, I prefer https://github.com/yudai/gotty, when I have time I'll have a look at this, which which case you're free to borrow... ;)


Currently in use: VU+ Duo 4K (2xFBC S2), VU+ Solo 4K (1xFBC S2), uClan Usytm 4K Ultimate (S2+T2), Octagon SF8008 (S2+T2), Zgemma H9.2H (S2+T2)

Due to my bad health, I will not be very active at times and may be slow to respond. I will not read the forum or PM on a regular basis.

Many answers to your question can be found in our new and improved wiki.

Re: Mac OS High Sierra - How to restore telnet client... #19 SpaceRat

  • Senior Member
  • 1,030 posts

+65
Good

Posted 1 October 2017 - 16:58

We don't steal, credit where credit's due. :)
 
We indeed don't have shellinabox, the problem I have with it, is that it isn't particularly secure, and it hasn't been maintained for quite a few years.

b.) https://github.com/s...box/shellinabox is/was maintained ... at least in January/February, when we added that functionality to OWIF.
a.) In addition, I patched out the ability to bind to anything but localhost :)
Our shellinaboxd can only bind to ::1 and thus only accepts connections from the same machine, that is between OWIF and shellinabox.
... similar to our busybox-telnetd refusing any external connections (= not from the same network or private address space).

Users are free to shoot their own feet with their rifles, but if I can keep them from directing their rifles towards me (I'm now on that provider whose telephony/VoIP was taken down by Mirai :) ), I do that.
1st box: Vu+ Ultimo 4k 4xDVB-S2 FBC / 2xDVB-C / 1.8 TB HDD / OpenATV 6.2
2nd box: Gigablue Quad 4k 2xDVB-S2 FBC / 2xDVB-C / 1.8 TB HDD / OpenATV 6.2
testing boxes: Vu+ Duo² + AX Quadbox HD2400 + 2x Vu+ Solo² + Octagon SF4008
Sats & Pay-TV: Astra 19.2°E + Hotbird 13°E with Redlight / SCT HD / SES Astra HD- / Sky V14 / 4th empire propaganda TV
Card-Server: Raspberry Pi + IPv6-capable oscam
Router: Linksys WRT1900ACS w/ LEDE + Fritz!Box 7390

Re: Mac OS High Sierra - How to restore telnet client... #20 Rick Hunter

  • PLi® Core member
  • 9,066 posts

+56
Good

Posted 1 October 2017 - 18:06

The theory that MAC addresses are unique is exactly that ... a theory.

In reality, some vendors use the same MAC for all boxes of a certain model (or simply all boxes) ... that's the reason there is a MAC changing functionality in oe-a.

 

Actually you do not need a telnet client anymore, at least as long as the box works or you prepared ssh to work.

We have a built-in terminal in OpenWebif, I'm not sure if OpenPLi builds/puts it on the feeds though:

 

The terminal option in the OpenWebIf isn't available at our images. 


Plinux member We have a.. (ehmm.. morgage) house.
Back to [EN] Enduser support

2 user(s) are reading this topic

0 members, 2 guests, 0 anonymous users

  1. Forums
  2. PLi® Support
  3. [EN] Enduser support