CFE collection Project - FTP Site - Useful Info ** Change **

Post new topic   Reply to topic    DD-WRT Forum Index -> Broadcom SoC based Hardware
Goto page 1, 2  Next
Author Message
barryware
DD-WRT Guru


Joined: 26 Jan 2008
Posts: 13049
Location: Behind The Reset Button

PostPosted: Sun Feb 12, 2012 20:38    Post subject: CFE collection Project - FTP Site - Useful Info ** Change ** Reply with quote
03/01/2013 - The files will now be hosted on Basmaf's server.

http://www.dd-wrt.com/phpBB2/viewtopic.php?p=742527#742527
----------------------------------------------------------------------------

I started an FTP server quite a while ago hosting CFE's.. Since, there has been a few other files added.

I thought it would be a convenience for a user to go to my ftp site instead of plowing through threads that are 20+ pages to find a cfe.

Hosted are cfe's, OEM firmware, Some older dd-wrt firmware that was removed (pre 2011), flash chip data sheets, broadcom cfe programming instructions etc..

Login info is as follows:

url=ftp://ftp.barryware.net

user name = dd-wrt
password = router

EDIT: Login Change (06/16/2012): http://www.dd-wrt.com/phpBB2/viewtopic.php?t=151032&start=19

The reason for this post:

I get a few PM's in which a user bitches about being banned from the server (IP address).. Time to clear up the rules..

1). If your ftp client tries to log in with an "anonymous" user ID, you have 10 tries to get it right.. After that, the server thinks it is a hammer and automatically bans your ip. Don't let your ftp client attempt to login as "anonymous".

2). This is important.. Any attempt to access the rest of the my ftp site that is accessible via user name and password is futile. The old tricks of /../ (dot dot), as well as others (upload a php file, try to delete needed ftp config files, etc.) I see and laugh about, will not work. dd-wrt is only a small part of what I have running. Any attempt to "hack" the site.. not only makes me laugh, but does result in an IP ban. This all happens automatically with no intervention by me. I realize that most users have dynamic IP's.. does not matter.. Your new IP will also be banned (automatically), assuming you again try to access parts which are not allowed or "hack" the site.

The ftp site is running on a real computer with all kinds of protection.. It is not running off the router so the old linux hacks.. just will not work. You guys can keep trying though.. Smile

The schedule:

The rig running the ftp site restarts every morning @ 4:00am CST (-6 UTC). Every Sunday morning, the NAS drives get imaged (actual time varies.. Typically, the image starts between 8:00am and 10:00am and takes about an hour). During this time, the site may not be available.

Cheers!

EDIT: THE OLD CFE COLLECTION PROJECT WITH UPLOADS FOR DIFFERENT ROUTER CFE's CAN BE FOUND HERE:
http://www.dd-wrt.com/phpBB2/viewtopic.php?t=25971
You can still download CFE's that are available in that thread, but it is long and takes a lot of wading to find your CFE. The server that Barryware hosts is much more organized and contains all the CFE's that are in the thread.

_________________
[Moderator Deleted] Shocked


Last edited by barryware on Fri Mar 01, 2013 19:51; edited 4 times in total
Sponsor
James2k
DD-WRT Guru


Joined: 23 Oct 2011
Posts: 549

PostPosted: Sun Feb 12, 2012 20:41    Post subject: Reply with quote
Ah, the joys of having a server forwarded to the outside world, as well as going through server logs of futile hacking attempts. Provides hours of entertainment!
_________________
James

Main router:

Netgear R7000 overclocked to 1.2GHz - DD-WRT v3.0-r35965M kongac

IPv6 6in4 (HE.net), OpenVPN (with PBR and split tunnelling), Entware, dnsmasq with ipset

Easy ipset support for the R7000

VPN speed: Download: 77.96 Mbps Upload: 5.00 Mbps (AES-128-CBC HMAC-SHA1)

Yes you can get 50 Mbps+ with OpenVPN on a R7000 if you configure it properly!

Previous routers:

ASUS RT-N66U - The Dark Knight
WNR2000v3 - Bought on the cheap for someone else, neutered crap
WNR3500Lv1 - First venture into the DD-WRT world
barryware
DD-WRT Guru


Joined: 26 Jan 2008
Posts: 13049
Location: Behind The Reset Button

PostPosted: Sun Feb 12, 2012 21:10    Post subject: Reply with quote
James2k wrote:
Provides hours of entertainment!

Razz

_________________
[Moderator Deleted] Shocked
slobodan
DD-WRT Guru


Joined: 03 Nov 2011
Posts: 1555
Location: Zwolle

PostPosted: Sun Feb 12, 2012 21:18    Post subject: Reply with quote
Well, since people use dynamic IPs you should consider blocking them for a month and then allowing them again. Otherwise, innocent people will be blocked. I thought that real crackers only attack servers through tor.
_________________
2 times APU2 Opnsense 21.1 with Sensei

2 times RT-AC56U running DD-WRT 45493 (one as Gateway, the other as AP, both bridged with LAN cable)

3 times Asus RT-N16 shelved

E4200 V1 running freshtomato 2020.8 (bridged with LAN cable)

3 times Linksys WRT610N V2 converted to E3000 and 1 original E3000 running freshtomato 2020.8 (bridged with LAN cable)


barryware
DD-WRT Guru


Joined: 26 Jan 2008
Posts: 13049
Location: Behind The Reset Button

PostPosted: Wed Feb 15, 2012 15:13    Post subject: Reply with quote
One more thing I see all the time...

If you have visited the site before, depending on what you are using for an ftp client, you should clear your cache..

For instance, there may have been a file someone uploaded to the "new uploads" folder. Once in a while, I check what has been uploaded and move it to the right place. So.. the file no longer exists in the "new uploads" folder.

Many times a user will try to download the file that no longer exists and they get an "access denied", "file not found" or some other type of error depending on the client. Typically this happens if you use your browser as the client and the folder is cached.

Frequent users use a freeware program called "FTP Commander". It does not login as anonymous, if the download blows out it will pick up where it left off. It allows complete folders to be downloaded instead of file by file, and it refreshes so if a file was moved or deleted, it will not show as existing in the folder.

_________________
[Moderator Deleted] Shocked
barryware
DD-WRT Guru


Joined: 26 Jan 2008
Posts: 13049
Location: Behind The Reset Button

PostPosted: Sat Feb 18, 2012 14:46    Post subject: Reply with quote
This is what I am talking about in regards to clearing your clients cache.. the file the user is looking for has not been in the "new uploads" folder for weeks & weeks.

2012-02-18 05:25:07 - (not logged in) (173.88.xxx.xxx) > USER dd-wrt
2012-02-18 05:25:07 - (not logged in) (173.88.xxx.xxx) < 331 User name received, need password.
2012-02-18 05:25:07 - (not logged in) (173.88.xxx.xxx) > PASS *****
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) ! Successfully logged in.
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) < 230 User logged in, proceed.
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) > SYST
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) < 215 UNIX Type: L8
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) > PWD
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) < 257 "/" is working directory.
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) > TYPE I
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) < 200 Type set to I.
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) > PASV
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) < 227 Entering Passive Mode (192,168,254,161,8,0).
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) > SIZE /New_Uploads/Netgear_WNR2000v2_cfe.bin
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) < 550 Could not get file size - File not found.
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) > MDTM /New_Uploads/Netgear_WNR2000v2_cfe.bin
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) < 550 Access denied
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) > RETR /New_Uploads/Netgear_WNR2000v2_cfe.bin
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) < 550 Access denied
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) > PASV
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) < 227 Entering Passive Mode (192,168,254,161,8,1).
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) > CWD /New_Uploads/Netgear_WNR2000v2_cfe.bin
2012-02-18 05:25:07 - dd-wrt (173.88.xxx.xxx) < 550 Access denied
2012-02-18 05:25:09 - dd-wrt (173.88.xxx.xxx) ! Disconnected.

_________________
[Moderator Deleted] Shocked
BobAT286
DD-WRT Novice


Joined: 08 Feb 2012
Posts: 13
Location: North coast - Ohio, USA

PostPosted: Sat Feb 18, 2012 16:20    Post subject: Posting/Uploading CFE files Reply with quote
Glad to see you still working on this; why, you're a regular 'Pioneer'!!

Some confusion on my part about this project (if there is currently an FAQ, I have yet to find it...)

I attempted to email a .cfe to the address shown in Eko's "sticky" to this address: "cfe dot backup at yahoo dot co dot uk" from this thread:
http://www.dd-wrt.com/phpBB2/viewtopic.php?t=25971
Only to have it "bounce" - aol says user does not have a valid email account at 'yahoo.co.uk' (i do see a note referencing YOUR ftp on page 9 - possibly that should go on page ONE and retire the big bold red lettered yahoo.uk address that doesn't work?
BUT...
before I upload/email/post as a reply to this thread (or the original thread) some junk you can't use/already have...
...Some questions (oh, jeeze; back to the missing/hard(impossible?) to find FAQ...
Does the .cfe file change from dd-wrt version to version?
... (i.e. - do you want both my .cfe's from svn 13046 AND 14929 for a given router? Just one from any given router?)
... Is the .cfe from a wrt54gs v 1.0 and v7.0 the same? (I'm guessing not)
... I'm interested in using a compressed .cfe to load micro-plus on a "neutered" router; is it better to use a .cfe from your ftp site, or compress my own?

thanks for all your good works! -bob

(P.S. - I'm voting for retire and/or replace Eko's Sticky with YOURS - )

_________________
WRT54GS v7.0
v24sp2 build 14929
Murrkf
DD-WRT Guru


Joined: 22 Sep 2008
Posts: 12675

PostPosted: Sat Feb 18, 2012 18:12    Post subject: Re: Posting/Uploading CFE files Reply with quote
BobAT286 wrote:
...Some questions (oh, jeeze; back to the missing/hard(impossible?) to find FAQ...
Does the .cfe file change from dd-wrt version to version?
... (i.e. - do you want both my .cfe's from svn 13046 AND 14929 for a given router? Just one from any given router?)
... Is the .cfe from a wrt54gs v 1.0 and v7.0 the same? (I'm guessing not)
... I'm interested in using a compressed .cfe to load micro-plus on a "neutered" router; is it better to use a .cfe from your ftp site, or compress my own?

thanks for all your good works! -bob


1. No, it does not change. Not even a little bit. CFE is stable and protected.
2. Almost ALL CFE's are different for every make, model AND VERSION NUMBER of router. However, except the mac address, they are the same for the same make, model and version number of router, and a cfe from a wrt 54g v8.0 can be used in another wrt54g v8.0 and the router will work. (It could not be used in a wrt54g v8.1 or any other router version though)
3. Compress your own. Your CFE contains your mac address. You would have to hexedit it in if you used one from this site. Also compression is easier than jtag and doesn't require soldering.

Also, you don't need to email a cfe anymore. It can be attached to your post if it is not available and you wish to share it..

_________________
SIG:
I'm trying to teach you to fish, not give you a fish. If you just want a fish, wait for a fisherman who hands them out. I'm more of a fishing instructor.
LOM: "If you show that you have not bothered to read the forum announcements or to follow the advices in them then the level of help available for you will drop substantially, also known as Murrkf's law.."
BobAT286
DD-WRT Novice


Joined: 08 Feb 2012
Posts: 13
Location: North coast - Ohio, USA

PostPosted: Sat Feb 18, 2012 20:08    Post subject: What's that URL again? Reply with quote
Murrkf,

Thanks for the reply. In double-checking to make sure BarryWare had the 256K cfe for my router (I knew he had the compressed one, and, yeah, turns out the big one as well) but...
I went to look for the ftp address... The 1st post above has the login info, but not the url! Laughing

For your cutting and pasting convenience:
url=ftp://ftp.barryware.net
if someone would like to add it to the post at the top of the thread.

best regards -bob

Murrkf edit: Thanks for pointing that out. Fixed.

_________________
WRT54GS v7.0
v24sp2 build 14929
evharten
DD-WRT Novice


Joined: 23 Feb 2012
Posts: 9
Location: Capelle aan den IJssel, The Netherlands

PostPosted: Thu Feb 23, 2012 9:44    Post subject: Reply with quote
Hey Barryware,

Noticed the ftp site is down, would it be possible to fetch the entire directory somewhere ? then ill place it on one of my mirror servers for everyone to use.
As im running my own hosting company, and as a big fan of the dd-wrt community, i would like to do something back, and those mirror servers have bandwidth enough spare.
barryware
DD-WRT Guru


Joined: 26 Jan 2008
Posts: 13049
Location: Behind The Reset Button

PostPosted: Thu Feb 23, 2012 13:20    Post subject: Reply with quote
evharten wrote:
Hey Barryware,

Noticed the ftp site is down,


Been without phones and internet since 1:00am cst (thursday). Called my isp which is a feat with no phones. They say it was planned maintenance / upgrade of the fiber system but something went wrong.

Edit: @ 8:50am, internet is back & ftp is up.

_________________
[Moderator Deleted] Shocked
evharten
DD-WRT Novice


Joined: 23 Feb 2012
Posts: 9
Location: Capelle aan den IJssel, The Netherlands

PostPosted: Thu Feb 23, 2012 15:00    Post subject: Reply with quote
oh darn, that sucks! luckely your internet is back tho!
evharten
DD-WRT Novice


Joined: 23 Feb 2012
Posts: 9
Location: Capelle aan den IJssel, The Netherlands

PostPosted: Thu Feb 23, 2012 15:49    Post subject: Reply with quote
Ok mirrored all files, ill put up the mirror online tomorrow, if you dont want certain folders from within the FTP public please let me know! then i'll exclude those.
evharten
DD-WRT Novice


Joined: 23 Feb 2012
Posts: 9
Location: Capelle aan den IJssel, The Netherlands

PostPosted: Fri Feb 24, 2012 6:43    Post subject: Reply with quote
http://mirror.debrick.nl/

Mirror is up, and available.

_________________
Professional Debricking in NL (no cure, no pay), http://www.debrick.nl
CFE Mirror: http://mirror.dd-wrt.nl/
Seth7
DD-WRT Guru


Joined: 16 Aug 2006
Posts: 670
Location: DN17IQ

PostPosted: Fri May 11, 2012 20:58    Post subject: Reply with quote
My ftp client wants to know what port?
_________________
WRT54G,GS v1.1, V2, V3 V4, V5
WR850G V2, V3
Fonera 2100
Goto page 1, 2  Next Display posts from previous:    Page 1 of 2
Post new topic   Reply to topic    DD-WRT Forum Index -> Broadcom SoC based Hardware All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum