ScriptsWiana

back to http://scratchpad.wikia.com/wiki/Sasecurity

A while ago I posted an e-mail pointing to a few shell scripts that could help people take off with their own configuration server stuff.

Here it is again:

http://www.melissen.net/cgi-bin/foe carries the most recent version of wiana.settings web script, a script that allows you to quickly edit wiana.settings and reboot your node, without having to wait for wiana or having to log in with ssh and manually edit /etc/wiana.settings

The scripts on the web page are for testing. Carefully study the write script - it does not write /etc/wiana.settings directly. It has a commented out line for /tmp/wiana.settings. If you remove the #, a /tmp/wiana.settings will be created which can be cp'ed to /etc/wiana.settings during boot, before /etc/wiana.settings is being parsed by the locust scripts.

These scripts are quick hacks, useful for testing, but don't run them in production as wiana compatibility has not yet been tested fully.

Advantages:

- bash only, no need for perl, java or anything else - changes are immediate - wiana compatibility - easy to change

Disadvantages

- bash cgi scripts may be insecure

To do:

- more testing - password compatibility - reporting tools

Jérémy lacroix wrote:

>AFAIK Qorvus comp. did something local like wiana to manage meshAP but >it is not public and it remains a company development and knowledge >(which seems to be normal somewhere).... > >Locust has a professional program in which they sell licence to use a >"solution for management".... I think they're selling a wiana derivated >server you can install in a regional or local way. > >However, I would be interested to participate to you project like lot of >people in this mailing list. > >My 2 Eurocents > >Le ven 09/07/2004 à 15:36, Willy Wonka a écrit : > > >>I know I am not the only one thinking this, but I am going to say it. I see >>Wiana as a weak point in security. A number of people have posted about >>wiana being down thus preventing their mesh from working properly. I see it >>as a security problem from the standpoint that if someone were to hack into >>their database, all systems using it would be compromised. Someone could >>take the information and alter your configuration, rendering your system >>inoperable. >> >>I am in the process of stripping wiana out of the free meshap base. If >>someone else has already done this, please let me know so I don't re-invent >>the wheel. I think wiana should be an option, not required. Doing >>something like that would be the equivilent of a diaup ISP having to control >>their modem pool from some webpage out on the net. If that site went down, >>no one could dial in. >> >>Tom >>