Difference between revisions of "OpenSSH Install"

From WebOS Internals
Jump to navigation Jump to search
Line 8: Line 8:
killall sshd
killall sshd
==Mount the file system as readwrite:==
mount -o remount,rw /

Revision as of 11:13, 25 September 2010

Install OpenSSH:

ipkg-opt install openssh

Note that the default configuration of OpenSSH does not enable SFTP. Since SCP just uses basic SSH, that works.

Kill the OpenSSH daemon automatically started by ipkg:

killall sshd

Mount the file system as readwrite:

mount -o remount,rw /

Install an upstart event for the OpenSSH daemon.

cd /etc/event.d/
wget http://gitorious.org/webos-internals/bootstrap/blobs/raw/master/etc/event.d/optware-openssh

[Optional] If you want to connect to the pre over 3G (EVDO, UMTS) as well as over wifi, do this step.

Generally, most seem to think that's a bad idea. Take a look at the script /etc/event.d/optware-openssh. Notice that it automatically modifies the firewalls rules to enable incoming SSH on port 222 over WiFi (interface eth0) connections only. Follow the directions in the script to enable SSH on all interfaces (including your 3G interface), if you wish.

Look at the script starting openssh:

cat /etc/event.d/optware-openssh

Start the OpenSSH daemon for testing:

initctl start optware-openssh

Obtain the IP address of your Pre. Look for the "inet addr://Your.IP.Address//"

to get the ip address for your WIFI connection:

ifconfig eth0

to get the ip address for your evdo connection:

ifconfig ppp0 

Alternatively, you can install the Preware application "What is my IP?" for a convenient GUI to lookup IPs on all your interfaces.

Test your SSH installation.

DO NOT CLOSE YOUR TELNET SESSION YET. DO THIS IN A NEW WINDOW From a remote system SSH to your Pre using //your// username and port 222. For example, from a Linux desktop you would run.


From a Windows desktop we recommend using PuTTY.

Logout when done with "exit".

Remount the file system as readonly:

mount -o remount,ro /

Reboot your device


Confirm that you can still access it after it boots using SSH.

Once you are able to ssh in, disable dev mode.

Dev Mode enabled opens the firewall up -- not a safe position to be in. Unless you mess up and NEED to telnet or novacom in again, keep dev mode off.

Return to the Next Steps page.


  • Upstart Dropbear script and general cleanup from Dax Kelson
  • Sudo recipe from greg963 at Precentral.net
  • Original SSH process is based on dreadchicken's work
  • Sargun for the original Telnet process
  • zinge for validation of the process

See also