Undocumented app in Thinstation
In the commentary to the previous publication, it was noted that there is a lack of intrigue, scandals and investigations, today I have them ...
Literally in the morning, I got a request to help in setting up a web-kiosk for package firefox_lowmem , in the process I started searching for the firefox package settings file - prefs.js , and I ’ve got a wrong folder, i.e. I looked in the packages folder and came across this file in the openkiosk package.
As it turned out, since March 2014 this package has been present in Thinstation, but nothing has been written about it anywhere, it has become interesting ...
First of all I read the readme, follow the link and see:
')
But we are not used to retreat ... I decided to see what it is and how it is ...
The same readme describes the installation process and settings options.
We write to build.conf :
In thinstation.conf.xxx we write:
The most delicious, in my opinion, is the list of allowed resources , which can be placed on a web server and edited as needed, an example of filling in etc / openkiosk / profile_template / whitelist.txt
Collected-launched, even smartly works this way, it's understandable - Firefox 19.0.2, that's just sad — the password and the list don't work ...
Nobody uses the application, there is no forum wiki, let's understand it myself, the jambs were found quickly:
I collect and upload and everything works, ambulance is rendered, profit ...
Literally in the morning, I got a request to help in setting up a web-kiosk for package firefox_lowmem , in the process I started searching for the firefox package settings file - prefs.js , and I ’ve got a wrong folder, i.e. I looked in the packages folder and came across this file in the openkiosk package.
As it turned out, since March 2014 this package has been present in Thinstation, but nothing has been written about it anywhere, it has become interesting ...
First of all I read the readme, follow the link and see:
The global scale, of course, smiled. Neither the forum nor the wiki, and the FAQ is ridiculous, no, the latest release for over a year.
Open Kiosk is a cross-platform Mozilla Firefox-based kiosk web browser that can be easily installed and used to protect your computer for use as a public terminal. This is a complete solution for any kiosk installation. This software is released under MPL "as is" without warranty or support.
Open Kiosk is currently deployed worldwide in schools, universities, libraries, hospitals, airports, hotels, governments and companies.
')
But we are not used to retreat ... I decided to see what it is and how it is ...
The same readme describes the installation process and settings options.
We write to build.conf :
package openkiosk param openkioskurl https://www.mozdevgroup.com/dropbox/okcd/2.5/openkiosk-2.5.3-2014-03-12.tar.bz2 In thinstation.conf.xxx we write:
SESSION_0_TYPE=openkiosk SESSION_0_AUTOSTART=On SESSION_0_OPENKIOSK_HOMEPAGE=http://it-advisor.ru Well, now the most interesting: SESSION_0_OPENKIOSK_ADMIN_PASS="c7bd4d096ec866bd58aca387cefe8d35" # Shift+F1 SESSION_0_OPENKIOSK_TOOLBAR_ON="true" # , , " " SESSION_0_OPENKIOSK_TOOLBAR_BUTTONS="unified-back-forward-button,reload-button,stop-button,home-button,urlbar-container,print-button,zoom-control,reset-container,navigator-throbber" # - , : -, .. SESSION_0_OPENKIOSK_RESET_TIMER="5" # , SESSION_0_OPENKIOSK_WHITELIST_URL="http://it-advisor.ru/whitelist.txt" # The admin password must be written as a hash, after processing your password through: echo '<?php echo md5(base64_encode("newpass")); ?>' | php In the example above, the password is 1q2w3e4r .The most delicious, in my opinion, is the list of allowed resources , which can be placed on a web server and edited as needed, an example of filling in etc / openkiosk / profile_template / whitelist.txt
Collected-launched, even smartly works this way, it's understandable - Firefox 19.0.2, that's just sad — the password and the list don't work ...
Nobody uses the application, there is no forum wiki, let's understand it myself, the jambs were found quickly:
- in the initialization file of the etc / init.d / openkiosk.init package in line 50 there is no underscore in the variable $ SESSION _ '$ x'_OPENKIOSK_ADMINPASS changed to $ SESSION _' $ x'_OPENKIOSK_ADMIN_PASS
- in the same 80 line remove the option -N, in Thinstation wget does not understand it.
I collect and upload and everything works, ambulance is rendered, profit ...
Source: https://habr.com/ru/post/269533/
All Articles