1 <?xml version=
"1.0" encoding=
"utf-8"?>
2 <rss version='
2.0' xmlns:lj='http://www.livejournal.org/rss/lj/
1.0/'
>
4 <title>Petter Reinholdtsen - Entries tagged freedombox
</title>
5 <description>Entries tagged freedombox
</description>
6 <link>http://people.skolelinux.org/pere/blog/
</link>
10 <title>Freedombox on Dreamplug, Raspberry Pi and virtual x86 machine
</title>
11 <link>http://people.skolelinux.org/pere/blog/Freedombox_on_Dreamplug__Raspberry_Pi_and_virtual_x86_machine.html
</link>
12 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Freedombox_on_Dreamplug__Raspberry_Pi_and_virtual_x86_machine.html
</guid>
13 <pubDate>Fri,
14 Mar
2014 11:
00:
00 +
0100</pubDate>
14 <description><p
>The
<a href=
"https://wiki.debian.org/FreedomBox
">Freedombox
15 project
</a
> is working on providing the software and hardware for
16 making it easy for non-technical people to host their data and
17 communication at home, and being able to communicate with their
18 friends and family encrypted and away from prying eyes. It has been
19 going on for a while, and is slowly progressing towards a new test
20 release (
0.2).
</p
>
22 <p
>And what day could be better than the Pi day to announce that the
23 new version will provide
"hard drive
" / SD card / USB stick images for
24 Dreamplug, Raspberry Pi and VirtualBox (or any other virtualization
25 system), and can also be installed using a Debian installer preseed
26 file. The Debian based Freedombox is now based on Debian Jessie,
27 where most of the needed packages used are already present. Only one,
28 the freedombox-setup package, is missing. To try to build your own
29 boot image to test the current status, fetch the freedom-maker scripts
31 <a href=
"http://packages.qa.debian.org/vmdebootstrap
">vmdebootstrap
</a
>
32 with a user with sudo access to become root:
35 git clone http://anonscm.debian.org/git/freedombox/freedom-maker.git \
37 sudo apt-get install git vmdebootstrap mercurial python-docutils \
38 mktorrent extlinux virtualbox qemu-user-static binfmt-support \
40 make -C freedom-maker dreamplug-image raspberry-image virtualbox-image
43 <p
>Root access is needed to run debootstrap and mount loopback
44 devices. See the README for more details on the build. If you do not
45 want all three images, trim the make line. But note that thanks to
<a
46 href=
"https://bugs.debian.org/
741407">a race condition in
47 vmdebootstrap
</a
>, the build might fail without the patch to the
48 kpartx call.
</p
>
50 <p
>If you instead want to install using a Debian CD and the preseed
51 method, boot a Debian Wheezy ISO and use this boot argument to load
52 the preseed values:
</p
>
55 url=
<a href=
"http://www.reinholdtsen.name/freedombox/preseed-jessie.dat
">http://www.reinholdtsen.name/freedombox/preseed-jessie.dat
</a
>
58 <p
>But note that due to
<a href=
"https://bugs.debian.org/
740673">a
59 recently introduced bug in apt in Jessie
</a
>, the installer will
60 currently hang while setting up APT sources. Killing the
61 '<tt
>apt-cdrom ident
</tt
>' process when it hang a few times during the
62 installation will get the installation going. This affect all
63 installations in Jessie, and I expect it will be fixed soon.
</p
>
65 Give it a go and let us know how it goes on the mailing list, and help
66 us get the new release published. :) Please join us on
67 <a href=
"irc://irc.debian.org:
6667/%
23freedombox
">IRC (#freedombox on
68 irc.debian.org)
</a
> and
69 <a href=
"http://lists.alioth.debian.org/mailman/listinfo/freedombox-discuss
">the
70 mailing list
</a
> if you want to help make this vision come true.
</p
>
75 <title>Teaching vmdebootstrap to create Raspberry Pi SD card images
</title>
76 <link>http://people.skolelinux.org/pere/blog/Teaching_vmdebootstrap_to_create_Raspberry_Pi_SD_card_images.html
</link>
77 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Teaching_vmdebootstrap_to_create_Raspberry_Pi_SD_card_images.html
</guid>
78 <pubDate>Sun,
27 Oct
2013 17:
00:
00 +
0100</pubDate>
79 <description><p
>The
80 <a href=
"http://packages.qa.debian.org/v/vmdebootstrap.html
">vmdebootstrap
</a
>
81 program is a a very nice system to create virtual machine images. It
82 create a image file, add a partition table, mount it and run
83 debootstrap in the mounted directory to create a Debian system on a
84 stick. Yesterday, I decided to try to teach it how to make images for
85 <a href=
"https://wiki.debian.org/RaspberryPi
">Raspberry Pi
</a
>, as part
86 of a plan to simplify the build system for
87 <a href=
"https://wiki.debian.org/FreedomBox
">the FreedomBox
88 project
</a
>. The FreedomBox project already uses vmdebootstrap for
89 the virtualbox images, but its current build system made multistrap
90 based system for Dreamplug images, and it is lacking support for
91 Raspberry Pi.
</p
>
93 <p
>Armed with the knowledge on how to build
"foreign
" (aka non-native
94 architecture) chroots for Raspberry Pi, I dived into the vmdebootstrap
95 code and adjusted it to be able to build armel images on my amd64
96 Debian laptop. I ended up giving vmdebootstrap five new options,
97 allowing me to replicate the image creation process I use to make
98 <a href=
"http://people.skolelinux.org/pere/blog/A_Raspberry_Pi_based_batman_adv_Mesh_network_node.html
">Debian
99 Jessie based mesh node images for the Raspberry Pi
</a
>. First, the
100 <tt
>--foreign /path/to/binfm_handler
</tt
> option tell vmdebootstrap to
101 call debootstrap with --foreign and to copy the handler into the
102 generated chroot before running the second stage. This allow
103 vmdebootstrap to create armel images on an amd64 host. Next I added
104 two new options
<tt
>--bootsize size
</tt
> and
<tt
>--boottype
105 fstype
</tt
> to teach it to create a separate /boot/ partition with the
106 given file system type, allowing me to create an image with a vfat
107 partition for the /boot/ stuff. I also added a
<tt
>--variant
108 variant
</tt
> option to allow me to create smaller images without the
109 Debian base system packages installed. Finally, I added an option
110 <tt
>--no-extlinux
</tt
> to tell vmdebootstrap to not install extlinux
111 as a boot loader. It is not needed on the Raspberry Pi and probably
112 most other non-x86 architectures. The changes were accepted by the
113 upstream author of vmdebootstrap yesterday and today, and is now
115 <a href=
"http://git.liw.fi/cgi-bin/cgit/cgit.cgi/vmdebootstrap/
">the
116 upstream project page
</a
>.
</p
>
118 <p
>To use it to build a Raspberry Pi image using Debian Jessie, first
119 create a small script (the customize script) to add the non-free
120 binary blob needed to boot the Raspberry Pi and the APT source
125 set -e # Exit on first error
126 rootdir=
"$
1"
127 cd
"$rootdir
"
128 cat
&lt;
&lt;EOF
> etc/apt/sources.list
129 deb http://http.debian.net/debian/ jessie main contrib non-free
131 # Install non-free binary blob needed to boot Raspberry Pi. This
132 # install a kernel somewhere too.
133 wget https://raw.github.com/Hexxeh/rpi-update/master/rpi-update \
134 -O $rootdir/usr/bin/rpi-update
135 chmod a+x $rootdir/usr/bin/rpi-update
136 mkdir -p $rootdir/lib/modules
137 touch $rootdir/boot/start.elf
138 chroot $rootdir rpi-update
139 </pre
></p
>
141 <p
>Next, fetch the latest vmdebootstrap script and call it like this
142 to build the image:
</p
>
145 sudo ./vmdebootstrap \
148 --distribution jessie \
149 --mirror http://http.debian.net/debian \
158 --root-password raspberry \
159 --hostname raspberrypi \
160 --foreign /usr/bin/qemu-arm-static \
161 --customize `pwd`/customize \
165 --package ca-certificates \
168 </pre
></p
>
170 <p
>The list of packages being installed are the ones needed by
171 rpi-update to make the image bootable on the Raspberry Pi, with the
172 exception of netbase, which is needed by debootstrap to find
173 /etc/hosts with the minbase variant. I really wish there was a way to
174 set up an Raspberry Pi using only packages in the Debian archive, but
175 that is not possible as far as I know, because it boots from the GPU
176 using a non-free binary blob.
</p
>
178 <p
>The build host need debootstrap, kpartx and qemu-user-static and
179 probably a few others installed. I have not checked the complete
180 build dependency list.
</p
>
182 <p
>The resulting image will not use the hardware floating point unit
183 on the Raspberry PI, because the armel architecture in Debian is not
184 optimized for that use. So the images created will be a bit slower
185 than
<a href=
"http://www.raspbian.org/
">Raspbian
</a
> based images.
</p
>
190 <title>A Raspberry Pi based batman-adv Mesh network node
</title>
191 <link>http://people.skolelinux.org/pere/blog/A_Raspberry_Pi_based_batman_adv_Mesh_network_node.html
</link>
192 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/A_Raspberry_Pi_based_batman_adv_Mesh_network_node.html
</guid>
193 <pubDate>Mon,
21 Oct
2013 11:
40:
00 +
0200</pubDate>
194 <description><p
>The last few days I have been experimenting with
195 <a href=
"http://www.open-mesh.org/projects/batman-adv/wiki
">the
196 batman-adv mesh technology
</a
>. I want to gain some experience to see
197 if it will fit
<a href=
"https://wiki.debian.org/FreedomBox
">the
198 Freedombox project
</a
>, and together with my neighbors try to build a
199 mesh network around the park where I live. Batman-adv is a layer
2
200 mesh system (
"ethernet
" in other words), where the mesh network appear
201 as if all the mesh clients are connected to the same switch.
</p
>
203 <p
>My hardware of choice was the Linksys WRT54GL routers I had lying
204 around, but I
've been unable to get them working with batman-adv. So
205 instead, I started playing with a
206 <a href=
"http://www.raspberrypi.org/
">Raspberry Pi
</a
>, and tried to
207 get it working as a mesh node. My idea is to use it to create a mesh
208 node which function as a switch port, where everything connected to
209 the Raspberry Pi ethernet plug is connected (bridged) to the mesh
210 network. This allow me to hook a wifi base station like the Linksys
211 WRT54GL to the mesh by plugging it into a Raspberry Pi, and allow
212 non-mesh clients to hook up to the mesh. This in turn is useful for
213 Android phones using
<a href=
"http://servalproject.org/
">the Serval
214 Project
</a
> voip client, allowing every one around the playground to
215 phone and message each other for free. The reason is that Android
216 phones do not see ad-hoc wifi networks (they are filtered away from
217 the GUI view), and can not join the mesh without being rooted. But if
218 they are connected using a normal wifi base station, they can talk to
219 every client on the local network.
</p
>
221 <p
>To get this working, I
've created a debian package
222 <a href=
"https://github.com/petterreinholdtsen/meshfx-node
">meshfx-node
</a
>
224 <a href=
"https://github.com/petterreinholdtsen/meshfx-node/blob/master/build-rpi-mesh-node
">build-rpi-mesh-node
</a
>
225 to create the Raspberry Pi boot image. I
'm using Debian Jessie (and
226 not Raspbian), to get more control over the packages available.
227 Unfortunately a huge binary blob need to be inserted into the boot
228 image to get it booting, but I
'll ignore that for now. Also, as
229 Debian lack support for the CPU features available in the Raspberry
230 Pi, the system do not use the hardware floating point unit. I hope
231 the routing performance isn
't affected by the lack of hardware FPU
234 <p
>To create an image, run the following with a sudo enabled user
235 after inserting the target SD card into the build machine:
</p
>
238 % wget -O build-rpi-mesh-node \
239 https://raw.github.com/petterreinholdtsen/meshfx-node/master/build-rpi-mesh-node
240 % sudo bash -x ./build-rpi-mesh-node
> build.log
2>&1
241 % dd if=/root/rpi/rpi_basic_jessie_$(date +%Y%m%d).img of=/dev/mmcblk0 bs=
1M
243 </pre
></p
>
245 <p
>Booting with the resulting SD card on a Raspberry PI with a USB
246 wifi card inserted should give you a mesh node. At least it does for
247 me with a the wifi card I am using. The default mesh settings are the
248 ones used by the Oslo mesh project at Hackeriet, as I mentioned in
249 <a href=
"http://people.skolelinux.org/pere/blog/Oslo_community_mesh_network___with_NUUG_and_Hackeriet_at_Hausmania.html
">an
250 earlier blog post about this mesh testing
</a
>.
</p
>
252 <p
>The mesh node was not horribly expensive either. I bought
253 everything over the counter in shops nearby. If I had ordered online
254 from the lowest bidder, the price should be significantly lower:
</p
>
256 <p
><table
>
258 <tr
><th
>Supplier
</th
><th
>Model
</th
><th
>NOK
</th
></tr
>
259 <tr
><td
>Teknikkmagasinet
</td
><td
>Raspberry Pi model B
</td
><td
>349.90</td
></tr
>
260 <tr
><td
>Teknikkmagasinet
</td
><td
>Raspberry Pi type B case
</td
><td
>99.90</td
></tr
>
261 <tr
><td
>Lefdal
</td
><td
>Jensen Air:Link
25150</td
><td
>295.-
</td
></tr
>
262 <tr
><td
>Clas Ohlson
</td
><td
>Kingston
16 GB SD card
</td
><td
>199.-
</td
></tr
>
263 <tr
><td
>Total cost
</td
><td
></td
><td
>943.80</td
></tr
>
265 </table
></p
>
267 <p
>Now my mesh network at home consist of one laptop in the basement
268 connected to my production network, one Raspberry Pi node on the
1th
269 floor that can be seen by my neighbor across the park, and one
270 play-node I use to develop the image building script. And some times
271 I hook up my work horse laptop to the mesh to test it. I look forward
272 to figuring out what kind of latency the batman-adv setup will give,
273 and how much packet loss we will experience around the park. :)
</p
>
278 <title>Oslo community mesh network - with NUUG and Hackeriet at Hausmania
</title>
279 <link>http://people.skolelinux.org/pere/blog/Oslo_community_mesh_network___with_NUUG_and_Hackeriet_at_Hausmania.html
</link>
280 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Oslo_community_mesh_network___with_NUUG_and_Hackeriet_at_Hausmania.html
</guid>
281 <pubDate>Fri,
11 Oct
2013 14:
10:
00 +
0200</pubDate>
282 <description><p
>Wireless mesh networks are self organising and self healing
283 networks that can be used to connect computers across small and large
284 areas, depending on the radio technology used. Normal wifi equipment
285 can be used to create home made radio networks, and there are several
286 successful examples like
287 <a href=
"http://www.freifunk.net/
">Freifunk
</a
> and
288 <a href=
"http://www.awmn.net/
">Athens Wireless Metropolitan Network
</a
>
290 <a href=
"http://en.wikipedia.org/wiki/List_of_wireless_community_networks_by_region#Greece
">wikipedia
291 for a large list
</a
>) around the globe. To give you an idea how it
292 work, check out the nice overview of the Kiel Freifunk community which
293 can be seen from their
294 <a href=
"http://freifunk.in-kiel.de/ffmap/nodes.html
">dynamically
295 updated node graph and map
</a
>, where one can see how the mesh nodes
296 automatically handle routing and recover from nodes disappearing.
297 There is also a small community mesh network group in Oslo, Norway,
298 and that is the main topic of this blog post.
</p
>
300 <p
>I
've wanted to check out mesh networks for a while now, and hoped
301 to do it as part of my involvement with the
<a
302 href=
"http://www.nuug.no/
">NUUG member organisation
</a
> community, and
303 my recent involvement in
304 <a href=
"https://wiki.debian.org/FreedomBox
">the Freedombox project
</a
>
305 finally lead me to give mesh networks some priority, as I suspect a
306 Freedombox should use mesh networks to connect neighbours and family
307 when possible, given that most communication between people are
308 between those nearby (as shown for example by research on Facebook
309 communication patterns). It also allow people to communicate without
310 any central hub to tap into for those that want to listen in on the
311 private communication of citizens, which have become more and more
312 important over the years.
</p
>
314 <p
>So far I have only been able to find one group of people in Oslo
315 working on community mesh networks, over at the hack space
316 <a href=
"http://hackeriet.no/
">Hackeriet
</a
> at Husmania. They seem to
317 have started with some Freifunk based effort using OLSR, called
318 <a href=
"http://oslo.freifunk.net/index.php?title=Main_Page
">the Oslo
319 Freifunk project
</a
>, but that effort is now dead and the people
320 behind it have moved on to a batman-adv based system called
321 <a href=
"http://meshfx.org/trac
">meshfx
</a
>. Unfortunately the wiki
322 site for the Oslo Freifunk project is no longer possible to update to
323 reflect this fact, so the old project page can
't be updated to point to
324 the new project. A while back, the people at Hackeriet invited people
325 from the Freifunk community to Oslo to talk about mesh networks. I
326 came across this video where Hans Jørgen Lysglimt interview the
327 speakers about this talk (from
328 <a href=
"https://www.youtube.com/watch?v=N2Kd7CLkhSY
">youtube
</a
>):
</p
>
330 <p
><iframe width=
"420" height=
"315" src=
"https://www.youtube.com/embed/N2Kd7CLkhSY
" frameborder=
"0" allowfullscreen
></iframe
></p
>
332 <p
>I mentioned OLSR and batman-adv, which are mesh routing protocols.
333 There are heaps of different protocols, and I am still struggling to
334 figure out which one would be
"best
" for some definitions of best, but
335 given that the community mesh group in Oslo is so small, I believe it
336 is best to hook up with the existing one instead of trying to create a
337 completely different setup, and thus I have decided to focus on
338 batman-adv for now. It sure help me to know that the very cool
339 <a href=
"http://www.servalproject.org/
">Serval project in Australia
</a
>
340 is using batman-adv as their meshing technology when it create a self
341 organizing and self healing telephony system for disaster areas and
342 less industrialized communities. Check out this cool video presenting
344 <a href=
"https://www.youtube.com/watch?v=
30qNfzJCQOA
">youtube
</a
>):
</p
>
346 <p
><iframe width=
"560" height=
"315" src=
"https://www.youtube.com/embed/
30qNfzJCQOA
" frameborder=
"0" allowfullscreen
></iframe
></p
>
348 <p
>According to the wikipedia page on
349 <a href=
"http://en.wikipedia.org/wiki/Wireless_mesh_network
">Wireless
350 mesh network
</a
> there are around
70 competing schemes for routing
351 packets across mesh networks, and OLSR, B.A.T.M.A.N. and
352 B.A.T.M.A.N. advanced are protocols used by several free software
353 based community mesh networks.
</p
>
355 <p
>The batman-adv protocol is a bit special, as it provide layer
2
356 (as in ethernet ) routing, allowing ipv4 and ipv6 to work on the same
357 network. One way to think about it is that it provide a mesh based
358 vlan you can bridge to or handle like any other vlan connected to your
359 computer. The required drivers are already in the Linux kernel at
360 least since Debian Wheezy, and it is fairly easy to set up. A
361 <a href=
"http://www.open-mesh.org/projects/batman-adv/wiki/Quick-start-guide
">good
362 introduction
</a
> is available from the Open Mesh project. These are
363 the key settings needed to join the Oslo meshfx network:
</p
>
365 <p
><table
>
366 <tr
><th
>Setting
</th
><th
>Value
</th
></tr
>
367 <tr
><td
>Protocol / kernel module
</td
><td
>batman-adv
</td
></tr
>
368 <tr
><td
>ESSID
</td
><td
>meshfx@hackeriet
</td
></tr
>
369 <td
>Channel / Frequency
</td
><td
>11 /
2462</td
></tr
>
370 <td
>Cell ID
</td
><td
>02:BA:
00:
00:
00:
01</td
>
371 </table
></p
>
373 <p
>The reason for setting ad-hoc wifi Cell ID is to work around bugs
374 in firmware used in wifi card and wifi drivers. (See a nice post from
376 "<a href=
"http://tiebing.blogspot.no/
2009/
12/ad-hoc-cell-splitting-re-post-original.html
">Information
377 about cell-id splitting, stuck beacons, and failed IBSS merges!
</a
>
378 for details.) When these settings are activated and you have some
379 other mesh node nearby, your computer will be connected to the mesh
380 network and can communicate with any mesh node that is connected to
381 any of the nodes in your network of nodes. :)
</p
>
383 <p
>My initial plan was to reuse my old Linksys WRT54GL as a mesh node,
384 but that seem to be very hard, as I have not been able to locate a
385 firmware supporting batman-adv. If anyone know how to use that old
386 wifi access point with batman-adv these days, please let me know.
</p
>
388 <p
>If you find this project interesting and want to join, please join
389 us on IRC, either channel
390 <a href=
"irc://irc.freenode.net/#oslohackerspace
">#oslohackerspace
</a
>
391 or
<a href=
"irc://irc.freenode.net/#nuug
">#nuug
</a
> on
392 irc.freenode.net.
</p
>
394 <p
>While investigating mesh networks in Oslo, I came across an old
395 research paper from the university of Stavanger and Telenor Research
396 and Innovation called
397 <a href=
"http://folk.uio.no/paalee/publications/netrel-egeland-iswcs-
2008.pdf
">The
398 reliability of wireless backhaul mesh networks
</a
> and elsewhere
399 learned that Telenor have been experimenting with mesh networks at
400 Grünerløkka in Oslo. So mesh networks are also interesting for
401 commercial companies, even though Telenor discovered that it was hard
402 to figure out a good business plan for mesh networking and as far as I
403 know have closed down the experiment. Perhaps Telenor or others would
404 be interested in a cooperation?
</p
>
406 <p
><strong
>Update
2013-
10-
12</strong
>: I was just
407 <a href=
"http://lists.alioth.debian.org/pipermail/freedombox-discuss/
2013-October/
005900.html
">told
408 by the Serval project developers
</a
> that they no longer use
409 batman-adv (but are compatible with it), but their own crypto based
410 mesh system.
</p
>
415 <title>Videos about the Freedombox project - for inspiration and learning
</title>
416 <link>http://people.skolelinux.org/pere/blog/Videos_about_the_Freedombox_project___for_inspiration_and_learning.html
</link>
417 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Videos_about_the_Freedombox_project___for_inspiration_and_learning.html
</guid>
418 <pubDate>Fri,
27 Sep
2013 14:
10:
00 +
0200</pubDate>
419 <description><p
>The
<a href=
"http://www.freedomboxfoundation.org/
">Freedombox
420 project
</a
> have been going on for a while, and have presented the
421 vision, ideas and solution several places. Here is a little
422 collection of videos of talks and presentation of the project.
</p
>
426 <li
><a href=
"http://www.youtube.com/watch?v=ukvUz5taxvA
">FreedomBox -
427 2,
5 minute marketing film
</a
> (Youtube)
</li
>
429 <li
><a href=
"http://www.youtube.com/watch?v=SzW25QTVWsE
">Eben Moglen
430 discusses the Freedombox on CBS news
2011</a
> (Youtube)
</li
>
432 <li
><a href=
"http://www.youtube.com/watch?v=Ae8SZbxfE0g
">Eben Moglen -
433 Freedom in the Cloud - Software Freedom, Privacy and and Security for
434 Web
2.0 and Cloud computing at ISOC-NY Public Meeting
2010</a
>
437 <li
><a href=
"http://www.youtube.com/watch?v=vNaIji_3xBE
">Fosdem
2011
438 Keynote by Eben Moglen presenting the Freedombox
</a
> (Youtube)
</li
>
440 <li
><a href=
"http://www.youtube.com/watch?v=
9bDDUyJSQ9s
">Presentation of
441 the Freedombox by James Vasile at Elevate in Gratz
2011</a
> (Youtube)
</li
>
443 <li
><a href=
"http://www.youtube.com/watch?v=zQTmnk27g9s
"> Freedombox -
444 Discovery, Identity, and Trust by Nick Daly at Freedombox Hackfest New
445 York City in
2012</a
> (Youtube)
</li
>
447 <li
><a href=
"http://www.youtube.com/watch?v=tkbSB4Ba7Ck
">Introduction
448 to the Freedombox at Freedombox Hackfest New York City in
2012</a
>
451 <li
><a href=
"http://www.youtube.com/watch?v=z-P2Jaeg0aQ
">Freedom, Out
452 of the Box! by Bdale Garbee at linux.conf.au Ballarat,
2012</a
> (Youtube)
</li
>
454 <li
><a href=
"https://archive.fosdem.org/
2013/schedule/event/freedombox/
">Freedombox
455 1.0 by Eben Moglen and Bdale Garbee at Fosdem
2013</a
> (FOSDEM)
</li
>
457 <li
><a href=
"http://www.youtube.com/watch?v=e1LpYX2zVYg
">What is the
458 FreedomBox today by Bdale Garbee at Debconf13 in Vaumarcus
459 2013</a
> (Youtube)
</li
>
463 <p
>A larger list is available from
464 <a href=
"https://wiki.debian.org/FreedomBox/TalksAndPresentations
">the
465 Freedombox Wiki
</a
>.
</p
>
467 <p
>On other news, I am happy to report that Freedombox based on Debian
468 Jessie is coming along quite well, and soon both Owncloud and using
469 Tor should be available for testers of the Freedombox solution. :) In
470 a few weeks I hope everything needed to test it is included in Debian.
471 The withsqlite package is already in Debian, and the plinth package is
472 pending in NEW. The third and vital part of that puzzle is the
473 metapackage/setup framework, which is still pending an upload. Join
474 us on
<a href=
"irc://irc.debian.org:
6667/%
23freedombox
">IRC
475 (#freedombox on irc.debian.org)
</a
> and
476 <a href=
"http://lists.alioth.debian.org/mailman/listinfo/freedombox-discuss
">the
477 mailing list
</a
> if you want to help make this vision come true.
</p
>
482 <title>Recipe to test the Freedombox project on amd64 or Raspberry Pi
</title>
483 <link>http://people.skolelinux.org/pere/blog/Recipe_to_test_the_Freedombox_project_on_amd64_or_Raspberry_Pi.html
</link>
484 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Recipe_to_test_the_Freedombox_project_on_amd64_or_Raspberry_Pi.html
</guid>
485 <pubDate>Tue,
10 Sep
2013 14:
20:
00 +
0200</pubDate>
486 <description><p
>I was introduced to the
487 <a href=
"http://www.freedomboxfoundation.org/
">Freedombox project
</a
>
488 in
2010, when Eben Moglen presented his vision about serving the need
489 of non-technical people to keep their personal information private and
490 within the legal protection of their own homes. The idea is to give
491 people back the power over their network and machines, and return
492 Internet back to its intended peer-to-peer architecture. Instead of
493 depending on a central service, the Freedombox will give everyone
494 control over their own basic infrastructure.
</p
>
496 <p
>I
've intended to join the effort since then, but other tasks have
497 taken priority. But this summers nasty news about the misuse of trust
498 and privilege exercised by the
"western
" intelligence gathering
499 communities increased my eagerness to contribute to a point where I
500 actually started working on the project a while back.
</p
>
502 <p
>The
<a href=
"https://alioth.debian.org/projects/freedombox/
">initial
503 Debian initiative
</a
> based on the vision from Eben Moglen, is to
504 create a simple and cheap Debian based appliance that anyone can hook
505 up in their home and get access to secure and private services and
506 communication. The initial deployment platform have been the
507 <a href=
"http://www.globalscaletechnologies.com/t-dreamplugdetails.aspx
">Dreamplug
</a
>,
508 which is a piece of hardware I do not own. So to be able to test what
509 the current Freedombox setup look like, I had to come up with a way to install
510 it on some hardware I do have access to. I have rewritten the
511 <a href=
"https://github.com/NickDaly/freedom-maker
">freedom-maker
</a
>
512 image build framework to use .deb packages instead of only copying
513 setup into the boot images, and thanks to this rewrite I am able to
514 set up any machine supported by Debian Wheezy as a Freedombox, using
515 the previously mentioned deb (and a few support debs for packages
516 missing in Debian).
</p
>
518 <p
>The current Freedombox setup consist of a set of bootstrapping
520 (
<a href=
"https://github.com/petterreinholdtsen/freedombox-setup
">freedombox-setup
</a
>),
521 and a administrative web interface
522 (
<a href=
"https://github.com/NickDaly/Plinth
">plinth
</a
> + exmachina +
523 withsqlite), as well as a privacy enhancing proxy based on
524 <a href=
"http://packages.qa.debian.org/privoxy
">privoxy
</a
>
525 (freedombox-privoxy). There is also a web/javascript based XMPP
526 client (
<a href=
"http://packages.qa.debian.org/jwchat
">jwchat
</a
>)
527 trying (unsuccessfully so far) to talk to the XMPP server
528 (
<a href=
"http://packages.qa.debian.org/ejabberd
">ejabberd
</a
>). The
529 web interface is pluggable, and the goal is to use it to enable OpenID
530 services, mesh network connectivity, use of TOR, etc, etc. Not much of
531 this is really working yet, see
532 <a href=
"https://github.com/NickDaly/freedombox-todos/blob/master/TODO
">the
533 project TODO
</a
> for links to GIT repositories. Most of the code is
534 on github at the moment. The HTTP proxy is operational out of the
535 box, and the admin web interface can be used to add/remove plinth
536 users. I
've not been able to do anything else with it so far, but
537 know there are several branches spread around github and other places
538 with lots of half baked features.
</p
>
540 <p
>Anyway, if you want to have a look at the current state, the
541 following recipes should work to give you a test machine to poke
544 <p
><strong
>Debian Wheezy amd64
</strong
></p
>
548 <li
>Fetch normal Debian Wheezy installation ISO.
</li
>
549 <li
>Boot from it, either as CD or USB stick.
</li
>
550 <li
><p
>Press [tab] on the boot prompt and add this as a boot argument
551 to the Debian installer:
<p
>
552 <pre
>url=
<a href=
"http://www.reinholdtsen.name/freedombox/preseed-wheezy.dat
">http://www.reinholdtsen.name/freedombox/preseed-wheezy.dat
</a
></pre
></li
>
554 <li
>Answer the few language/region/password questions and pick disk to
555 install on.
</li
>
557 <li
>When the installation is finished and the machine have rebooted a
558 few times, your Freedombox is ready for testing.
</li
>
562 <p
><strong
>Raspberry Pi Raspbian
</strong
></p
>
566 <li
>Fetch a Raspbian SD card image, create SD card.
</li
>
567 <li
>Boot from SD card, extend file system to fill the card completely.
</li
>
568 <li
><p
>Log in and add this to /etc/sources.list:
</p
>
570 deb
<a href=
"http://www.reinholdtsen.name/freedombox/
">http://www.reinholdtsen.name/freedombox
</a
> wheezy main
571 </pre
></li
>
572 <li
><p
>Run this as root:
</p
>
574 wget -O - http://www.reinholdtsen.name/freedombox/BE1A583D.asc | \
577 apt-get install freedombox-setup
578 /usr/lib/freedombox/setup
579 </pre
></li
>
580 <li
>Reboot into your freshly created Freedombox.
</li
>
584 <p
>You can test it on other architectures too, but because the
585 freedombox-privoxy package is binary, it will only work as intended on
586 the architectures where I have had time to build the binary and put it
587 in my APT repository. But do not let this stop you. It is only a
588 short
"<tt
>apt-get source -b freedombox-privoxy
</tt
>" away. :)
</p
>
590 <p
>Note that by default Freedombox is a DHCP server on the
591 192.168.1.0/
24 subnet, so if this is your subnet be careful and turn
592 off the DHCP server by running
"<tt
>update-rc.d isc-dhcp-server
593 disable
</tt
>" as root.
</p
>
595 <p
>Please let me know if this works for you, or if you have any
596 problems. We gather on the IRC channel
597 <a href=
"irc://irc.debian.org:
6667/%
23freedombox
">#freedombox
</a
> on
598 irc.debian.org and the
599 <a href=
"http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/freedombox-discuss
">project
600 mailing list
</a
>.
</p
>
602 <p
>Once you get your freedombox operational, you can visit
603 <tt
>http://your-host-name:
8001/
</tt
> to see the state of the plint
604 welcome screen (dead end - do not be surprised if you are unable to
605 get past it), and next visit
<tt
>http://your-host-name:
8001/help/
</tt
>
606 to look at the rest of plinth. The default user is
'admin
' and the
607 default password is
'secret
'.
</p
>
projects / homepage.git / blob