New Build - 04/17/2021 - r46380

Post new topic   Reply to topic    DD-WRT Forum Index -> Broadcom SoC based Hardware
Goto page Previous  1, 2
Author Message
rnix
DD-WRT User


Joined: 23 Feb 2016
Posts: 199

PostPosted: Sun Apr 18, 2021 9:54    Post subject: Reply with quote
IONK wrote:
The point is the error log appears when the login prompt shows up, not after you have successfully logged in.
My wild guess is that when you open ddwrt page, the web browser tries to auto login with the previously stored cookie, but for some reason, ddwrt doesn't accept that old cookie (session timeout? router restarted?), writes the error log, then asks to re-authenticate. There's no error log for a successful login at all.

To verify: repeat the test in my previous post, but this time open ddwrt in an incognito browser window (or In-Private Browsing or anything else as long as there's no previously stored cookie) - there's no error in the log at all.

After monitoring syslog further I see you are correct that entry is created as soon as login prompt appears.
Assuming your theory about session timeout is correct, I still think this is rather confusing as I would expect it only appears when user actually provides incorrect credentials.
Sponsor
IONK
DD-WRT Guru


Joined: 19 Aug 2011
Posts: 951

PostPosted: Sun Apr 18, 2021 10:08    Post subject: Reply with quote
rnix wrote:
Assuming your theory about session timeout is correct, I still think this is rather confusing as I would expect it only appears when user actually provides incorrect credentials.
just for gags: someone may ask you to submit a patch containing the improvement you wish to see.
_________________
▫ RSS feed for DD-WRT releases (2024): https://rsseverything.com/feed/7d36ab68-7733-46c3-bd8a-9c54c5cef08c.xml
easyddup - A simple upgrade/downgrade utility by yoyoma2 --- as featured in 📌 Reference Links, stickies retired back to forum (Moderator's Pick 🌟)
kernel-panic69
DD-WRT Guru


Joined: 08 May 2018
Posts: 14125
Location: Texas, USA

PostPosted: Sun Apr 18, 2021 11:38    Post subject: Reply with quote
It appears if you access the webUI while not logged into it. It is default behavior. The only time and configuration I know of that it doesn't on initial webUI access of the router is if you have the info site page enabled, otherwise, as soon as you try to access the webUI and the login prompt pops up, this message appears in the syslogs by default. These messages are useful to know when the webUI has been accessed. For instance, if you don't lock down wireless access to the webUI and someone attempts to bruteforce access, then you will know by the syslog messages. Same thing for SSH or telnet access. I don't know why we're all up in arms about a normal thing that's been in place for so long just now.

Now, that being said, let's focus on flash reports and actual bugs, please Cool

_________________
"Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT
Pogo - A minimal level of ability is expected and needed...
DD-WRT Releases 2023 (PolitePol)
DD-WRT Releases 2023 (RSS Everything)

----------------------
Linux User #377467 counter.li.org / linuxcounter.net
mwchang
DD-WRT Guru


Joined: 26 Mar 2013
Posts: 1855
Location: Hung Hom, Hong Kong

PostPosted: Sun Apr 18, 2021 12:17    Post subject: Reply with quote
kernel-panic69 wrote:
It appears if you access the webUI while not logged into it. It is default behavior. The only time and configuration I know of that it doesn't on initial webUI access of the router is if you have the info site page enabled, otherwise, as soon as you try to access the webUI and the login prompt pops up, this message appears in the syslogs by default. These messages are useful to know when the webUI has been accessed.

The easy fix is to intercept and drop all login attempts when WEBUI is not 100% ready. If it's to be done by WEBUI, then add some codes in its init process to ignore login attempts until itself is 100% ready. A good indicator is the "readiness" of the router firmware BLOB. Or maybe when router's clock is sync with NTP server. Or.... I dunno!

What is the last process to be loaded during DD-WRT boot?

Sounds easy??? Smile


_________________
Router: Asus RT-N18U (rev. A1)

Drink, Blink, Stretch! Live long and prosper! May the Force and farces be with you!

Facebook: https://www.facebook.com/changmanwai
Website: https://sites.google.com/site/changmw
SETI@Home profile: http://setiathome.berkeley.edu/view_profile.php?userid=211832
GitHub: https://github.com/changmw/changmw
wabe
DD-WRT Guru


Joined: 17 Jun 2006
Posts: 889

PostPosted: Sun Apr 18, 2021 13:56    Post subject: Reply with quote
Router/Version: Asus RT-AC68U rev C1
Firmware: asus_rt-ac68u-firmware.trx
Kernel: Linux 4.4.265 #2518 SMP Fri Apr 16 08:29:28 +07 2021 armv7l
Mode: Gateway, Wireless AP.
Reset: No, flashed from CLI
Previous: 04-13-2021-r46329
Status: Working well incl. smb

_________________
Netgear R7000 on Build 55109
Asus AC-AC68U rev. C1 (AP) on Build 55109
Asus AC-68U rev. A1 on Build 54604
Asus AC-68U rev. A1 on Build 53339
ddwrtfollower
DD-WRT Novice


Joined: 17 Mar 2021
Posts: 16

PostPosted: Sun Apr 18, 2021 16:43    Post subject: Netgear R8000 OK Reply with quote
Router/Version: Netgear R8000
File/Kernel: Linux 4.4.265 #2499 SMP Tue Apr 13 08:09:43 +07 2021 armv7l
Previous/Reset: Firmware: DD-WRT v3.0-r46329 std (04/13/21) / No Reset
Mode/Status: WiFi AP, LAN router, Wan Router, nothing else
Issues/Errors: None
hurleyp
DD-WRT User


Joined: 10 Sep 2009
Posts: 425
Location: Ottawa, Ontario, Canada

PostPosted: Sun Apr 18, 2021 20:20    Post subject: Reply with quote
Firmware: v3.0-r46380 std (04/17/21)
Router/Version: Netgear R7000
Kernel: Linux 4.4.265 #2518 SMP Fri Apr 16 08:29:28 +07 2021 armv7l
Previous: v3.0-r46316 std (04/09/21)
Mode/Status: AP wired and wireless, Up and running for 28 hours.
Reset: Soft boot before and after upgrade
Temperatures: CPU 58.0 °C / WL0 45.0 °C / WL1 50.4 °C
Issues/Errors: Nothing significant

Updated via webif. No 'nvram erase' this time, last one was in July 2018 (r36325).
Upload and Download speeds are to ISP spec. Nothing unexpected in the syslog.

Current basic R7000 setup (subject to change of course):
- Static WAN IP
- SFE - On
- STP - On
- IPv4 only, both WAN and LAN
- LAN DHCP Enabled
- Wireless: AP, Regulatory Domain = CANADA, wl0 Mixed (ch. 6), wl1 AC/N-Mixed (ch. 149, VHT80), AES
- 1 wireless VLAN on wl0
- SNMP disabled, SSH enabled, Telnet disabled
- Firewall enabled, Log Level high
- Syslog: to local server. klogd: disabled.
- USB support - Off
- No custom scripts
- NO: ttraf, Tor, VNC, Zabbix, VPN, Radius, OpenVPN
- NO: UPnP, DMZ, QoS
- NO: Samba, CIFS, JFFS2, miniDLNA, Entware, Optware

_________________
Netgear R7000: v3.0-r54248 std (11/29/23)
EdgeRouter-X: EdgeOS v2.0.9-hotfix 7
kernel-panic69
DD-WRT Guru


Joined: 08 May 2018
Posts: 14125
Location: Texas, USA

PostPosted: Sun Apr 18, 2021 22:25    Post subject: Reply with quote
To update my earlier comment(s), the syslog messages are the 'new' message that happens until your logged in, but someone didn't read this thread and reported it as a bug: https://svn.dd-wrt.com/ticket/7401

To clarify, here is the commit that changed the 'normal' message of user being root in all new releases to what it is now: https://svn.dd-wrt.com/changeset/46325

_________________
"Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT
Pogo - A minimal level of ability is expected and needed...
DD-WRT Releases 2023 (PolitePol)
DD-WRT Releases 2023 (RSS Everything)

----------------------
Linux User #377467 counter.li.org / linuxcounter.net
mastaofdisastax
DD-WRT Novice


Joined: 16 Oct 2018
Posts: 19

PostPosted: Mon Apr 19, 2021 17:16    Post subject: Reply with quote
Router/Version: Netgear R6250
File: netgear-r6250-webflash.bin
Kernel: Linux 4.4.265 #2518 SMP Fri Apr 16 08:29:28 +07 2021 armv7l
Previous: 44863
Reset: YES
Mode/Status: Defaults, wifi
Issues/Errors: YES

Strong Router Passwords with certain special characters no longer work. I confirmed they work on 44863.


Router/Version: Linksys WRT320N
File: dd-wrt.v24-46380_NEWD-2_K3.x_mega_wrt320n.bin
Kernel: Linux 4.4.265 #8261 Sat Apr 17 11:36:23 +07 2021 mips
Previous: 46294
Reset: NO initially, then YES
Mode/Status: Defaults, wifi
Issues/Errors: YES

Strong Router Passwords with certain special characters no longer work. I confirmed they work on 44863.

The wiki says to "use numbers and valid non-alphabetic characters", but doesn't actually say which non-alphanumeric characters are valid or invalid.
Goto page Previous  1, 2 Display posts from previous:    Page 2 of 2
Post new topic   Reply to topic    DD-WRT Forum Index -> Broadcom SoC based Hardware All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum