 This video is part number five, I believe, on a series on Wansu IP cams. I definitely recommend watching the first videos or you're going to be able to lost. There should be a link in the description or on the screen in annotation for the full playlist. Right now I'm using Telnet because Telnet was originally installed on this device and I have a root shell. The problem with this is, if anyone's a different network, they're going to see every single key I press in here, they're going to see all the output. So it's definitely better if we could do this securely, encrypted. So the way we would normally do that with this SSH, which is not installed on here, but luckily there is a program called Drop Bear, which is a very lightweight SSH both server and client. That's actually a pretty neat little tool and it's also rather small. I think it's a half a megabyte, we'll find out here in a minute. So bringing that up, as you remember from the previous tutorials, there's not a whole lot of storage space on here. If we mount, you can see listed here different mount drives that are mounted. If we do our DF-H, oh sorry, using our busybox that we installed the other day in our 10th folder, busybox, and then I'll do DF-H, you can see that there's really no room left on any of these drives. They're pretty much full. But as we can see up here, we have a few RAM disks, the VAR folder, the Etsy folder, the temp folder, the media folder, are all RAM disks. So we've been working inside our temp folder. Let's just check how much space we have free. So I'm just going to type in free and right here we can see our free spaces. Well, it's just over three megabytes at this point. Some stuff I've added here you might, you know, might vary a little bit, but definitely enough room to get an SSH server slash client running on this. Control L, I'll clear the screen. So what I'm going to do is I'm going to move into my temp folder and list out here, you can see this is where we're working from. And I actually have some residual things I did not remove after testing this. So let me remove this and this. There we go because we're going to be creating those right now. So I'll list out again. We have our busybox here and that's what we're going to use to download our SSH server. So just save time. I'm going to copy and paste this command here. So we're using our new version of busybox because the default one on the system doesn't have W get and we're using the W get command from that busybox to download this file. And what this is, it's just a website that has some pre compiled binary files for you in different formats. And we need the MIPSL one because that's the type of processor we're running. So this link will be, if you look in the description of this video, there should be a link to something that's either video notes or show notes or project notes. All of what we're doing today and what we've done in previous tutorials should be in those notes. Go ahead and click on that. And this link will be in there, but we're going to download it. And then we can see we got dash capital O and we're going to put it in drop bear multi. So I'll hit enter. And it's not very big at all. And in fact, if I list everything out now, let's use our busybox that we just added here so I can use the dash H to get things in human readable format. We can see right here that drop bear multi is yeah, like half a megabyte. So not very big at all. So perfect. And now we just need to initiate it. So first thing we need to do is make it execute little change mod plus X our drop bear multiple multi, clear the screen again, just to keep things up here for you. Now, I guess I shouldn't clear the screen that fast, you guys want to see what I'm typing, but we're going to link a number of things. So we're going to use the ln dash s do a symbolic link to the multi drop bear multi and now drop bear multi, it's binary can tell what you've linked to it when you're running it and it will act differently. Basically, it's multiple programs put into one. So we definitely want it to run as drop bear key. We also want to run this drop bear. We also want to run as a DB client, and also as an SSH client and SCP. And I'll explain all that in a minute. But I'm going to start the next step because it takes a little while. I'm gonna say make directory. And in Etsy, I'm going to do drop bear. So I just create a new folder. I'm going to move into that folder. And then using the drop bear multi that we just are installed, but using the link we created to it. So when we run this command, it's running this program, but it knows to run as the key generator. So we need to create some keys for our server to use so that, you know, we can do things securely. So I'm going to say our SA post key can enter. So that's going to take a little bit. Basically, we're in this. Oh, no, I'm in the wrong folder. Control C to stop that. Let's Okay, we want to be in Etsy drop bear. There we go. Okay, up arrow a few times. Now run that command. Glad I noticed that two types of keys you can use. You can read about it on yourself. There's the RSA and the DSS types of keys. DSS I guess a little bit quicker on generating. I really don't know all the differences. We're going to generate keys for both. But we're generating a key called this and we're putting it in this folder. We're going to create one called the same thing only instead of RSA is going to be DSS. So that when we start our server and a computer connects, it can share that key. And that's how the encryption happens. Takes a little while to generate. As you can see, let's talk more about this multi up here. As you can see, we're running this program down here. And it's linking to that. But because we're calling it as this, it knows that it's the key generator. When we start our server in a moment, we're gonna be running it as drop bear. After that, we can also use it as a client. So if I wanted to connect to my desktop or any other server out there running SSH, I can just type SSH just as I would on my desktop and connect to it. Now we've also linked it to SCP. So if I want to copy files to and from the camera, I can do so encrypted using SCP. Okay, so now I'm going to run basically the same command, but instead of RSS, we're gonna say DSS. And again, it's just a different type of key. And this one generates a little bit faster. But once our keys are generated, we can then start our drop bear server. So I'm gonna do here's gonna split my screen. Now on the top here is we're logged in through telnet to the IP cam. And down here is my desktop. And what I'm gonna do is I'm gonna type in nmap. And I'm going to scan the camera. And as you can see, telnets open port 80 is open, which is the HTTP server, which you use to interact with the camera through your web browser port 8600 normally an asterisk port, I'm not sure asterisk, you know, for phone use, VoIP stuff, I'm not sure why the camera has that port open, I haven't gotten that far into inspecting it yet. But you'll notice that port 22 is not open. So what I'm gonna do here is I'm gonna say temp, because that's where our bear drop or a drop bear is, I'm gonna say drop bear, and I'm gonna say start. Okay, so we've started it. And actually, if I PSA UX to see all processes, and I can grep for drop, you can see ignoring the command I just ran of grep that our server is running. And if I on my desktop down here, there the screen scan that SSH is now open on port 22. And I can SSH route at IP address. And give it a second here, the camera is not the fastest. It's my first time connecting. I'm gonna say yes. That's using the RSA key that we generated. And I can type in the password that I've created for the root account. And there I am, I'm logged in. So right now, bottom screen SSH top screen, telnet. As far as user interfaces right now, they both can do the same thing, I can move to the root directory and list things out. And I can move to the root directory down here and list things out. Really not much of a difference. But the bottom screen here, everything is completely encrypted. So no one will see. So right up here, I'm typing, I typed LS to enter anyone sniffing the network's gonna see that I sent the LS command. And this is the output. It's in plain text. Down here, let's get a bunch of garbally good, encrypted stuff. And since they don't have our keys, they can't decrypt it, theoretically. And that is it. So now you could disable the telnet. The only problem with this is the way we installed it, we installed the temp folder, which as we said was a ram file system. So when the camera reboots, it's gonna all get wiped out. Our keys will still be there, I think. No, Etsy is a ram file system too. So our keys and everything will get wiped out next time the camera restarts, whether it's power surge, you click the restart button, or you unplug it and plug it back in. All these changes we just made will go away. And the reason we did it in this folder is just because that's where space now you could clear out stuff. Like I said, it's it's a half a megabyte. You might be able to again, temp, busy box to get that H. Here's some partitions. There's if you clear out a little bit on system, you might be able to get the SSH server on there. You're gonna be really maxing out that that partition there. So theoretically, you could get SSH on here running full time. I'm really not sure how big the telnet server is. If you could clear that out, let me see something. I'm just theorizing here. Well, telnet's part of busy box. And busy box, you're gonna need on there and our copy of busy box is definitely too big. So yeah, you might be able to clear something out on that partition and make space. But the whole partition in itself is only three megabytes. And we have a half a megabyte left, which is, like I said, about the size of drop bear. So theoretically, you could get SSH running on this full time, even after reboots with some cleaning up. Right now, I'm just running it in server. Luckily, you know, I'm accessing this all on my local network, which is secure. And I also kind of live out in the middle of nowhere. So there's no real houses around me. I'm not too concerned about using telnet on my local server. And if I was someplace else, I would actually tunnel in through SSH on another computer I have running on my network and then go to it. So I'm gonna mainly be using telnet. But I thought I would show you this for multiple reasons. One, maybe you want to make sure you can SSH into this camera for security reasons to this, you know, same process will work on many devices, you know, you just have to get the right compile for your processor type. This is MIPSL. So I download the MIPSL version. I hope that's how you say it MIPSL. But that's how you get SSH running on that camera, both client and server. And again, we also have scp by temp scp. And I should be able to copy files back and forth from any SSH computer to this computer or to the camera that is. Anyway, I thank you for watching. I hope that you have a great day. Please visit my website films like chris.com. That's Chris the K. Again, there's a link to that in the description as well as notes that should show you everything we've done today. And in the previous videos in the series. And I just hope that you have a great day. Okay, this is an introduction to films by Chris calm. I'm Chris. That's Chris the K. That's me right there. My daughter, Amber, and my wife, Jennifer. We pretty much live in the swamps of Florida. I'm a firefighter by day, as well as by night. We work long hours. But that's not why you're here. You're here about the videos I put up on YouTube. These videos are mainly about computers and programming, which means most of my videos look something like this. And if that's what you're interested in, great. If not, that's all right. I do videos on other topics to such as video editing, special effects, photo editing, 3D design, and music creation. If you are one of my viewers and you enjoy my videos, my Patreon page is a place where you can go to help support my videos. So I asked that you take the time to go to my Patreon page and look at different levels of rewards you can receive for different levels of backing. There should be a link in the description of this video if you're watching it on YouTube. Otherwise, you can visit patreon.com forward slash metal x 1000. And I thank you for your time and your support. Have a great day.