User Tools

Site Tools




May 11 2011

My service expired last night. My renew script still isn't working, but I didn't try very hard. All I did was run:

curl -K curlcfg2 -v
curl -K curlcfg2 -v
curl -K curlcfg2 "" -v -c /tmp/cookiejar
curl -K curlcfg2 -d 'username=$$$$$$$$&password=$$$$$$$$&changePassword=' "" -v -b /tmp/cookiejar -c /tmp/cookiejar
curl -K curlcfg2 -d 'loginUserId=$$$$$$$$&loginPassword=$$$$$$$$&authType=Pronto' -e "" -v -b /tmp/cookiejar -c /tmp/cookiejar 
curl -K curlcfg2 -d 'planId=#############&rPM=Yes&selectPG=Verisign&agree=agree' -v -b /tmp/cookiejar -c /tmp/cookiejar 
curl -K curlcfg2 -d 'planId=#############&planType=PREPAID&requestComingFrom=BuyAPlan&paymentMethodId=CC&customerId=#############&creditCardNumber=################&creditCardId=#############' -v -c /tmp/cookiejar -b /tmp/cookiejar 
curl -K curlcfg2 -v -b /tmp/cookiejar -c /tmp/cookiejar 
curl -K curlcfg2 -d 'serviceName=ProntoAuthentication&userId=$$$$$$$$&password=$$$$$$$$' -v -b /tmp/cookiejar -c /tmp/cookiejar
curl -K curlcfg2 "" -v -b /tmp/cookiejar -c /tmp/cookiejar
curl -K curlcfg2 "" -v -b /tmp/cookiejar -c /tmp/cookiejar
curl -K curlcfg2 "" -v -b /tmp/cookiejar -c /tmp/cookiejar

You need the file /sbin/curlcfg2, which contains:

-A "Mozilla/5.0 (iPhone; U; CPU iPhone OS 2_2_1 like Mac OS X; en-us) AppleWebKit/525.18.1 (KHTML, like Gecko) Version/3.1.1 Mobile/5H11 Safari/525.20"

Note that you'll need to replace “$$$$$$$$” with your username or password as appropriate, and “#############” with whatever the appropriate number is, matching whatever was received in the results of the last command. If you run these commands twice, it'll bill your account twice, but give you two months of service. You can confirm this by checking your oz account info (for which you don't need cookies):

  1. Click My Account
  2. Log in with username and password
  3. Click Home

April 13 2011

I was expecting the service at SLM to die on Sunday (10th), but it was still running until 2am last night. When I got in today, there were 53 instances of '' running on the auto-oz router, each one also having an instance of udhcpc. I ran:


And then:


And we were online. So maybe Onezone didn't log us out; maybe the router was just choking. Just to see what would happen, I ran:

cd /sbin

And it came up fine.

So, last time I was here I ran the renew script a second time to see if it would credit me another month. At the time I remember thinking that it hadn't. But looking now, it's not set to expire until May 10th.

Unfortunately, I can't get the renew script to run anymore. When it tries to run the shell script, it hangs. Launching curl from a shell script from a perl script was working before, but appears not to now. I rebooted the router; same problem. I tried setting a timeout in curl by setting '-m 10' in curlcfg, but that didn't do anything.

March 3 2011

what's happening is that on this command:
curl -K curlcfg -d "username=XXX&password=YYYYYY&changePassword=" -e "" -b /tmp/cookiejar

onezone returns:
Session Timed out. Error in Proceeding Further. Please close and restart your browser.

I tried removing the "-b /tmp/cookiejar" from the command, and it does the same thing.

So, I guess we need to go further back to find the spot it stop complaining about this. Let's try:
curl -K curlcfg "" -b /tmp/cookiejar
curl -K curlcfg -d "username=XXX&password=YYYYYY&changePassword=" -e "" -c /tmp/cookiejar

Same problem. Check the cookies. It's setting the same one:	FALSE	/registration	TRUE	0	JSESSIONID	0a0a0a4730d54b28d991910e4309a603ca5a1fbe4e94.e3yQbx4TbNeLe34Lb3mKchePbhn0n6jAmljGr5XDqQLvpAe	FALSE	/registration	TRUE	0	JSESSIONID	0a0a0a4730d54b28d991910e4309a603ca5a1fbe4e94.e3yQbx4TbNeLe34Lb3mKchePbhn0n6jAmljGr5XDqQLvpAe

Let's try deleting the cookie file.
rm /tmp/cookiejar
curl -K curlcfg "" -c /tmp/cookiejar

It gave us the same cookie again:	FALSE	/registration	TRUE	0	JSESSIONID	0a0a0a4730d5cfc25258927348bb8e5af08d27bdf765.e3yQbx4TbNeLe34Lb3mKchePbhn0n6jAmljGr5XDqQLvpAe

Well, let's keep going:
curl -K curlcfg -d "username=XXX&password=YYYYYY&changePassword=" -e "" -b /tmp/cookiejar

This time it didn't return the session timeout message. I think maybe it's because I had my "-b" and "-c" confused on the commandline. -b is to read, -c is to write.

Let's run the script again:

It did the same thing: die at ./ line 67.


The renew wasn't working and so I logged in manually through my browser to try to see what was up. All I did was log in and the whole rig started working immediately.

So... that means there's something's wrong with the script. It looks like that script isn't reading cookies, which is maybe the problem. 
This is awkward, because when the login doesn't work, the onezone-check script going straight to try to renew. Awkward, eh?

So, I modified to get a cookie, and then send that cookie along with the login request. To the extent that my tests now are valid, it seems to be working.

There's also the problem of multiple instances running. Fix this too!


This is a way to configure an OpenWRT router to connect in client mode to the OneZone network. I've tested it ONLY using whiterussian-rc5, on a Linksys WRT54GL and a Motorola WR850G.


  • You can use this with either a regular $30/month OneZone account, or a $5/month iPhone account. There are two tricks with the iPhone account: first (predictably) you can only sign up for the account if you hit the captive portal using an iPhone/iPod (iPad?) browser – either an actual device, or a desktop browser with a spoofed user-agent. Second, when you create the account, it (at least temporarily) gets locked to the MAC address of the wifi client. So the best way to do it is to use a laptop browser spoofing an iPhone user-agent, plugged into the router that's going to be the client.
  • You're much better off configuring the router someplace where you've got a wired Internet connection. These instructions assume that you've got one. I've managed to pull it off otherwise, but it's a hassle.
  • Of course, in order to test this properly, you need to be doing the setup someplace where you've got a reasonably strong OneZone signal.
  • Instructions here are specific to Wireless Toronto's setup: we want these routers to check into the open-mesh dashboard so that we can monitor them and get notifications. They also connect to our OpenVPN server. If you're not Wireless Toronto, you'll have to adapt this to suit your needs.
  • It may be possible to use two iPhone accounts simultaneously in two different locations, by spoofing the MAC address of the wifi interface on the router. The way to do that is 'nvram set il0macaddr=xx:xx:xx:xx:xx:xx'.


  1. if there's any chance that it has some wacko nvram settings, reset the router to factory default (or use mtd erase if you know what you're doing)
  2. flash the router with whiterussian-rc5
  3. plug it into an Internet connection
  4. ssh into it
  5. run this:
    vi /etc/ipkg.conf
  6. add this line:
    src xwrt
  7. run this:
    ipkg update
    ipkg install microperl curl
    cd /sbin
    chmod +x
    chmod +x
    chmod +x
    chmod +x
    cd /etc
    ifconfig eth0
WARNING: auto-oz is still in development. the versions of these files on the server aren't the newest ones. If you're interested, contact Gabe.
  1. it will output the mac address. Copy it, and add the node to the OM dashboard. The dashboard will then calculate its IP address.
  2. run this:
    vi /etc/
  3. put the IP & MAC address in the appropriate spots
  4. run this:
    crontab -e
  5. add this line:
    */2 * * * * /sbin/
  6. run this:
    ipkg install ntpclient
    cd /etc/init.d
    chmod +x /etc/init.d/S55ntpclient
    echo EST5EDT,M3.2.0/02:00,M11.1.0/02:00 > /etc/TZ
    cd /etc/init.d
    cp S99done S99done.real
    rm S99done
    mv S99done.real S99done
    vi /etc/init.d/S99done
  7. add these lines to the end:
    # start crond
    /usr/sbin/crond -c /etc/crontabs
  8. run this:
    mkdir /etc/crontabs
    touch /etc/crontabs/root
    ln -sf /etc/crontabs/root /etc/crontab
    /usr/sbin/crond -c /etc/crontabs
    vi /etc/crontab
  9. add this line:
    0 * * * * /usr/sbin/ntpclient -l -h -i 5 -s
  10. run this:
    killall crond
    /usr/sbin/crond -c /etc/crontabs
    ipkg install openvpn
    mkdir /etc/openvpn
    cd /etc/openvpn
    vi /etc/openvpn/client.conf
  11. replace NODEID with the real router id
  12. run this:
    cd /etc/openvpn
  13. copy cert files from the server: scp* .
  14. run this:
    chmod 600 client*.key
    cd /etc/init.d
    chmod +x S90openvpn
    nvram set wl0_mode=sta
    nvram set lan_ifname=br0
    nvram set lan_ifnames=vlan0
    nvram set wan_ifname=eth1
    nvram set lan_ipaddr=
    nvram set lan_proto=static
    nvram set wan_proto=dhcp
    nvram set wl0_ssid="One Zone_High Speed Internet"
    nvram commit
  15. now use a desktop browser spoofing an iPhone user-agent to log into onezone and create an account
  16. run this:
    vi /sbin/
  17. replace “<USERNAME>” with the username, and “<PASSWORD>” with the password
  18. reboot it and watch it get online within a minute or so!
  19. test your packet loss and throughput. Note that you might want to leave it in place for ~5 minutes, since the signal strength & throughput seems to get better over the first few minutes.
auto-oz.txt · Last modified: 2013/09/28 17:06 (external edit)