projects:command_and_control

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
projects:command_and_control [2021/02/16 11:47]
xbr adding x to participants
projects:command_and_control [2021/04/30 09:34] (current)
xbr Added documentation about the current implementation
Line 5: Line 5:
 ^ Name           | Command & Control                                                                       | ^ Name           | Command & Control                                                                       |
 ^ Description    | A wall of displays showing off the most essential data needed by NOC & C3L in general.  | ^ Description    | A wall of displays showing off the most essential data needed by NOC & C3L in general.  |
-^ Status         Running                                                                                 |+^ Status         Half-running (currently being updated)                                                  |
 ^ Contact        | [[user:virii]] & [[user:orimpe]]                                                        | ^ Contact        | [[user:virii]] & [[user:orimpe]]                                                        |
 ^ Participants:  | [[user:metalgamer]] [[user:xbr]]                                                        | ^ Participants:  | [[user:metalgamer]] [[user:xbr]]                                                        |
  
 {{:projects:command_and_control:48373408_326246588102238_4983198013766762496_n.jpg?400|}} {{:projects:command_and_control:48373408_326246588102238_4983198013766762496_n.jpg?400|}}
 +
 +=== Hardware ===
 +  * 4x [[https://archive.is/SzQLW|ORDOID C2]]
 +  * 4x 8GB eMMC
 +  * 4x 16x2 LCD IO kits
 +  * 4x GW2270 1080p HDMI monitors
 +  * 4x 1M patch cables
 +  * 1x 5 port network switch
 +  * 4x 1M HDMI cables
 +  * 4x power supplies
 +
 +=== Software ===
 +  * Fullscreen web browser with no controls ([[https://support.mozilla.org/en-US/kb/firefox-enterprise-kiosk-mode|Kiosk-style]])
 +    * MCR-Alpha (Top-Left):     [[chaosstuff:infrastructure:network:grafana#Turris|Turris]]
 +    * MCR-Gamma (Bottom-Left):  [[chaosstuff:infrastructure:network:grafana#MQTT|MQTT]]
 +    * MCR-Delta (Bottom-Right): [[chaosstuff:infrastructure:network:grafana#ODroid|ODroid]]
 +    * MCR-Beta (Top-Right):     [[chaosstuff:infrastructure:network:grafana#SpaceAPI|SpaceAPI]]
 +  * ''autom8'' account
 +    * This user is used internally to shut down the individual SBCs (Single-board computer) when the space is closing.
 +    * It needs to have access to //at least// ''shutdown'' without entering a password:
 +       * The following line is in the sudoers file: <code>autom8 ALL=NOPASSWD: /sbin/halt, /sbin/reboot, /sbin/poweroff, /sbin/shutdown now</code>
 +    * The ''autom8'' user connects via SSH, so the following key is authorized:
 +       * <code>ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDZOMpHb1kVe+4dhj5QTh6wB69RSbkqxA6CA9Olwq+SSIe/CObbOafaEGyTUmZ1HDIgyTGzH2PgYDz17gxcld11GBKrW4lViIvkblnbMyzjjzxqqJY4CwGjpEBtnwnw3q4GZqQO2Jk7ZK1aJ3s5nJylDMmaLong5BUqDwohBNykuC2OMt+Xg/o0px3uVvz//THjIy4SSRGKwDnoh8d8CIOvi3RA1g6wov8q/Xcm4w6eZhOTgInovO9sKukng3LgTnnY5FXHuCRBZuvi9sy6Bye8If3rG4uPMQ3fLnd/Y7ekDev7oZLViFm7Ldmgmbpu99ezdus+OOdo0YeHegccxAux autom8@dash</code>
 +  * 16x2 LCD text, currently dependent on the host:
 +    * MCR-Alpha: <code> Hello! ODROID! 
 + - MCR-Alpha - </code>
 +    * MCR-Gamma: <code> Hello! ODROID! 
 + - MCR-Gamma - </code>
 +    * MCR-Delta: <code> Hello! ODROID! 
 + - MCR-Delta - </code>
 +    * MCR-Beta: <code> Hello! ODROID! 
 + - MCR-Beta -   </code>
 +
 +== Implementation ==
 +The ODROIDs are now using [[https://www.armbian.com/odroid-c2/|Armbian]]'s [[https://redirect.armbian.com/region/EU/odroidc2/Focal_current_xfce|Focal (Fossa) XFCE release]] with an older version (early 2020 release) of the U-Boot bootloader flashed with the [[https://archlinuxarm.org/platforms/armv8/amlogic/odroid-c2|ArchLinuxARM]] [[https://web.archive.org/web/20210216103531/https://archlinuxarm.org/packages/aarch64/uboot-odroid-c2-mainline/files/sd_fusing.sh|sd_fusing.sh]] tool.
 +
 +This older bootloader version is flashed instead of using the one that is on the Armbian image, because at the time of installation, the version distributed on Armbian's ISO images is a more recent, broken version. (doesn't boot without a serial adapter connected, Ethernet doesn't work.
 +
 +Then:
 +  * an ''odroid'' user and ''autom8'' user are created
 +  * the ''autom8'' user gets the ssh key added
 +  * the ''sudoers'' shutdown commands get added to the '/etc/sudoders' file
 +  * a file to autostart XFCE, with the ''odroid'' user is added (lightdm)
 +  * Add the Barrier SSL key to the Barrier's TrustedServers.txt
 +  * add files to the ''odroid'' user's autostart (XFCE) directory:
 +     * Start Firefox Kiosk mode with the corresponding URL
 +     * Kill the xfce4 panel/menu bar because otherwise it shows up over the firefox fullscreen until the window is clicked on
 +     * Start Barrier in client mode that automatically connects to the server (config) with SSL, or in server mode with SSL (config)
  • projects/command_and_control.1613472440.txt.gz
  • Last modified: 2021/02/16 11:47
  • by xbr