Small group communications w/o Internet

Sometimes it amazes me what has already been done by creative people. One of the “new” (old) issues is private communications in a small group; made a bit more urgent by the newfound tendency of governments to shut off the internet when they don’t like what a group of citizens is doing. Yes, in concept no different from any Petty Tyrant breaking printing presses and arresting folks for making speeches from soapboxes when they don’t like what is being said.

Yet still a tiny bit chilling…

In an earlier posting I’d speculated on some ways to reestablish some internet connectivity (even if very limited). Ways that folks could create an ersatz network as / if the need arose.

https://chiefio.wordpress.com/2011/02/03/ersatz-internet/

The basic idea being to create a local wireless “LAN” and let folks share over it, while finding some way to add an improvised (even if slow) connection out to the ‘real’ internet. That way folks could do some sharing locally, and limited flow in / out from the rest of the world depending on the kind of internet link that could be provided. (Telephone / modem, packet radio, even wi-fi over a border…)

Well, while looking up a different thing for a Raspberry Pi project (what WiFi dongle would work best and how to set it up) I stumbled on a rather creative solution for “private sharing” of files and communications in a local small group specifically disconnected from the internet. This looks at the problem from the other side…

Given that Big Brother is watching now, and will be watching even more in the future; and given that much of what folks want to do is “share” something specifically without snoops, one easy way to do that is to remove the internet connection. Yes, as it is WiFi based, you still have the risk of a local ‘cracker’ trying to break into your box, or a government satellite picking up the traffic – but it eliminates all those Chinese Hackers and Russian Spys and 1001 other systems crackers from hanging on your every bit and byte. Add some encryption and even the sniffing satellites don’t get much…

So you would need an access point ( WiFi router) and a DHCP server (preferably using a non-routing block of numbers) and some kind of file sharing software… Having one of these (perhaps even with a bulletin board system on it) at, say, a Street Rally, when The Authority decides it wants to crush communications, would enable folks to swap from phone calls and email to file swaps. And potentially even things like email, just from an anonymous server… It would take some time to build one, but it can be done.

Well, kids will be kids… and it looks like some kids already figure this out.

That name is a bit “cute” for my tastes, “PirateBox”, intended to remind of Pirate Bay (a movie / record / whatever piracy site / service) and reflect the old Pirate Radio Station ambiance. OK, but for a random group of folks at a political rally suddenly in the dark, a name more like “Open Communications Services” would be more likely to be used by newbies. (I’d even go so far as to suggest a dedicated build specifically tuned to suggest security and secrecy in communications and with a welcoming ambiance, instead of the skull and cross bones motif… but perhaps that’s only needed for the “over 30” group ;-)

At any rate, they built one of these already. In fact, many of them. One even runs on a Raspberry Pi board (so you could prebuild it on a chip (SD card) and have it ‘ready to go’ but unused until needed, leaving the RPi doing other things until that day…

I’ve not looked over the feature set, and before I’d trust one for anything terribly sensitive / risky, I’d want to know more about the creators, and I’d want to go through the system image that is provided to assure it wasn’t loaded with security “issues”; but it’s still an intersting thing to look at, and maybe even build / test.

Here’s the site that talks about it:

http://daviddarts.com/piratebox/

Some excerpts:

PirateBox

PirateBox is a self-contained mobile communication and file sharing device. Simply turn it on to transform any space into a free and open communications and file sharing network.

Share (and chat!) Freely Inspired by pirate radio and the free culture movements, PirateBox utilizes Free, Libre and Open Source software (FLOSS) to create mobile wireless communications and file sharing networks where users can anonymously chat and share images, video, audio, documents, and other digital content.

Private and Secure PirateBox is designed to be private and secure. No logins are required and no user data is logged. Users remain completely anonymous – the system is purposely not connected to the Internet in order to subvert tracking and preserve user privacy.

Easy to Use Using the PirateBox is easy. Simply turn it on and transform any space into a free communication and file sharing network. Users within range of the device can join the PirateBox open wireless network from any wifi-enabled device and begin chatting and sharing files immediately. See the short video demonstration below for more details.

DIY PirateBox was created by David Darts and is registered under the GNU GPLv3. This license grants the right to freely copy, distribute, and transform creative works according to the principles of copyleft.

That last line is important since that means you can see the source code and assure it is clean and secure.

The link has the referenced video along with many photos, including lunch pails with an antenna on the side and even a skateboard with one of the units taped to the underside.

IMHO, it’s a darned good idea for any sort of folks who think they might want to continue communicating in a 200 m or so radius area either during natural disasters or when The Authorities have decided to kill communications. I can see two immediate enhancements, as well. 1) Named Accounts. In addition to the anon style accounts for “randoms”, having some named accounts for family and friends would let you know it was your spouse sending you that text message… 2) A locked down secured variation. Yes, much / most of the time you would want ‘free and open’ communications. Sometimes, though, you would want absolute privacy and without even the risk of a ‘random’ on the box looking around. So only those in your party, with their SSH keys, get in and ‘share’. (The RPi makes this especially easy to do simply by swapping SD cards to swap personalities.)

There is mention made of self forming webs in one of the pages. That’s a more complicated extension. To make it such that the devices discover each other, and ‘link hands’ so to speak. So if there were enough of them, the whole area becomes one large web of communications. (The problem there is with the lack of ID. If 2000 folks are all “anon”, how do you find your spouse?) But with ‘not too much work’, that can be fixed too (or may already have been fixed by someone…) So, take a blog where folks can post with any name not already taken. Pretty quickly folks could paste up messages saying “John Q. Public looking for Jane, need lunch in 10 minutes.”

http://daviddarts.com/

PirateBox DIY

PirateBox can be configured to run on many devices, including wireless routers, single-board computers, laptops, and mobile phones. Key hardware platforms include the TP-Link MR3020 and the Raspberry Pi both of which start at US$35.

OpenWrt
PirateBox will potentially run on most OpenWrt compatible routers with USB storage. Check out this tutorial and be sure to visit the forum for support and more info.

OpenWrt with Mesh
Thanks to lead PirateBox developer Matthias Strubel PirateBox can now be configured to create wireless mesh networks using Alexandre Dulaunoy’s Forban. This feature is still in testing – for more info, check out this forum post.

So those distributed mesh self organizing bits are being worked on…

The “how to” do it on a Raspberry Pi mostly has a download of a prebuilt image. I’d want to know what was in it before using it for anything where badges and guns were involved (or checking accounts and money…)

http://piratebox.aod-rpg.de/dokuwiki/doku.php?id=raspberry

Custom Image

Support-Thread for Image-Issues: http://forum.daviddarts.com/read.php?2,6298

Download this imagefile: 2013-02-06-wheezy-raspbian-PBx06E.zip (MD5SUM f39d934a2cfb1883e8661a3e06d97649)
Install Raspberry as normal: http://elinux.org/RPi_Easy_SD_Card_Setup (But use the image above instead)
Boot as normal with a Monitor, Keyboard & connected LAN (DHCP with Internet access) :!:
Do the following steps in Raspi-Config
Enable SSH Server via raspberry-config
change Password
Expand FS
Finish & reboot now

After this you have can enable it with

# sudo /etc/init.d/piratebox start

And if PirateBox should start via startup, run the following line

# sudo update-rc.d piratebox defaults

Yet they also have a “manual” path, where you install the source code, so you can see what’s in it. Nice.

The original page has much nicer formatting, this is just to give a quick flavor:

Manual install

The following steps describes the procedure, if you want to store your files on the SD-Card. Additional steps are required, if you want you uploaded data on a USB drive.

Download: Raspbian “wheezy” http://www.raspberrypi.org/downloads
Install Raspberry as normal: http://elinux.org/RPi_Easy_SD_Card_Setup
Boot as normal with a Monitor, Keyboard & connected LAN (DHCP with Internet access) :!:
Do the following steps in Raspi-Config
Enable SSH Server via raspberry-config
change Password
Expand FS
Finish & reboot now
Wait until reboot is finished- needs a while because the OS is resizing the filesystem during this reboot
Install needed packages and prepare some stuff:

# sudo apt-get update
# sudo apt-get -y install lighttpd
# sudo /etc/init.d/lighttpd stop
# sudo update-rc.d lighttpd remove
# sudo apt-get -y install dnsmasq
# sudo /etc/init.d/dnsmasq stop
# sudo update-rc.d dnsmasq remove
# sudo apt-get -y install hostapd
# sudo /etc/init.d/hostapd stop
# sudo update-rc.d hostapd remove
# sudo apt-get -y install iw
# sudo rm /bin/sh
# sudo ln /bin/bash /bin/sh
# sudo chmod a+rw /bin/sh

Edit network config file /etc/network/interfaces

auto lo

iface lo inet loopback
iface eth0 inet dhcp

iface wlan0 inet manual
### disalbed for PirateBox
#allow-hotplug wlan0
#wpa-roam /etc/wpa_supplicant/wpa_supplicant.conf
#iface default inet dhcp

Fetch and copy over PirateBox Source

# wget http://downloads.piratebox.de/piratebox-ws_current.tar.gz
# tar xzf piratebox-ws_current.tar.gz
# cd piratebox
# sudo mkdir -p /opt
# sudo cp -rv piratebox /opt
# cd /opt/piratebox
# sudo sed ‘s:DROOPY_USE_USER=”no”:DROOPY_USE_USER=”yes”:’ -i /opt/piratebox/conf/piratebox.conf
# sudo ln -s /opt/piratebox/init.d/piratebox /etc/init.d/piratebox
# sudo update-rc.d piratebox defaults
# sudo /etc/init.d/piratebox start

:!: After this, the PirateBox should be run on default-startup. PirateBox works only on Wifi-Access with redirect. Network on Ethernet-Port is a normal “dhcp-client”, so no interference with your home network :!:

End Notes

So with that, I’ve got “Yet Another Project” on my endless list of projects ;-) Download the source code, look it over, build one of these, see what features look good, etc. etc.

If it does at all what it claims, it would be well worth it to have one in the Aw Shit Kit. So anyone in the area at least could connect, share, and communicate. Even if it’s just a bulletin board system and some file sharing, that’s a major feature if you have a crowd that’s been cut off from the general internet connectivity. When the ‘mesh’ is done and working, adding a “packet radio node’ would let the whole mesh get out to the internet (even if very slowly) via Ham Packet Radio (potentially to places hundreds or thousands of miles away). Similarly, one person in an apartment that was joined to the mesh, and with a modem / dial up hard line could make a call to an ISP out of country and ‘connect’. (It would likely need some kind of limiter on what was sent, so ‘text only’ or ’email with small attachments’ only, not video and 4 GB attachments… )

That it can be built for on the order of $60 is all that much the better. ($35 Rpi, $5 SD card, $10 for WiFi dongle, $10 for battery and power cable).

Though I’d really be much more inclined to have it present a picture of a “fluffy bunny” and be named something like:
“Warm pleasant open and accepting file sharing and chat room for guests”…
;-)

Subscribe to feed