free
/
freedomboneeee
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Beginnings of hashlet daemon

This commit is contained in:
Bob Mottram 2014-04-07 07:42:36 +01:00
parent 7fc61cd279
commit 3f01f6532a
1 changed files with 23 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
beaglebone.txt
View File

@ -520,12 +520,34 @@ It should return the message "/Factory/". This is intended to provide an indica
hashlet --bus=/dev/i2c-2 personalize hashlet --bus=/dev/i2c-2 personalize
#+END_SRC #+END_SRC
Nothing should be returned by this command, but a file called ~/.hashlet will be generate which is the private key of the device. To make sure it's only accessible by the root user: Nothing should be returned by this command, but a file called ~/.hashlet will be generated which is the private key of the device. To make sure it's only accessible by the root user:
#+BEGIN_SRC: bash #+BEGIN_SRC: bash
chmod 400 ~/.hashlet chmod 400 ~/.hashlet
#+END_SRC #+END_SRC
#+BEGIN_SRC: bash
mknod /dev/hashletrng p
emacs /root/hashletupdate
#+END_SRC
Add the following:
#+BEGIN_SRC: bash
#!/bin/sh
while :
do
hashlet --bus=/dev/i2c-2 random > /dev/hashletrng # 32 bytes at a time...
done
#+END_SRC
Save and exit.
#+BEGIN_SRC: bash
chmod +x /root/hashletupdate
#+END_SRC
** Alter ssh configuration ** Alter ssh configuration
Altering the ssh configuration will make it a little more secure than the standard Debian settings. Altering the ssh configuration will make it a little more secure than the standard Debian settings.