More build scripts for 1MB boards

42 views
Skip to first unread message

biff...@yahoo.co.uk

unread,
Aug 6, 2012, 8:52:47 PM8/6/12
to Bifferboard

Andrew Scheller

unread,
Aug 6, 2012, 9:21:40 PM8/6/12
to biffe...@googlegroups.com
> See:
> https://github.com/bifferos/bb/blob/master/buildroot/readme.txt

Looks interesting. Haven't tried running/building it yet, but from a
quick look at the readme and mkbiffrd.py it looks like you're
uploading the ftp.tgz file to the Bifferboard by running an anonymous
FTP server on the BB? You might want to provide instructions (or even
better a kernel command-line flag) for disabling that? Cos otherwise
it'd be easy to DoS the bifferboard by filling up it's memory with a
large FTP upload?
Of course you could argue that anyone knowledgeable enough to be
experimenting with buildroot will know how to do that already :-)

Lurch

biff...@yahoo.co.uk

unread,
Aug 6, 2012, 10:07:50 PM8/6/12
to Bifferboard
On Aug 7, 2:21 am, Andrew Scheller <ya...@loowis.durge.org> wrote:
> > See:
> >https://github.com/bifferos/bb/blob/master/buildroot/readme.txt
>
> Looks interesting. Haven't tried running/building it yet, but from a

It is literally just:
./mkbiffrd.py toolchain
./mkbiffrd.py compile

I've only tried it on 64-bit slackware 13.37. Be interested if you
could try it on something else.

> quick look at the readme and mkbiffrd.py it looks like you're
> uploading the ftp.tgz file to the Bifferboard by running an anonymous
> FTP server on the BB? You might want to provide instructions (or even
> better a kernel command-line flag) for disabling that? Cos otherwise
> it'd be easy to DoS the bifferboard by filling up it's memory with a
> large FTP upload?
> Of course you could argue that anyone knowledgeable enough to be
> experimenting with buildroot will know how to do that already :-)

I think the use of a telnet server with no root password is probably a
bigger security hole than ftp upload issues :). But that's not the
point of this firmware. You're dependent on running on a trusted
network, just as with any system that gets half of it's OS from the
network, and doesn't have ssh or other cryptographic means to verify
it.

cheers,
Biff.

biff...@yahoo.co.uk

unread,
Aug 7, 2012, 6:33:13 PM8/7/12
to Bifferboard

I've added a sample IP camera firmware using the technique:
https://sites.google.com/site/bifferboard/Home/boards-with-1mb-flash/buildroot/ip-camera-application

regards,
Biff.
Reply all
Reply to author
Forward
0 new messages