This is the mail archive of the
ecos-discuss@sources.redhat.com
mailing list for the eCos project.
Re: Protecting RedBoot in the field
- From: Daniel Morris <danielm at redhat dot com>
- To: eCos Disuss <ecos-discuss at sources dot redhat dot com>
- Date: Mon, 28 Oct 2002 10:57:50 +0000
- Subject: Re: [ECOS] Protecting RedBoot in the field
- References: <20021028103111.GV16433@biferten.ma.tech.ascom.ch>
On a related note, many flash devices have a sector protect facility
to prevent modification of whole devices and/or critical segments. I
know of at least two applications in the aeronautical field that had
been corrupted due to wild electrostatic conditions induced at take
off - putting the write/erase patterns onto the bus. These were a
few years ago & perhaps shielding/EMC awareness has improved, but
it is worth remembering even that it is not only loosers that can be
hostile.
Daniel
On Mon, Oct 28, 2002 at 11:31:11AM +0100, Andrew Lunn wrote:
> Hi Folks
>
> The devices we send out into the field still have redboot installed on
> them. We are thinking this is a bit dangerous. Anyone can connect to
> the serial port and hijack the devices, download tetris, destroy the
> flash etc.
>
> I don't want to remove the functionality of redboot. Its useful for
> getting dead devices back to life and we do all our development work
> with redboot starting the system. I don't like the idea of change to a
> ROMRAM application.
>
> Putting a password login onto the console seems the obvious
> solution. Does anyone have any other ideas or other solutions they are
> already using?
>
> Thanks
> Andrew
>
--
Before posting, please read the FAQ: http://sources.redhat.com/fom/ecos
and search the list archive: http://sources.redhat.com/ml/ecos-discuss