On Sun, Dec 7, 2014 at 5:24 PM, Tommi <[email protected]> wrote: > Hey, > > I am using the BBB for backup (via BTSync, this also gives me some troubles > lately, but that is a different story...). I am thinking of bringing the BBB > to work (at a university) to get a real off-site backup. However, I am not > sure what steps I should take in order to make sure nobody can access my > files there. So my questions are: > > 1) What should I do to make sure it is secure? I think I would even be happy > only to access it via USB and the webserver of BTsync (port 8888) > > 2) What services could I shut off? I don't need the GUI, the webserver, > could probably lock down many ports and other services I do not even know > that they are currently running... > > 3) Potentially I could also hook the BBB to my computer via USB and share > Internet with it. Would that be a more secure option?
Just some quick points, as you could spend a lot of time/research into this topic.. Physical access = root access... Unless you physcally modify the board with a gallon of hard epoxy and seal it in concrete. ;) The board was designed for ease of development... By the default, the bb.org image has root access open (no password) and ssh on port 22.. There's a script under: /opt/scripts/un-tweak-image/debian-re-secure-root-ssh.sh That'll reset root to a password (root) and disable root over ssh. Next disable bone101/cloud9 both applications give you root access to. ;) BTW, for this project, starting with something really bare bones such as: https://eewiki.net/display/linuxonarm/BeagleBone+Black#BeagleBoneBlack-Debian7(smallflash) Regards, -- Robert Nelson http://www.rcn-ee.com/ -- For more options, visit http://beagleboard.org/discuss --- You received this message because you are subscribed to the Google Groups "BeagleBoard" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
