Table of Contents
Advertisement
WB45NBT
Reference Guide
The device(s) allows access to the raw value being read on the pin along with a scale. The product of the raw
value and the scale provides a voltage reading in microvolts.
Access the value being read on the ADC3 pin.
# cat /sys/bus/iio/devices/iio\:device0/in_voltage3_raw
948
# cat /sys/bus/iio/devices/iio\:device0/in_voltage3_scale
3222.000000
948*3222 ≈ 3.0 V
Note:
13 WB S
ECURITY
This section addresses current security matters related to the use of the Laird WB. The WB is designed to aid a
development engineer in the development of an end system. For ease of development it is not a hardened
platform and the flash memory file system is unprotected. This leads to the following conditions which a
development engineer should be aware of:
▪
A variety of system utilities are present that can manipulate flash memory.
▪
Networking is unrestricted; there are no defined firewall (traffic use case) rules.
Software updates are performed by root using fw_update and fw_select.
▪
fw.txt automatically transfers /root/.ssh/ which may be undesirable due to the potential transferal of out-
of-date or compromised keys.
▪
Software bundled with the WB development platform is not cryptographically-signed.
Because fw_update does verify and record the md5sum of each image, you can sign your software and
▪
fw_update could then check the signing via key.
13.1 Solutions to Enhance Security
The ODM should consider the following actions to enhance security on their end system:
▪
Change the root login to something stronger – The default root and user password is summit. You can
change it with the passwd utility.
If possible, use a non-root account for basic operations or status checking –
▪
-
There are currently three user accounts (summit, ftp, and default). If you're not using these
accounts, remove them.
-
The adduser and deluser utilities can be used to manage accounts.
▪
Enable login timeouts.
▪
Disable any unnecessary services, such as httpd, and ftpd.
-
Some services are handled via
-
Other services may be managed using chmod (change mode) on specific init-scripts.
▪
Disable unused network interfaces – In /etc/network/interfaces, set #auto <iface> to prevent auto
starting.
▪
Serial console
-
Disable debug console login access to deter physical attacks via the debug console port
Disable unnecessary serial port access by removing their entries in /etc/inittab.
The /etc/inittab file contains activation for the getty program and options.
Embedded Wireless Solutions Support Center:
http://ews-support.lairdtech.com
www.lairdtech.com/wi-fi
inetd
(/etc/inetd.conf is the default configuration file for the inetd)
24
© Copyright 2017 Laird. All Rights Reserved
Americas: +1-800-492-2320
Europe: +44-1628-858-940
Hong Kong: +852 2923 0610
Advertisement
Table of Contents
