Home/Support/Support Forum/Secure console modes
Welcome to Digi Forum, where you can ask questions and receive answers from other members of the community.

Secure console modes

0 votes
I follow the Secure console modes instruction and add these lines to conf/local.conf

#######
INHERIT += "trustfence"
TRUSTFENCE_CONSOLE_DISABLE = "1"
TRUSTFENCE_CONSOLE_PASSPHRASE_ENABLE = "a"
#######

I update the new uboot (I do not update linux and rootfs) and try to press "a" when the module starts, but nothing happends. When I wait longer, the prompt for linux is shown:

#######
Digi Embedded Yocto 3.0-r4 ccimx6ulstarter /dev/ttymxc4

ccimx6ulstarter login:
#######

Is it normal behavior or I did something wrong?

Also, the instructions say that "The passphrase is not stored in the device so it cannot be obtained by reverse engineering, but it could be compromised by a brute force attack". Where is the passphrase stored?

Thanks in advance.
asked Jul 16 in Linux by phammanh New to the Community (0 points)

Please log in or register to answer this question.

1 Answer

0 votes
perhaps try a longer password, I'd start with 6 characters.

> Where is the passphrase stored?
The passphrase is not stored anywhere, the image only contains the encrypted hash. When you enter the password, the system will generate an encrypted hash from the password you entered and compare it with the one it has stored. There is no way to recover the password by knowing the hash.
answered Jul 16 by LeonidM Veteran of the Digi Community (4,355 points)
...