asciilifeform: mircea_popescu: i think he was speaking of rsa per se

asciilifeform: ^ so in principle these can be reimplemented with the nand tools i have included. ☟︎

asciilifeform: fw_setenv reflashes those blocks to hold new text

asciilifeform: the fw_printenv thing simply dumps the text found therein

asciilifeform: where uboot lives

asciilifeform: the config thing lives at a certain offset (forget where) in mtd0

asciilifeform: incidentally, the uboot fw_xxxx tools are very simple:

asciilifeform: can safely toss the pieces of shit with systemd, etc. now.

asciilifeform: nand - can be operated from inside this turdel.

asciilifeform: if you copy the uboot tools to a writable external disk

asciilifeform: ^ this can replace arch and debian now, which folks have been using

asciilifeform: ^ what comes out after v2 patch.

asciilifeform: http://www.loper-os.org/pub/turdel_latest.gz

asciilifeform: b94fb4736e0fa1394784d1139fe8262df450bb945c846e6bd1eda70d2c55679ccf8b7679e08c10d00aaf3dbebf9245875f3001654cf48ce5d1ac4e3c0cffce84 turdel_latest.gz

asciilifeform: 'кто не с нами тот против нас' (TM)

asciilifeform: ^

asciilifeform: and you can upgrade from inside it

asciilifeform: and it'll boot.

asciilifeform: but anyone who wants to, -can- flash this into nand in place of existing kernel

asciilifeform: still built as monolithic kernel with rootfs-in-ram, deliberately

asciilifeform: it -does- contain nandread and nandwrite.

asciilifeform: but this is not -quite- it.

asciilifeform: what i wanted to do was to build something suitable for reflashing into virginal pogos for dev work

asciilifeform: this one isn't as neat as it sounds. i thought BR_PACKAGE_UBOOT_TOOLS will add with fw_xxxxx on the target rootfs but seems like no. these will have to be added as packages

asciilifeform: Pogotron v2.

asciilifeform: http://therealbitcoin.org/ml/btc-dev/2015-March/000076.html

asciilifeform: .... aaaaand...

asciilifeform circa '80s but does not object to this

asciilifeform: circa '00-'05

asciilifeform: Chillum is speaking of a 'pheature' found on particularly imbecilic consumer routers

asciilifeform: the traditional bitcoind (see code) asked a peer to attempt connect-back on 8333

asciilifeform: because it needs to know when it must attempt upnp and when not

asciilifeform: thing is, this is a little more complicated than appears

asciilifeform: aha

asciilifeform: that opens ports on crapsumer routers

asciilifeform: you know, that one

asciilifeform: upnp buggerer

asciilifeform: let it run as own user.

asciilifeform: i am very much against allowing it into bitcoind per se

asciilifeform: at least in the civilian version

asciilifeform: incidentally, the upnp demon will need to be thrown in

asciilifeform: mircea_popescu: many folks use mac addrs in routing tables

asciilifeform: Chillum: if so, why not stick to the considerably less dysfunctional ssh ?

asciilifeform: Chillum: i take it you are the only one accessing the systems in question ?

asciilifeform: ^

asciilifeform: adult router is configured over a dedicated serial port

asciilifeform: Chillum: if it has a www configurator of any kind, it's consumer garbage

asciilifeform: the actual crypto is buried at the far bottom of a deep, deep tank of liquid shit.

asciilifeform: it is rather like pointing to a grain of sand in a turd, and advocating shit as a construction material because 'that grain is solid'

asciilifeform: i very much do not.

asciilifeform: Chillum: i'm not certain that any of the #b-a regulars believe it to have been a bug.

asciilifeform: no.

asciilifeform: <Chillum> Routers are a sad state of affair. Something like 70% of consumer wifi routers in the wild are vulnerable to heartbleed << and a fella who knows this, is still fond of ssl ? amazing

asciilifeform: Chillum: if you own a machine used specifically for executing malware, very convenient for this purpose.

asciilifeform: http://cryptome.org/2015/03/merrill-019.pdf << interesting re: 'national security letters'

asciilifeform: (clock does run monotonically after boot)

asciilifeform: but the result is that the machine time is epoch 0 on boot.

asciilifeform: i did not include ntp

asciilifeform: did we ever get anywhere in the ntp-or-not debate ?

asciilifeform: rather than a mega-turd each, if diffing from a virginal buildroot

asciilifeform: i will suggest that all subsequent patches for buildroot per se, be published as diffs from the one i posted last night

asciilifeform: otherwise all pogos will have the same one (it is not stored in any kind of nonvolatile memory)

asciilifeform: also need to set mac address of the nic

asciilifeform: vgaarb is enabled (there is no vga, naturally) - missed this in the cleanup

asciilifeform: found a few other minor omissions in the build

asciilifeform: nubbins`: gentoo for what

asciilifeform: (see log)

asciilifeform: nubbins`: i posted sha512's for my set, also.

asciilifeform: nubbins`: all stored in BR2_DL_DIR << we got this last night, yes

asciilifeform: almost as good as apple v apple

asciilifeform: in the original.

asciilifeform: well, orodruin

asciilifeform: always.

asciilifeform: i can't help but think of 'aradruin' when i see it

asciilifeform: aahahahaha.

asciilifeform: someone will have to discover why.

asciilifeform: odd then.

asciilifeform: decimation: are you sure you are building with the patch ?

asciilifeform: decimation: interesting. no such thing on mine.

asciilifeform: (see process separation discussion from earlier thread.)

asciilifeform: bitcoind probably ought to run as other than root.

asciilifeform: you can do this with the file system overlay (see patch and readme) or using buildroot's spiffy user generator (can't help here, never tried)

asciilifeform: add an unprivileged user.

asciilifeform: exercise for my readers!

asciilifeform: oh and another missing ingredient

asciilifeform: it is often found on routers, sex toys, miscellaneous embedded machinery

asciilifeform: (symlinked to the usual names)

asciilifeform: busybox, to those new to it, is a unix util userland in more or less 1 executable.

asciilifeform: for the build, it uses local machine's tar.

asciilifeform: for the armv5 os, that is

asciilifeform: i think we end up using busybox tar

asciilifeform: nope.

asciilifeform: or, hm, does it

asciilifeform: decimation: of course not. it never gets downloaded

asciilifeform: so can't hack uboot from inside this. yet.

asciilifeform: i think i also forgot to build any mtd utils

asciilifeform: ---

asciilifeform: can be cut from the buildroot conf.

asciilifeform: (what we actually use is busybox's udhcpd)

asciilifeform: dhcpd is built. we never use it