project:brmdoor:start
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
project:brmdoor:start [2018/10/06 19:48] – Remote access abyssal | project:brmdoor:start [2020/08/16 18:42] – [Restart brmdoor remotely] abyssal | ||
---|---|---|---|
Line 67: | Line 67: | ||
< | < | ||
- | cd brmdoor_libnfc/; | + | cd brmdoor_libnfc/; |
</ | </ | ||
Line 80: | Line 80: | ||
< | < | ||
git commit -m "Added card for member Ctulhu" | git commit -m "Added card for member Ctulhu" | ||
+ | </ | ||
+ | |||
+ | ===== Adding a new Desfire with authentication to JendaSAP and import to brmdoor ===== | ||
+ | |||
+ | This is similar to above, but has extra step in programming the Desfire. | ||
+ | |||
+ | <note important> | ||
+ | The Desfire needs to be programmed with correct signature first, otherwise brmdoor will reject it. | ||
+ | </ | ||
+ | |||
+ | Writing a signature on a Desfire card (can be done on raspi or using PN532 reader that is in the lab). You must know the private Ed25519 key matching the public key in brmdoor' | ||
+ | |||
+ | < | ||
+ | ./ | ||
+ | </ | ||
+ | |||
+ | Similar to above, but you add line " | ||
+ | |||
+ | < | ||
+ | desfire 04631982cc2280 | ||
+ | </ | ||
+ | |||
+ | The parse.py mentioned above will also create '' | ||
+ | |||
+ | < | ||
+ | cd brmdoor_libnfc/; | ||
+ | </ | ||
+ | |||
+ | ==== Checking that the signature on Desfire ==== | ||
+ | |||
+ | Can be done with brmdoor, PN352 reader on PC or also on mobile app that can show NFC NDEF data: | ||
+ | |||
+ | < | ||
+ | cd brmdoor_libnfc/; | ||
+ | </ | ||
+ | |||
+ | You should see something like: | ||
+ | |||
+ | < | ||
+ | {" | ||
+ | </ | ||
+ | ===== Restarting brmdoor remotely ===== | ||
+ | |||
+ | If brmdoor stops responding for some reason, restart it using: | ||
+ | |||
+ | < | ||
+ | systemctl restart brmdoor.service | ||
+ | </ | ||
+ | |||
+ | In order to get to brmdoor from outside, you'll need to find a hop server accessible from outside, like bbs.brmlab.cz | ||
+ | |||
+ | Sample entry in '' | ||
+ | |||
+ | < | ||
+ | Host = bbs.brmlab.cz | ||
+ | VerifyHostKeyDNS = yes | ||
+ | User = root | ||
+ | IdentityFile = ~/ | ||
+ | ForwardX11 = no | ||
+ | UsePrivilegedPort = no | ||
+ | Protocol 2 | ||
+ | |||
+ | Host = brmdoor-external | ||
+ | ProxyCommand = ssh bbs.brmlab.cz nc %h 22 | ||
+ | Hostname = 192.168.77.30 | ||
+ | Port = 22 | ||
+ | User = root | ||
+ | IdentityFile = ~/ | ||
+ | ForwardX11 = no | ||
+ | UsePrivilegedPort = no | ||
+ | Protocol 2 | ||
</ | </ | ||
Line 236: | Line 307: | ||
===== Remote access from outside brmlab ===== | ===== Remote access from outside brmlab ===== | ||
- | Add following to your ~/ | + | Add following to your ~/ |
< | < |
project/brmdoor/start.txt · Last modified: 2023/09/17 20:35 by abyssal