I'm working on setting up an OPKG repository to be used by embedded linux devices. We'd like to secure the server so that only our devices have access to the packages. I couldn't find any information on how to do this other than some references to http proxy username and passwords. Is there a way this can be achieved? I believe opkg repositories use the same system as ipkg.
Securing an OPKG repository
1.9k Views Asked by gabe_torres At
2
There are 2 best solutions below
0
Alexander K
On
Maybe OPKG changed in time but now I was able to secure repo with basic auth like here HTTP Basic Authentication credentials passed in URL and encryption)
So /etc/opkg/customfeeds.conf contain something like this:
src/gz closed_repo http://login:[email protected]/path/to/repo
Just to be clear: I use lede project build.
Related Questions in SECURITY
- HTTPS configuration in Spring Boot, server returning timeout
- HSM ZKA control mask values
- OWASP Amass Subcommands
- Is there a need for BPF Linux namespace?
- Error when trying to execute a binary compiled in a Kali Linux machine on an Ubuntu system
- When sanitize/encode while implementing tags system like on SO
- spring security version in spring-boot-starter-security
- I am currently trying to implement a rudimentary firewall from a video I watched but the nimda worm detection is not working and i do not know why?
- Is it possible for `sudo` to fail temporarily with the correct password? Hacking suspected
- Is it viable proxying all my mobile apps requests, to some kind knowing that a request is coming from a secure source
- What abilities should I concentrate on while bug hunting, and how can I improve the quality of my bug bounty reports?
- System.ArgumentOutOfRangeException: I passed this error in every single program
- How to prevent users from creating custom client apps?
- Does server-side content security policy exist for youtube video player API, app, mod apks and website?
- Can we pass a hostname/IP address as a query string in a GET request in REST API
Related Questions in EMBEDDED-LINUX
- Touch calibration error when using Avalonia UI with Raspberry PI 4 (lite) DRM Mode
- Can't ping to 8.8.8.8 and google.com in beaglebone black
- How to extract the .img file into normal kernel source file in the linux?
- Using C++ libgpiod to calculate interval and speed between events
- yocto bitbake 'python3 setup.py bdist_wheel ' execution failed
- How to reduce cached memory used by Linux kernel on embedded linux platform
- Unable to parse input tree, possibly due to dash
- How to add a button handler to GPIO pin through a push button
- Linux of_platform_depopulate() does not remove drivers
- Filling a sk_buff with content of recieved frame
- How to reduce reserved memory allocated by Linux kernel during boot time
- embedded linux buildroot how to work with axi-gpio?
- How do I know when the dsa_loop and dsa_loop_bdinfo linux kernel modules are working?
- buildroot for zedboard, how to enable axi-gpio in device tree?
- Driver is not loading when there 2 or more source files
Related Questions in PACKAGE-MANAGERS
- How to list the files making up a deployed npm package?
- Resolve dependencies of an arbitrary Debian or Ubuntu package
- Why can't I install libpq-dev or libssl-dev on ubuntu 20.04.5?
- How to specify the architecture/platform for a channel for a global pixi install?
- How can I uninstall Jupyter Notebook if I don't know the package manager?
- Providing Dependabot with a list of dependencies
- What are the key differences between Spack and Conda package managers?
- What causes shared object dependency to change after WSL shutdown/restart?
- Package management - list of common version named tags? - E.g., "latest", "lts"
- Wondering if I can manage Font Awesome Kit on v6 using nom or package manager
- Importing a custom package from DevOps in Unity UPM
- pnpm ERR_PNPM_SYMLINK_FAILED error on windows machine
- Getting "Could not build wheels for numpy, which is a required to install pyproject.toml-based projects" When Numpy is already installed
- I want to change app icon progrmatically how to do it in android
- Symlink to a custom-made cache in the node_modules folder
Related Questions in OPKG
- circular dependency between two python libs
- npm and node installed by opkg get Segmentation fault error
- Failed to open //usr/lib/opkg/info/luci-i18n-unblockmusic-zh-cn.list: No such file or directory
- QT qmake start a process on target afer deploy
- How to install gtk2.0 with OPKG package manager?
- Yocto : How to make opkg aware of deletion of a file during pkg_postinst_ontarget_${PN}()
- Close starting service after opkg package install
- Fail message with opkg in yocto project
- Yocto install package at rellocated place on image
- Is there a source build available for the libxslt development package?
- Package gpg signature Failed
- Is it possible to "install" additional development packages into the SDK
- postinst is not called, but preinst
- setxkbmap equivalent in a Yocto Project based Distro
- How to install gcc on openwrt?
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular # Hahtags
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
You don't really need to modify the sources - compiling OPKG with
libcurlwill enable http basic auth:./configure --enable-curlbefore runningmakeIn opkg.conf just add
option http_auth user:passand it works.I remember seeing this change was added some time ago - don't recall when or which version but it works with the latest.