Visit Our UNIX and Linux User Community

Linux and UNIX Man Pages

Test Your Knowledge in Computers #790
Difficulty: Easy
The AND gate is a basic digital logic gate that implements logical conjunction.
True or False?
Linux & Unix Commands - Search Man Pages

tcsd(8) [centos man page]

tcsd(8) 						      System Manager's Manual							   tcsd(8)

								TCG Software Stack

tcsd - daemon that manages Trusted Computing resources SYNOPSIS
tcsd [-f] [-e] [-c <configfile> ] [-h] DESCRIPTION
Trousers is an open-source TCG Software Stack (TSS), released under the BSD License. Trousers aims to be compliant with the current (1.1b) and upcoming (1.2) TSS specifications available from the Trusted Computing Group website: tcsd is a user space daemon that should be (according to the TSS spec) the only portal to the TPM device driver. At boot time, tcsd should be started, it should open the TPM device driver and from that point on, all requests to the TPM should go through the TSS stack. The tcsd manages TPM resources and handles requests from TSP's both local and remote. -f, --foreground run the daemon in the foreground -e attempt to connect to software TPMs over TCP -c, --config <configfile> use the provided configuration file rather than the default configuration file -h, --help display help message ACCESS CONTROL
There are two types of access control for the tcsd, access to the daemon's socket itself and access to specific commands internal to the tcsd. Access to the tcsd's port should be controlled by the system administrator using firewall rules. If using iptables, the following rule will allow a specific host access to the tcsd: # iptables -A INPUT -s $IP_ADDRESS -p tcp --destination-port 30003 -j ACCEPT Access to individual commands internal to the tcsd is configured by the tcsd configuration file's "remote_ops" directive. Each function call in the TCS API is reachable by a unique ordinal. Each labeled "remote op" actually defines a set of ordinals (usually more than one) necessary to accomplish the operation. So, for example, the "random" operation enables the ordinals for opening and closing a context, calling TCS_StirRandom and TCS_GetRandom, as well as TCS_FreeMemory. By default, connections from localhost will allow any ordinals. DATA FILES
TSS applications have access to 2 different kinds of 'persistant' storage. 'User' persistant storage has the lifetime of that of the application using it and therefore is destroyed when an application exits. User PS is controlled by the TSP of the application. 'System' persistent storage is controlled by the TCS and stays valid across application lifetimes, tcsd restarts and system resets. Data registered in system PS stays valid until an application requests that it be removed. User PS files are by default stored as /var/lib/tpm/user.{pid} and the system PS file by default is /var/lib/tpm/ The system PS file is initially created when ownership of the TPM is first taken. CONFIGURATION
tcsd configuration is stored by default in /etc/tcsd.conf DEBUG OUTPUT
If TrouSerS has been compiled with debugging enabled, the debugging output can be supressed by setting the TSS_DEBUG_OFF environment variable. DEVICE DRIVERS
tcsd is compatible with the IBM Research TPM device driver available from and the TPM device driver available from, which is also available in the upstream Linux kernel and many Linux distros. CONFORMING TO
tcsd conforms to the Trusted Computing Group Software Specification version 1.1 Golden SEE ALSO
tcsd.conf(5) AUTHOR
Report bugs to <> TSS 1.1 2005-03-15 tcsd(8)

Check Out this Related Man Page

tpm_changeownerauth(8)					      System Manager's Manual					    tpm_changeownerauth(8)

						       TPM Management - tpm_changeownerauth

tpm_changeownerauth - change the authorization data associated with the owner or SRK SYNOPSIS
tpm_changeownerauth [OPTION] DESCRIPTION
tpm_changeownerauth allows for changing the authorization data for the TPM owner or the TPM's Storage Root Key (via the TPM_ChangeAuthOwner API). This operation prompts for current password, followed by the new password and a confirmation of the new password. The --owner option changes the TPM owner password and --srk option changes the TPM's SRK password. The --well-known option is used when SRK or owner passwords need to be changed and current owner password is a secret of zeros, --set-well-known option changes current password to a secret of zeros, both options do not work by themselves, they must be used with --owner and --srk options to indicate which of these passwords will be changed. -h, --help Display command usage info. -v, --version Display command version info. -l, --log [none|error|info|debug] Set logging level. -u, --unicode Use TSS UNICODE encoding for passwords to comply with applications using TSS popup boxes -o, --owner Change the authorization data for the TPM owner. -s, --srk Change the authorization data for the TPM's Storage Root Key. -g, --original_password_unicode Use TSS UNICODE encoding for original password to comply with applications using TSS popup boxes -n, --new_password_unicode Use TSS UNICODE encoding for new password to comply with applications using TSS popup boxes -z, --well-known Change password to a new one when current owner password is a secret of all zeros (20 bytes of zeros). It must be specified which password (owner, SRK or both) to change -r, --set-well-known Change password to a secret of all zeros (20 bytes of zeros). It must be specified which password (owner, SRK or both) to change SEE ALSO tpm_version(1), tpm_takeownership(8), tcsd(8) REPORTING BUGS
Report bugs to <> TPM Management 2005-05-06 tpm_changeownerauth(8)

Featured Tech Videos