/mandos/trunk

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/trunk
185 by Teddy Hogeborn
* .bzr-builddeb/default.conf: New.
1
Source: mandos
2
Section: admin
909 by Teddy Hogeborn
Change Debian package priority from "extra" to "optional".
3
Priority: optional
505.1.2 by Teddy Hogeborn
Change "fukt.bsnet.se" to "recompile.se" throughout.
4
Maintainer: Mandos Maintainers <mandos@recompile.se>
5
Uploaders: Teddy Hogeborn <teddy@recompile.se>,
6
	   Björn Påhlsson <belorn@recompile.se>
634 by Teddy Hogeborn
* debian/control (Build-Depends): Changed debhelper version to (>= 9)
7
Build-Depends: debhelper (>= 9), docbook-xml, docbook-xsl,
891 by Teddy Hogeborn
Fix mandos package dependencies for the GPGME library.
8
	libavahi-core-dev, libgpgme-dev | libgpgme11-dev,
9
	libgnutls28-dev (>= 3.3.0) | gnutls-dev (>= 3.3.0),
10
	xsltproc, pkg-config, libnl-route-3-dev
806 by Teddy Hogeborn
Fix Debian dependency bugs and lintian checks.
11
Build-Depends-Indep: systemd, python (>= 2.7), python (<< 3),
830 by Teddy Hogeborn
Server: Use python-gi instead of old python-gobject
12
	python-dbus, python-gi
846 by Teddy Hogeborn
debian/control: Update Standards-Version to 3.9.8
13
Standards-Version: 3.9.8
862 by Teddy Hogeborn
Use HTTPS for Vcs-Bzr and Vcs-Browser package links.
14
Vcs-Bzr: https://ftp.recompile.se/pub/mandos/trunk
15
Vcs-Browser: https://bzr.recompile.se/loggerhead/mandos/trunk/files
844 by Teddy Hogeborn
Use HTTPS in home page links
16
Homepage: https://www.recompile.se/mandos
185 by Teddy Hogeborn
* .bzr-builddeb/default.conf: New.
17
18
Package: mandos
19
Architecture: all
806 by Teddy Hogeborn
Fix Debian dependency bugs and lintian checks.
20
Depends: ${misc:Depends}, python (>= 2.7), python (<< 3),
801 by Teddy Hogeborn
Stop using python-gnutls. Use GnuTLS 3.3 or later directly.
21
	libgnutls28-dev (>= 3.3.0) | libgnutls30 (>= 3.3.0),
830 by Teddy Hogeborn
Server: Use python-gi instead of old python-gobject
22
	python-dbus, python-gi, avahi-daemon, adduser, python-urwid,
886 by Teddy Hogeborn
debian/control: Allow GnuPG 2 with the server.
23
	gnupg2 | gnupg, systemd-sysv | lsb-base (>= 3.0-6)
709 by Teddy Hogeborn
mandos: The Debian package should prefer "ssh-client" over "fping".
24
Recommends: ssh-client | fping
496 by Teddy Hogeborn
* debian/control: Fix language for lintian.
25
Description: server giving encrypted passwords to Mandos clients
185 by Teddy Hogeborn
* .bzr-builddeb/default.conf: New.
26
 This is the server part of the Mandos system, which allows
27
 computers to have encrypted root file systems and at the
28
 same time be capable of remote and/or unattended reboots.
29
 .
30
 The computers run a small client program in the initial RAM
31
 disk environment which will communicate with a server over a
32
 network.  All network communication is encrypted using TLS.
33
 The clients are identified by the server using an OpenPGP
34
 key; each client has one unique to it.  The server sends the
35
 clients an encrypted password.  The encrypted password is
36
 decrypted by the clients using the same OpenPGP key, and the
37
 password is then used to unlock the root file system,
38
 whereupon the computers can continue booting normally.
39
40
Package: mandos-client
237.6.2 by Robert Millan
* debian/changelog (1.5.3-1.2): New entry.
41
Architecture: linux-any
414 by Teddy Hogeborn
Bug fix: mandos-client needs GnuPG but lacked a dependency on it. The
42
Depends: ${shlibs:Depends}, ${misc:Depends}, adduser, cryptsetup,
805 by Teddy Hogeborn
Use GnuPG 2 if available
43
	initramfs-tools, dpkg-dev (>=1.16.0)
765 by Teddy Hogeborn
Install client Diffie-Hellman parameters into initramfs.
44
Recommends: ssh, gnutls-bin | openssl
505.1.13 by Teddy Hogeborn
Miscellaneous fixes prompted by lintian:
45
Breaks: dropbear (<= 0.53.1-1)
185 by Teddy Hogeborn
* .bzr-builddeb/default.conf: New.
46
Enhances: cryptsetup
47
Description: do unattended reboots with an encrypted root file system
48
 This is the client part of the Mandos system, which allows
49
 computers to have encrypted root file systems and at the
50
 same time be capable of remote and/or unattended reboots.
51
 .
52
 The computers run a small client program in the initial RAM
53
 disk environment which will communicate with a server over a
54
 network.  All network communication is encrypted using TLS.
55
 The clients are identified by the server using an OpenPGP
56
 key; each client has one unique to it.  The server sends the
57
 clients an encrypted password.  The encrypted password is
58
 decrypted by the clients using the same OpenPGP key, and the
59
 password is then used to unlock the root file system,
60
 whereupon the computers can continue booting normally.