/mandos/release : revision 110

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to mandos-keygen.xml

Committer: Teddy Hogeborn
Date: 2008-08-29 05:53:59 UTC
Revision ID: teddy@fukt.bsnet.se-20080829055359-wkdasnyxtylmnxus

* mandos.xml (EXAMPLE): Replaced all occurences of command name with
                        "&COMMANDNAME;".

* plugins.d/password-prompt.c (main): Improved some documentation
                                      strings.  Do perror() of
                                      tcgetattr() fails.  Add debug
                                      output if interrupted by signal.
                                      Loop over write() instead of
                                      using fwrite() when outputting
                                      password.  Add debug output if
                                      getline() returns 0, unless it
                                      was caused by a signal.  Add
                                      exit status code to debug
                                      output.

* plugins.d/password-prompt.xml: Changed all single quotes to double
                                 quotes for consistency.  Removed
                                 <?xml-stylesheet>.
  (ENTITY TIMESTAMP): New.  Automatically updated by Emacs time-stamp
                      by using Emacs local variables.
  (/refentry/refentryinfo/title): Changed to "Mandos Manual".
  (/refentry/refentryinfo/productname): Changed to "Mandos".
  (/refentry/refentryinfo/date): New; set to "&TIMESTAMP;".
  (/refentry/refentryinfo/copyright): Split copyright holders.
  (/refentry/refnamediv/refpurpose): Improved wording.
  (SYNOPSIS): Fix to use correct markup.  Add short options.
  (DESCRIPTION, OPTIONS): Improved wording.
  (OPTIONS): Improved wording.  Use more correct markup.  Document
             short options.
  (EXIT STATUS): Add text.
  (ENVIRONMENT): Document use of "cryptsource" and "crypttarget".
  (FILES): REMOVED.
  (BUGS): Add text.
  (EXAMPLE): Added some examples.
  (SECURITY): Added text.
  (SEE ALSO): Remove reference to mandos(8).  Add reference to
              crypttab(5).

files added:
.bzrignore

files modified:
Makefile

TODO

clients.conf

initramfs-tools-hook

mandos

mandos-clients.conf.xml

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf.xml

mandos.xml

plugin-runner.c

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/password-request.c

Show diffs side-by-side

added added

removed removed

mandos-keygen.xml

<?xml version='1.0' encoding='UTF-8'?>

<?xml version="1.0" encoding="UTF-8"?>

<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"

"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [

<!ENTITY VERSION "1.0">

<title>&COMMANDNAME;</title>

<productname>&COMMANDNAME;</productname>

<productnumber>&VERSION;</productnumber>

</authorgroup>

<holder>Teddy Hogeborn & Björn Påhlsson</holder>

<holder>Teddy Hogeborn</holder>

<holder>Björn Påhlsson</holder>

</copyright>

<para>

</group>

<arg choice="plain"><option>--subtype</option>

</group>

<arg choice="plain"><option>--sublength</option>

</group>

</group>

119

128

120

129

</group>

121

130

131

132

133

</group>

134

135

136

137

</group>

138

122

139

123

140

124

141

</group>

141

158

142

159

<command>&COMMANDNAME;</command>

143

160

144

145

146

</group>

147

</cmdsynopsis>

148

149

<command>&COMMANDNAME;</command>

150

151

152

<arg choice='plain'><option>--version</option></arg>

161

162

<arg choice="plain"><option>--password</option></arg>

163

</group>

164

165

166

<replaceable>directory</replaceable></arg>

167

</group>

168

169

170

171

</group>

172

</cmdsynopsis>

173

174

<command>&COMMANDNAME;</command>

175

176

177

178

</group>

179

</cmdsynopsis>

180

181

<command>&COMMANDNAME;</command>

182

183

184

<arg choice="plain"><option>--version</option></arg>

153

185

</group>

154

186

</cmdsynopsis>

155

187

</refsynopsisdiv>

165

197

initrd image, but this, like most things, can be changed with

166

198

command line options.

167

199

</para>

200

<para>

201

It can also be used to generate ready-made sections for

202

<citerefentry><refentrytitle>mandos-clients.conf</refentrytitle>

203

<manvolnum>5</manvolnum></citerefentry> using the

204

<option>--password</option> option.

205

</para>

168

206

</refsect1>

169

207

170

208

197

235

<replaceable>directory</replaceable></literal></term>

198

236

199

237

<para>

200

Target directory for key files.

238

Target directory for key files. Default is

239

<filename>/etc/mandos</filename>.

201

240

</para>

202

241

</listitem>

203

242

</varlistentry>

207

246

208

247

209

248

<para>

210

Key type. Default is DSA.

249

Key type. Default is <quote>DSA</quote>.

211

250

</para>

212

251

</listitem>

213

252

</varlistentry>

217

256

218

257

219

258

<para>

220

Key length in bits. Default is 1024.

259

Key length in bits. Default is 2048.

260

</para>

261

</listitem>

262

</varlistentry>

263

264

265

<term><literal>-s</literal>, <literal>--subtype

266

267

268

<para>

269

Subkey type. Default is <quote>ELG-E</quote> (Elgamal

270

encryption-only).

271

</para>

272

</listitem>

273

</varlistentry>

274

275

276

<term><literal>-L</literal>, <literal>--sublength

277

278

279

<para>

280

Subkey length in bits. Default is 2048.

221

281

</para>

222

282

</listitem>

223

283

</varlistentry>

238

298

239

299

<para>

240

300

Comment field for key. The default value is

241

"<literal>Mandos client key</literal>".

301

<quote><literal>Mandos client key</literal></quote>.

242

302

</para>

243

303

</listitem>

244

304

</varlistentry>

263

323

</para>

264

324

</listitem>

265

325

</varlistentry>

326

327

<term><literal>-p</literal>, <literal>--password</literal

328

></term>

329

330

<para>

331

Prompt for a password and encrypt it with the key already

332

present in either <filename>/etc/mandos</filename> or the

333

directory specified with the <option>--dir</option>

334

option. Outputs, on standard output, a section suitable

335

for inclusion in <citerefentry><refentrytitle

336

>mandos-clients.conf</refentrytitle><manvolnum

337

>8</manvolnum></citerefentry>. The host name or the name

338

specified with the <option>--name</option> option is used

339

for the section header. All other options are ignored,

340

and no keys are created.

341

</para>

342

</listitem>

343

</varlistentry>

266

344

</variablelist>

267

345

</refsect1>

268

346

270

348

<title>OVERVIEW</title>

271

349

<xi:include href="overview.xml"/>

272

350

<para>

273

This program is a small program to generate new OpenPGP keys for

351

This program is a small utility to generate new OpenPGP keys for

274

352

new Mandos clients.

275

353

</para>

276

354

</refsect1>

371

449

372

450

<title>SECURITY</title>

373

451

<para>

374

The <option>--type</option> and <option>--length</option>

452

The <option>--type</option>, <option>--length</option>,

453

<option>--subtype</option>, and <option>--sublength</option>

375

454

options can be used to create keys of insufficient security. If

376

455

in doubt, leave them to the default values.

377

456

</para>

Older »