/mandos/release

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to mandos.conf.xml

First version of a somewhat complete D-Bus server interface.  Also
change user/group name to "_mandos".

* debian/mandos.postinst: Rename old "mandos" user and group to
                          "_mandos"; create "_mandos" user and group
                          if none exist.
* debian/mandos-client.postinst: - '' -

* initramfs-tools-hook: Try "_mandos" before "mandos" as user and
                        group name.

* mandos (_datetime_to_dbus_struct): New; was previously local.
  (Client.started): Renamed to "last_started".  All users changed.
  (Client.started): New; boolean.
  (Client.dbus_object_path): New.
  (Client.check_command): Renamed to "checker_command".  All users
                          changed.
  (Client.__init__): Set and use "self.dbus_object_path".  Set
                     "self.started".
  (Client.start): Update "self.started".  Emit "self.PropertyChanged"
                  signals for both "started" and "last_started".
  (Client.stop): Update "self.started".  Emit "self.PropertyChanged"
                 signal for "started".
  (Client.checker_callback): Take additional "command" argument.  All
                             callers changed. Emit
                             "self.PropertyChanged" signal.
  (Client.bump_timeout): Emit "self.PropertyChanged" signal for
                         "last_checked_ok".
  (Client.start_checker): Emit "self.PropertyChanged" signal for
                          "checker_running".
  (Client.stop_checker): Emit "self.PropertyChanged" signal for
                         "checker_running".
  (Client.still_valid): Bug fix: use "getattr(self, started, False)"
                        instead of "self.started" in case this client
                        object is so new that the "started" attribute
                        has not been created yet.
  (Client.IntervalChanged, Client.CheckerIsRunning, Client.GetChecker,
  Client.GetCreated, Client.GetFingerprint, Client.GetHost,
  Client.GetInterval, Client.GetName, Client.GetStarted,
  Client.GetTimeout, Client.StateChanged, Client.TimeoutChanged):
  Removed; all callers changed.
  (Client.CheckerCompleted): Add "condition" and "command" arguments.
                             All callers changed.
  (Client.GetAllProperties, Client.PropertyChanged): New.
  (Client.StillValid): Renamed to "IsStillValid".
  (Client.StartChecker): Changed to its own function to avoid the
                         return value from "Client.start_checker()".
  (Client.Stop): Changed to its own function to avoid the return value
                 from "Client.stop()".
  (main): Try "_mandos" before "mandos" as user and group name.
          Removed inner function "remove_from_clients".  New inner
          class "MandosServer".

Show diffs side-by-side

added added

removed removed

Lines of Context:
3
3
        "http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
4
4
<!ENTITY CONFNAME "mandos.conf">
5
5
<!ENTITY CONFPATH "<filename>/etc/mandos/mandos.conf</filename>">
6
 
<!ENTITY TIMESTAMP "2015-07-20">
 
6
<!ENTITY TIMESTAMP "2008-09-30">
7
7
<!ENTITY % common SYSTEM "common.ent">
8
8
%common;
9
9
]>
20
20
        <firstname>Björn</firstname>
21
21
        <surname>Påhlsson</surname>
22
22
        <address>
23
 
          <email>belorn@recompile.se</email>
 
23
          <email>belorn@fukt.bsnet.se</email>
24
24
        </address>
25
25
      </author>
26
26
      <author>
27
27
        <firstname>Teddy</firstname>
28
28
        <surname>Hogeborn</surname>
29
29
        <address>
30
 
          <email>teddy@recompile.se</email>
 
30
          <email>teddy@fukt.bsnet.se</email>
31
31
        </address>
32
32
      </author>
33
33
    </authorgroup>
34
34
    <copyright>
35
35
      <year>2008</year>
36
 
      <year>2009</year>
37
 
      <year>2011</year>
38
 
      <year>2012</year>
39
 
      <year>2013</year>
40
36
      <holder>Teddy Hogeborn</holder>
41
37
      <holder>Björn Påhlsson</holder>
42
38
    </copyright>
134
130
        </listitem>
135
131
      </varlistentry>
136
132
      
137
 
      <varlistentry>
138
 
        <term><option>use_dbus<literal> = </literal>{ <literal
139
 
          >1</literal> | <literal>yes</literal> | <literal
140
 
          >true</literal> | <literal>on</literal> | <literal
141
 
          >0</literal> | <literal>no</literal> | <literal
142
 
          >false</literal> | <literal>off</literal> }</option></term>
143
 
        <listitem>
144
 
          <xi:include href="mandos-options.xml" xpointer="dbus"/>
145
 
        </listitem>
146
 
      </varlistentry>
147
 
      
148
 
      <varlistentry>
149
 
        <term><option>use_ipv6<literal> = </literal>{ <literal
150
 
          >1</literal> | <literal>yes</literal> | <literal
151
 
          >true</literal> | <literal>on</literal> | <literal
152
 
          >0</literal> | <literal>no</literal> | <literal
153
 
          >false</literal> | <literal>off</literal> }</option></term>
154
 
        <listitem>
155
 
          <xi:include href="mandos-options.xml" xpointer="ipv6"/>
156
 
        </listitem>
157
 
      </varlistentry>
158
 
      
159
 
      <varlistentry>
160
 
        <term><option>restore<literal> = </literal>{ <literal
161
 
          >1</literal> | <literal>yes</literal> | <literal
162
 
          >true</literal> | <literal>on</literal> | <literal
163
 
          >0</literal> | <literal>no</literal> | <literal
164
 
          >false</literal> | <literal>off</literal> }</option></term>
165
 
        <listitem>
166
 
          <xi:include href="mandos-options.xml" xpointer="restore"/>
167
 
        </listitem>
168
 
      </varlistentry>
169
 
      
170
 
      <varlistentry>
171
 
        <term><option>statedir<literal> = </literal><replaceable
172
 
        >DIRECTORY</replaceable></option></term>
173
 
        <listitem>
174
 
          <xi:include href="mandos-options.xml" xpointer="statedir"/>
175
 
        </listitem>
176
 
      </varlistentry>
177
 
      
178
 
      <varlistentry>
179
 
        <term><option>socket<literal> = </literal><replaceable
180
 
        >NUMBER</replaceable></option></term>
181
 
        <listitem>
182
 
          <xi:include href="mandos-options.xml" xpointer="socket"/>
183
 
        </listitem>
184
 
      </varlistentry>
185
 
      
186
133
    </variablelist>
187
134
  </refsect1>
188
135
  
220
167
[DEFAULT]
221
168
# A configuration example
222
169
interface = eth0
223
 
address = fe80::aede:48ff:fe71:f6f2
 
170
address = 2001:db8:f983:bd0b:30de:ae4a:71f2:f672
224
171
port = 1025
225
 
debug = True
226
 
priority = SECURE256:!CTYPE-X.509:+CTYPE-OPENPGP:!RSA
 
172
debug = true
 
173
priority = SECURE256:!CTYPE-X.509:+CTYPE-OPENPGP
227
174
servicename = Daena
228
 
use_dbus = False
229
 
use_ipv6 = True
230
 
restore = True
231
 
statedir = /var/lib/mandos
232
175
      </programlisting>
233
176
    </informalexample>
234
177
  </refsect1>
236
179
  <refsect1 id="see_also">
237
180
    <title>SEE ALSO</title>
238
181
    <para>
239
 
      <citerefentry><refentrytitle>intro</refentrytitle>
240
 
      <manvolnum>8mandos</manvolnum></citerefentry>,
241
182
      <citerefentry><refentrytitle>gnutls_priority_init</refentrytitle
242
183
      ><manvolnum>3</manvolnum></citerefentry>,
243
184
      <citerefentry><refentrytitle>mandos</refentrytitle>
271
212
              <para>
272
213
                The clients use IPv6 link-local addresses, which are
273
214
                immediately usable since a link-local addresses is
274
 
                automatically assigned to a network interface when it
 
215
                automatically assigned to a network interfaces when it
275
216
                is brought up.
276
217
              </para>
277
218
            </listitem>