/mandos/release

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to mandos.conf.xml

First version of a somewhat complete D-Bus server interface.  Also
change user/group name to "_mandos".

* debian/mandos.postinst: Rename old "mandos" user and group to
                          "_mandos"; create "_mandos" user and group
                          if none exist.
* debian/mandos-client.postinst: - '' -

* initramfs-tools-hook: Try "_mandos" before "mandos" as user and
                        group name.

* mandos (_datetime_to_dbus_struct): New; was previously local.
  (Client.started): Renamed to "last_started".  All users changed.
  (Client.started): New; boolean.
  (Client.dbus_object_path): New.
  (Client.check_command): Renamed to "checker_command".  All users
                          changed.
  (Client.__init__): Set and use "self.dbus_object_path".  Set
                     "self.started".
  (Client.start): Update "self.started".  Emit "self.PropertyChanged"
                  signals for both "started" and "last_started".
  (Client.stop): Update "self.started".  Emit "self.PropertyChanged"
                 signal for "started".
  (Client.checker_callback): Take additional "command" argument.  All
                             callers changed. Emit
                             "self.PropertyChanged" signal.
  (Client.bump_timeout): Emit "self.PropertyChanged" signal for
                         "last_checked_ok".
  (Client.start_checker): Emit "self.PropertyChanged" signal for
                          "checker_running".
  (Client.stop_checker): Emit "self.PropertyChanged" signal for
                         "checker_running".
  (Client.still_valid): Bug fix: use "getattr(self, started, False)"
                        instead of "self.started" in case this client
                        object is so new that the "started" attribute
                        has not been created yet.
  (Client.IntervalChanged, Client.CheckerIsRunning, Client.GetChecker,
  Client.GetCreated, Client.GetFingerprint, Client.GetHost,
  Client.GetInterval, Client.GetName, Client.GetStarted,
  Client.GetTimeout, Client.StateChanged, Client.TimeoutChanged):
  Removed; all callers changed.
  (Client.CheckerCompleted): Add "condition" and "command" arguments.
                             All callers changed.
  (Client.GetAllProperties, Client.PropertyChanged): New.
  (Client.StillValid): Renamed to "IsStillValid".
  (Client.StartChecker): Changed to its own function to avoid the
                         return value from "Client.start_checker()".
  (Client.Stop): Changed to its own function to avoid the return value
                 from "Client.stop()".
  (main): Try "_mandos" before "mandos" as user and group name.
          Removed inner function "remove_from_clients".  New inner
          class "MandosServer".

Show diffs side-by-side

added added

removed removed

Lines of Context:
3
3
        "http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
4
4
<!ENTITY CONFNAME "mandos.conf">
5
5
<!ENTITY CONFPATH "<filename>/etc/mandos/mandos.conf</filename>">
6
 
<!ENTITY TIMESTAMP "2011-11-26">
 
6
<!ENTITY TIMESTAMP "2008-09-30">
7
7
<!ENTITY % common SYSTEM "common.ent">
8
8
%common;
9
9
]>
20
20
        <firstname>Björn</firstname>
21
21
        <surname>Påhlsson</surname>
22
22
        <address>
23
 
          <email>belorn@recompile.se</email>
 
23
          <email>belorn@fukt.bsnet.se</email>
24
24
        </address>
25
25
      </author>
26
26
      <author>
27
27
        <firstname>Teddy</firstname>
28
28
        <surname>Hogeborn</surname>
29
29
        <address>
30
 
          <email>teddy@recompile.se</email>
 
30
          <email>teddy@fukt.bsnet.se</email>
31
31
        </address>
32
32
      </author>
33
33
    </authorgroup>
34
34
    <copyright>
35
35
      <year>2008</year>
36
 
      <year>2009</year>
37
 
      <year>2011</year>
38
36
      <holder>Teddy Hogeborn</holder>
39
37
      <holder>Björn Påhlsson</holder>
40
38
    </copyright>
132
130
        </listitem>
133
131
      </varlistentry>
134
132
      
135
 
      <varlistentry>
136
 
        <term><option>use_dbus<literal> = </literal>{ <literal
137
 
          >1</literal> | <literal>yes</literal> | <literal
138
 
          >true</literal> | <literal>on</literal> | <literal
139
 
          >0</literal> | <literal>no</literal> | <literal
140
 
          >false</literal> | <literal>off</literal> }</option></term>
141
 
        <listitem>
142
 
          <xi:include href="mandos-options.xml" xpointer="dbus"/>
143
 
        </listitem>
144
 
      </varlistentry>
145
 
      
146
 
      <varlistentry>
147
 
        <term><option>use_ipv6<literal> = </literal>{ <literal
148
 
          >1</literal> | <literal>yes</literal> | <literal
149
 
          >true</literal> | <literal>on</literal> | <literal
150
 
          >0</literal> | <literal>no</literal> | <literal
151
 
          >false</literal> | <literal>off</literal> }</option></term>
152
 
        <listitem>
153
 
          <xi:include href="mandos-options.xml" xpointer="ipv6"/>
154
 
        </listitem>
155
 
      </varlistentry>
156
 
      
157
 
      <varlistentry>
158
 
        <term><option>restore<literal> = </literal>{ <literal
159
 
          >1</literal> | <literal>yes</literal> | <literal
160
 
          >true</literal> | <literal>on</literal> | <literal
161
 
          >0</literal> | <literal>no</literal> | <literal
162
 
          >false</literal> | <literal>off</literal> }</option></term>
163
 
        <listitem>
164
 
          <xi:include href="mandos-options.xml" xpointer="restore"/>
165
 
        </listitem>
166
 
      </varlistentry>
167
 
      
168
 
      <varlistentry>
169
 
        <term><option>statedir<literal> = </literal><replaceable
170
 
        >DIRECTORY</replaceable></option></term>
171
 
        <listitem>
172
 
          <xi:include href="mandos-options.xml" xpointer="statedir"/>
173
 
        </listitem>
174
 
      </varlistentry>
175
 
      
176
133
    </variablelist>
177
134
  </refsect1>
178
135
  
210
167
[DEFAULT]
211
168
# A configuration example
212
169
interface = eth0
213
 
address = fe80::aede:48ff:fe71:f6f2
 
170
address = 2001:db8:f983:bd0b:30de:ae4a:71f2:f672
214
171
port = 1025
215
172
debug = true
216
173
priority = SECURE256:!CTYPE-X.509:+CTYPE-OPENPGP
217
174
servicename = Daena
218
 
use_dbus = False
219
 
use_ipv6 = True
220
 
restore = True
221
 
statedir = /var/lib/mandos
222
175
      </programlisting>
223
176
    </informalexample>
224
177
  </refsect1>
226
179
  <refsect1 id="see_also">
227
180
    <title>SEE ALSO</title>
228
181
    <para>
229
 
      <citerefentry><refentrytitle>intro</refentrytitle>
230
 
      <manvolnum>8mandos</manvolnum></citerefentry>,
231
182
      <citerefentry><refentrytitle>gnutls_priority_init</refentrytitle
232
183
      ><manvolnum>3</manvolnum></citerefentry>,
233
184
      <citerefentry><refentrytitle>mandos</refentrytitle>
261
212
              <para>
262
213
                The clients use IPv6 link-local addresses, which are
263
214
                immediately usable since a link-local addresses is
264
 
                automatically assigned to a network interface when it
 
215
                automatically assigned to a network interfaces when it
265
216
                is brought up.
266
217
              </para>
267
218
            </listitem>