/mandos/release

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to mandos.conf.xml

First version of a somewhat complete D-Bus server interface.  Also
change user/group name to "_mandos".

* debian/mandos.postinst: Rename old "mandos" user and group to
                          "_mandos"; create "_mandos" user and group
                          if none exist.
* debian/mandos-client.postinst: - '' -

* initramfs-tools-hook: Try "_mandos" before "mandos" as user and
                        group name.

* mandos (_datetime_to_dbus_struct): New; was previously local.
  (Client.started): Renamed to "last_started".  All users changed.
  (Client.started): New; boolean.
  (Client.dbus_object_path): New.
  (Client.check_command): Renamed to "checker_command".  All users
                          changed.
  (Client.__init__): Set and use "self.dbus_object_path".  Set
                     "self.started".
  (Client.start): Update "self.started".  Emit "self.PropertyChanged"
                  signals for both "started" and "last_started".
  (Client.stop): Update "self.started".  Emit "self.PropertyChanged"
                 signal for "started".
  (Client.checker_callback): Take additional "command" argument.  All
                             callers changed. Emit
                             "self.PropertyChanged" signal.
  (Client.bump_timeout): Emit "self.PropertyChanged" signal for
                         "last_checked_ok".
  (Client.start_checker): Emit "self.PropertyChanged" signal for
                          "checker_running".
  (Client.stop_checker): Emit "self.PropertyChanged" signal for
                         "checker_running".
  (Client.still_valid): Bug fix: use "getattr(self, started, False)"
                        instead of "self.started" in case this client
                        object is so new that the "started" attribute
                        has not been created yet.
  (Client.IntervalChanged, Client.CheckerIsRunning, Client.GetChecker,
  Client.GetCreated, Client.GetFingerprint, Client.GetHost,
  Client.GetInterval, Client.GetName, Client.GetStarted,
  Client.GetTimeout, Client.StateChanged, Client.TimeoutChanged):
  Removed; all callers changed.
  (Client.CheckerCompleted): Add "condition" and "command" arguments.
                             All callers changed.
  (Client.GetAllProperties, Client.PropertyChanged): New.
  (Client.StillValid): Renamed to "IsStillValid".
  (Client.StartChecker): Changed to its own function to avoid the
                         return value from "Client.start_checker()".
  (Client.Stop): Changed to its own function to avoid the return value
                 from "Client.stop()".
  (main): Try "_mandos" before "mandos" as user and group name.
          Removed inner function "remove_from_clients".  New inner
          class "MandosServer".

Show diffs side-by-side

added added

removed removed

Lines of Context:
1
 
<?xml version='1.0' encoding='UTF-8'?>
 
1
<?xml version="1.0" encoding="UTF-8"?>
2
2
<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
3
3
        "http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
4
 
<!ENTITY VERSION "1.0">
5
4
<!ENTITY CONFNAME "mandos.conf">
6
5
<!ENTITY CONFPATH "<filename>/etc/mandos/mandos.conf</filename>">
 
6
<!ENTITY TIMESTAMP "2008-09-30">
 
7
<!ENTITY % common SYSTEM "common.ent">
 
8
%common;
7
9
]>
8
10
 
9
11
<refentry xmlns:xi="http://www.w3.org/2001/XInclude">
10
12
  <refentryinfo>
11
 
    <title>&CONFNAME;</title>
 
13
    <title>Mandos Manual</title>
12
14
    <!-- NWalsh’s docbook scripts use this to generate the footer: -->
13
 
    <productname>&CONFNAME;</productname>
14
 
    <productnumber>&VERSION;</productnumber>
 
15
    <productname>Mandos</productname>
 
16
    <productnumber>&version;</productnumber>
 
17
    <date>&TIMESTAMP;</date>
15
18
    <authorgroup>
16
19
      <author>
17
20
        <firstname>Björn</firstname>
33
36
      <holder>Teddy Hogeborn</holder>
34
37
      <holder>Björn Påhlsson</holder>
35
38
    </copyright>
36
 
    <legalnotice>
37
 
      <para>
38
 
        This manual page is free software: you can redistribute it
39
 
        and/or modify it under the terms of the GNU General Public
40
 
        License as published by the Free Software Foundation,
41
 
        either version 3 of the License, or (at your option) any
42
 
        later version.
43
 
      </para>
44
 
 
45
 
      <para>
46
 
        This manual page is distributed in the hope that it will
47
 
        be useful, but WITHOUT ANY WARRANTY; without even the
48
 
        implied warranty of MERCHANTABILITY or FITNESS FOR A
49
 
        PARTICULAR PURPOSE.  See the GNU General Public License
50
 
        for more details.
51
 
      </para>
52
 
 
53
 
      <para>
54
 
        You should have received a copy of the GNU General Public
55
 
        License along with this program; If not, see
56
 
        <ulink url="http://www.gnu.org/licenses/"/>.
57
 
      </para>
58
 
    </legalnotice>
 
39
    <xi:include href="legalnotice.xml"/>
59
40
  </refentryinfo>
60
 
 
 
41
  
61
42
  <refmeta>
62
43
    <refentrytitle>&CONFNAME;</refentrytitle>
63
44
    <manvolnum>5</manvolnum>
69
50
      Configuration file for the Mandos server
70
51
    </refpurpose>
71
52
  </refnamediv>
72
 
 
 
53
  
73
54
  <refsynopsisdiv>
74
 
    <synopsis>
75
 
      &CONFPATH;
76
 
    </synopsis>
 
55
    <synopsis>&CONFPATH;</synopsis>
77
56
  </refsynopsisdiv>
78
 
 
 
57
  
79
58
  <refsect1 id="description">
80
59
    <title>DESCRIPTION</title>
81
60
    <para>
93
72
      <quote>#</quote> or <quote>;</quote> are ignored and may be used
94
73
      to provide comments.
95
74
    </para>
96
 
 
 
75
    
97
76
  </refsect1>
98
77
  <refsect1>
99
78
    <title>OPTIONS</title>
100
79
    
101
80
    <variablelist>
102
81
      <varlistentry>
103
 
        <term><varname>interface</varname></term>
 
82
        <term><option>interface<literal> = </literal><replaceable
 
83
        >NAME</replaceable></option></term>
104
84
        <listitem>
105
 
          <synopsis><literal>interface = </literal><replaceable
106
 
          >IF</replaceable>
107
 
          </synopsis>
108
85
          <xi:include href="mandos-options.xml" xpointer="interface"/>
109
86
        </listitem>
110
87
      </varlistentry>
111
 
 
 
88
      
112
89
      <varlistentry>
113
 
        <term><varname>address</varname></term>
 
90
        <term><option>address<literal> = </literal><replaceable
 
91
          >ADDRESS</replaceable></option></term>
114
92
        <listitem>
115
 
          <synopsis><literal>address = </literal><replaceable
116
 
          >ADDRESS</replaceable>
117
 
          </synopsis>
118
93
          <xi:include href="mandos-options.xml" xpointer="address"/>
119
94
        </listitem>
120
95
      </varlistentry>
121
 
 
 
96
      
122
97
      <varlistentry>
123
 
        <term><varname>port</varname></term>
 
98
        <term><option>port<literal> = </literal><replaceable
 
99
        >NUMBER</replaceable></option></term>
124
100
        <listitem>
125
 
          <synopsis><literal>port = </literal><replaceable
126
 
          >PORT</replaceable>
127
 
          </synopsis>
128
101
          <xi:include href="mandos-options.xml" xpointer="port"/>
129
102
        </listitem>
130
103
      </varlistentry>
131
 
 
 
104
      
132
105
      <varlistentry>
133
 
        <term><varname>debug</varname></term>
134
 
        <listitem>
135
 
          <synopsis><literal>debug = </literal>{ <literal
 
106
        <term><option>debug<literal> = </literal>{ <literal
136
107
          >1</literal> | <literal>yes</literal> | <literal
137
108
          >true</literal> | <literal>on</literal> | <literal
138
109
          >0</literal> | <literal>no</literal> | <literal
139
 
          >false</literal> | <literal>off</literal> }
140
 
          </synopsis>
 
110
          >false</literal> | <literal>off</literal> }</option></term>
 
111
        <listitem>
141
112
          <xi:include href="mandos-options.xml" xpointer="debug"/>
142
113
        </listitem>
143
114
      </varlistentry>
144
 
 
 
115
      
145
116
      <varlistentry>
146
 
        <term><varname>priority</varname></term>
 
117
        <term><option>priority<literal> = </literal><replaceable
 
118
        >STRING</replaceable></option></term>
147
119
        <listitem>
148
 
          <synopsis><literal>priority = </literal><replaceable
149
 
          >PRIORITY</replaceable>
150
 
          </synopsis>
151
120
          <xi:include href="mandos-options.xml" xpointer="priority"/>
152
121
        </listitem>
153
122
      </varlistentry>
154
 
 
 
123
      
155
124
      <varlistentry>
156
 
        <term><varname>servicename</varname></term>
 
125
        <term><option>servicename<literal> = </literal
 
126
        ><replaceable>NAME</replaceable></option></term>
157
127
        <listitem>
158
 
          <synopsis><literal>servicename = </literal><replaceable
159
 
          >NAME</replaceable>
160
 
          </synopsis>
161
128
          <xi:include href="mandos-options.xml"
162
129
                      xpointer="servicename"/>
163
130
        </listitem>
178
145
    <para>
179
146
      The <literal>[DEFAULT]</literal> is necessary because the Python
180
147
      built-in module <systemitem class="library">ConfigParser</systemitem>
181
 
      requres it.
 
148
      requires it.
182
149
    </para>
183
150
  </refsect1>
184
151
  
212
179
  <refsect1 id="see_also">
213
180
    <title>SEE ALSO</title>
214
181
    <para>
215
 
      <citerefentry>
216
 
        <refentrytitle>mandos</refentrytitle>
217
 
        <manvolnum>8</manvolnum></citerefentry>, <citerefentry>
218
 
        <refentrytitle>mandos-clients.conf</refentrytitle>
219
 
        <manvolnum>5</manvolnum></citerefentry>
 
182
      <citerefentry><refentrytitle>gnutls_priority_init</refentrytitle
 
183
      ><manvolnum>3</manvolnum></citerefentry>,
 
184
      <citerefentry><refentrytitle>mandos</refentrytitle>
 
185
      <manvolnum>8</manvolnum></citerefentry>,
 
186
      <citerefentry><refentrytitle>mandos-clients.conf</refentrytitle>
 
187
      <manvolnum>5</manvolnum></citerefentry>
220
188
    </para>
 
189
    
 
190
    <variablelist>
 
191
      <varlistentry>
 
192
        <term>
 
193
          RFC 4291: <citetitle>IP Version 6 Addressing
 
194
          Architecture</citetitle>
 
195
        </term>
 
196
        <listitem>
 
197
          <variablelist>
 
198
            <varlistentry>
 
199
              <term>Section 2.2: <citetitle>Text Representation of
 
200
              Addresses</citetitle></term>
 
201
              <listitem><para/></listitem>
 
202
            </varlistentry>
 
203
            <varlistentry>
 
204
              <term>Section 2.5.5.2: <citetitle>IPv4-Mapped IPv6
 
205
              Address</citetitle></term>
 
206
              <listitem><para/></listitem>
 
207
            </varlistentry>
 
208
            <varlistentry>
 
209
            <term>Section 2.5.6, <citetitle>Link-Local IPv6 Unicast
 
210
            Addresses</citetitle></term>
 
211
            <listitem>
 
212
              <para>
 
213
                The clients use IPv6 link-local addresses, which are
 
214
                immediately usable since a link-local addresses is
 
215
                automatically assigned to a network interfaces when it
 
216
                is brought up.
 
217
              </para>
 
218
            </listitem>
 
219
            </varlistentry>
 
220
          </variablelist>
 
221
        </listitem>
 
222
      </varlistentry>
 
223
      <varlistentry>
 
224
        <term>
 
225
          <ulink url="http://www.zeroconf.org/">Zeroconf</ulink>
 
226
        </term>
 
227
        <listitem>
 
228
          <para>
 
229
            Zeroconf is the network protocol standard used by clients
 
230
            for finding the Mandos server on the local network.
 
231
          </para>
 
232
        </listitem>
 
233
      </varlistentry>
 
234
    </variablelist>
221
235
  </refsect1>
222
236
</refentry>
 
237
<!-- Local Variables: -->
 
238
<!-- time-stamp-start: "<!ENTITY TIMESTAMP [\"']" -->
 
239
<!-- time-stamp-end: "[\"']>" -->
 
240
<!-- time-stamp-format: "%:y-%02m-%02d" -->
 
241
<!-- End: -->