/mandos/release

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to INSTALL

  • Committer: Teddy Hogeborn
  • Date: 2014-03-10 06:34:36 UTC
  • mto: (237.7.272 trunk)
  • mto: This revision was merged to the branch mainline in revision 311.
  • Revision ID: teddy@recompile.se-20140310063436-zksdghqvv6k1pbyg
Do not add a new server to server list if clock_gettime() fails

* plugins.d/mandos-client.c (add_server): Set server.last_seen before
                                          adding new server, in case
                                          clock_gettime() fails.

Show diffs side-by-side

added added

removed removed

Lines of Context:
47
47
    
48
48
    Strongly recommended:
49
49
    + fping 2.4b2-to-ipv6 http://www.fping.com/
50
 
    + ssh-keyscan from OpenSSH http://www.openssh.com/
51
50
    
52
51
    Package names:
53
52
    python-gnutls avahi-daemon python python-avahi python-dbus
54
 
    python-gobject python-urwid ssh-client
 
53
    python-gobject python-urwid
55
54
    
56
55
*** Mandos Client
57
56
    + initramfs-tools 0.85i
61
60
    + GnuPG 1.4.9         http://www.gnupg.org/
62
61
    + GPGME 1.1.6         http://www.gnupg.org/related_software/gpgme/
63
62
    
64
 
    Strongly recommended:
65
 
    + OpenSSH             http://www.openssh.com/
66
 
    
67
63
    Package names:
68
64
    initramfs-tools libgnutls-dev libavahi-core-dev gnupg
69
 
    libgpgme11-dev ssh
 
65
    libgpgme11-dev
70
66
 
71
67
* Installing the Mandos server
72
68
  
136
132
  
137
133
  You may want to tighten or loosen the timeouts in the server
138
134
  configuration files; see mandos.conf(5) and mandos-clients.conf(5).
139
 
  If IPsec is not used and SSH is not installed, it is suggested that
140
 
  a more cryptographically secure checker program is used and
141
 
  configured, since, without IPsec, ping packets can be faked.
 
135
  If IPsec is not used, it is suggested that a more cryptographically
 
136
  secure checker program is used and configured, since without IPsec
 
137
  ping packets can be faked.