/mandos/release

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to intro.xml

  • Committer: Teddy Hogeborn
  • Date: 2014-08-06 20:45:04 UTC
  • mto: (237.7.304 trunk)
  • mto: This revision was merged to the branch mainline in revision 321.
  • Revision ID: teddy@recompile.se-20140806204504-lf39wk4ffo9s0ua3
Bug fix for mandos-keygen: Unquote escaped hostname in SSH checker.

%%(host)s is already escaped by re.escape(), and should not be quoted.

* mandos-keygen (password): When printing SSH key fingerprinting
                            checker command of the client config
                            section, do not quote %%(host)s.

Show diffs side-by-side

added added

removed removed

Lines of Context:
1
1
<?xml version="1.0" encoding="UTF-8"?>
2
2
<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
3
3
"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
4
 
<!ENTITY TIMESTAMP "2015-03-08">
 
4
<!ENTITY TIMESTAMP "2014-06-22">
5
5
<!ENTITY % common SYSTEM "common.ent">
6
6
%common;
7
7
]>
197
197
      </para>
198
198
    </refsect2>
199
199
    
200
 
    <refsect2 id="sniff">
201
 
      <title>How about sniffing the network traffic and decrypting it
202
 
      later by physically grabbing the Mandos client and using its
203
 
      key?</title>
204
 
      <para>
205
 
        We only use <acronym>PFS</acronym> (Perfect Forward Security)
206
 
        key exchange algorithms in TLS, which protects against this.
207
 
      </para>
208
 
    </refsect2>
209
 
    
210
200
    <refsect2 id="physgrab">
211
201
      <title>Physically grabbing the Mandos server computer?</title>
212
202
      <para>