/mandos/release : revision 237.7.89

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to TODO

Committer: Teddy Hogeborn
Date: 2011-12-31 20:07:11 UTC
mfrom: (237.17.9 wireless-network-hook)
mto: (237.7.109 trunk) (299.1.1 release) (300.1.1 release) (301.1.1 release)
mto: This revision was merged to the branch mainline in revision 290.
Revision ID: teddy@recompile.se-20111231200711-6dli3r8drftem57r

Merge new wireless network hook. Fix bridge network hook to use
hardware addresses instead of interface names. Implement and document
new "CONNECT" environment variable for network hooks.

files added:
debian/source/local-options

network-hooks.d

network-hooks.d/bridge

network-hooks.d/bridge.conf

network-hooks.d/openvpn

network-hooks.d/openvpn.conf

network-hooks.d/wireless

network-hooks.d/wireless.conf

files modified:
DBUS-API

Makefile

NEWS

README

TODO

clients.conf

common.ent

dbus-mandos.conf

debian/changelog

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.docs

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.postinst

debian/mandos.prerm

debian/rules

debian/watch

init.d-mandos

initramfs-tools-hook

intro.xml

mandos

mandos-clients.conf.xml

mandos-ctl

mandos-ctl.xml

mandos-keygen

mandos-keygen.xml

mandos-monitor

mandos-monitor.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.lsm

mandos.xml

plugin-runner.c

plugin-runner.xml

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/mandos-client.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/plymouth.c

plugins.d/plymouth.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

Show diffs side-by-side

added added

removed removed

TODO

-*- org -*-

* Use _attribute_((nonnull)) wherever possible.

* [[http://www.undeadly.org/cgi?action=article&sid=20110530221728][OpenBSD]]

* mandos-applet

* mandos-client

** TODO [#A] Wireless network hook

** TODO [#B] Use capabilities instead of seteuid().

** TODO [#B] Use struct sockaddr_storage instead of a union

** TODO [#B] Use getaddrinfo(hints=AI_NUMERICHOST) instead of inet_pton()

* splashy

** TODO [#B] use scandir(3) instead of readdir(3)

* usplash

* usplash (Deprecated)

** TODO [#A] Make it work again

** TODO [#B] use scandir(3) instead of readdir(3)

** TODO Use [[info:libc:Argz%20Functions][argz_extract]]

** TODO [#B] Use openat()

* mandos (server)

** TODO [#A] Make all attributes properties!

** TODO Document why we ignore sigint

** TODO [#B] Log level :BUGS:

** TODO Persistent state :BUGS:

/var/lib/mandos/*

*** TODO /etc/mandos/clients.d/*.conf

Watch this directory and add/remove/update clients?

** TODO [#C] config for TXT record

** TODO Log level option

syslogger.setLevel(logging.WARNING)

+ SetLogLevel D-Bus call

** TODO Log level dbus option

SetLogLevel D-Bus call

** TODO Implement --foreground :BUGS:

[[info:standards:Option%20Table][Table of Long Options]]

** TODO Implement --socket

[[info:standards:Option%20Table][Table of Long Options]]

** TODO Date+time on console log messages :BUGS:

Is this the default?

** TODO [#C] DBusServiceObjectUsingSuper

** TODO [#B] Global enable/disable flag

** TODO [#B] By-client countdown on secrets given

** TODO [#B] By-client countdown on number of secrets given

** TODO [#B] Support RFC 3339 time duration syntax

** More D-Bus methods

*** NeedsPassword(50) - Timeout, default disapprove

** TODO [#C] python-parsedatetime

** TODO [#C] systemd/launchd

http://0pointer.de/blog/projects/systemd.html

http://wiki.debian.org/systemd

** TODO Separate logging logic to own object

** TODO make clients to a dict!

** TODO [#A] Limit approval_delay to max gnutls/tls timeout value

** TODO [#B] break the wait on approval_delay if connection dies

** TODO Generate Client.runtime_expansions from client options + extra

** TODO Allow %%(checker)s as a runtime expansion

** TODO Use python-tlslite?

** TODO D-Bus AddClient() method on server object

** TODO Use org.freedesktop.DBus.Method.NoReply annotation on async methods.

** TODO Emit [[http://dbus.freedesktop.org/doc/dbus-specification.html#standard-interfaces-properties][org.freedesktop.DBus.Properties.PropertiesChanged]] signal

TODO Deprecate se.recompile.Mandos.Client.PropertyChanged - annotate!

TODO Can use "invalidates" annotation to also emit on changed secret.

** TODO Support [[http://dbus.freedesktop.org/doc/dbus-specification.html#standard-interfaces-objectmanager][org.freedesktop.DBus.ObjectManager]] interface on server object

Deprecate methods GetAllClients(), GetAllClientsWithProperties()

and signals ClientAdded and ClientRemoved.

* mandos.xml

** Add mandos contact info in manual pages

** Urwid client data displayer

Better view of client data in the listing

*** Properties popup

** Nicer crashes. Stack traces Messes up shell.

*** Print a nice "We are sorry" message, save stack trace to log.

** Print a nice "We are sorry" message, save stack trace to log.

** Show timeout countdown for approval

100

* mandos-keygen

113

116

From XML sources directly?

114

117

115

118

* Side Stuff

116

** TODO Locate which packet move the other bin/sh when busy box is deactivated

117

** TODO contact owner of packet, and ask them to have that shell static in position regardless of busybox

119

** TODO Locate which package moves the other bin/sh when busybox is deactivated

120

** TODO contact owner of package, and ask them to have that shell static in position regardless of busybox

118

121

119

122

120

123

#+STARTUP: showall

Older »