/mandos/release : revision 237.7.89

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to mandos.conf.xml

Committer: Teddy Hogeborn
Date: 2011-12-31 20:07:11 UTC
mfrom: (237.17.9 wireless-network-hook)
mto: (237.7.109 trunk) (299.1.1 release) (300.1.1 release) (301.1.1 release)
mto: This revision was merged to the branch mainline in revision 290.
Revision ID: teddy@recompile.se-20111231200711-6dli3r8drftem57r

Merge new wireless network hook. Fix bridge network hook to use
hardware addresses instead of interface names. Implement and document
new "CONNECT" environment variable for network hooks.

files added:
DBUS-API

dbus-mandos.conf

debian/source

debian/source/format

debian/source/local-options

debian/watch

intro.xml

mandos-ctl

mandos-ctl.xml

mandos-monitor

mandos-monitor.xml

mandos.lsm

network-hooks.d

network-hooks.d/bridge

network-hooks.d/bridge.conf

network-hooks.d/openvpn

network-hooks.d/openvpn.conf

network-hooks.d/wireless

network-hooks.d/wireless.conf

plugins.d/plymouth.c

plugins.d/plymouth.xml

files removed:
debian/mandos-client.config

debian/mandos-client.templates

debian/mandos.config

debian/mandos.templates

debian/po/POTFILES.in

debian/po/sv.po

files modified:
.bzrignore

INSTALL

Makefile

NEWS

README

TODO

clients.conf

common.ent

debian/changelog

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.docs

debian/mandos.postinst

debian/mandos.prerm

debian/rules

init.d-mandos

initramfs-tools-hook

initramfs-tools-hook-conf

initramfs-tools-script

mandos

mandos-clients.conf.xml

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.xml

plugin-runner.c

plugin-runner.conf

plugin-runner.xml

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/mandos-client.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

Show diffs side-by-side

added added

removed removed

mandos.conf.xml

"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [

<!ENTITY CONFNAME "mandos.conf">

<!ENTITY CONFPATH "<filename>/etc/mandos/mandos.conf</filename>">

<!ENTITY TIMESTAMP "2008-09-30">

<!ENTITY TIMESTAMP "2011-11-26">

<!ENTITY % common SYSTEM "common.ent">

%common;

<firstname>Björn</firstname>

<surname>Påhlsson</surname>

<email>belorn@fukt.bsnet.se</email>

<email>belorn@recompile.se</email>

</address>

</author>

<firstname>Teddy</firstname>

<surname>Hogeborn</surname>

<email>teddy@fukt.bsnet.se</email>

<email>teddy@recompile.se</email>

</address>

</author>

</authorgroup>

<holder>Teddy Hogeborn</holder>

<holder>Björn Påhlsson</holder>

</copyright>

130

132

</listitem>

131

133

</varlistentry>

132

134

135

136

<term><option>use_dbus<literal> = </literal>{ <literal

137

>1</literal> | <literal>yes</literal> | <literal

138

>true</literal> | <literal>on</literal> | <literal

139

>0</literal> | <literal>no</literal> | <literal

140

>false</literal> | <literal>off</literal> }</option></term>

141

142

<xi:include href="mandos-options.xml" xpointer="dbus"/>

143

</listitem>

144

</varlistentry>

145

146

147

<term><option>use_ipv6<literal> = </literal>{ <literal

148

>1</literal> | <literal>yes</literal> | <literal

149

>true</literal> | <literal>on</literal> | <literal

150

>0</literal> | <literal>no</literal> | <literal

151

>false</literal> | <literal>off</literal> }</option></term>

152

153

<xi:include href="mandos-options.xml" xpointer="ipv6"/>

154

</listitem>

155

</varlistentry>

156

157

158

<term><option>restore<literal> = </literal>{ <literal

159

>1</literal> | <literal>yes</literal> | <literal

160

>true</literal> | <literal>on</literal> | <literal

161

>0</literal> | <literal>no</literal> | <literal

162

>false</literal> | <literal>off</literal> }</option></term>

163

164

<xi:include href="mandos-options.xml" xpointer="restore"/>

165

</listitem>

166

</varlistentry>

167

168

169

<term><option>statedir<literal> = </literal><replaceable

170

>DIRECTORY</replaceable></option></term>

171

172

<xi:include href="mandos-options.xml" xpointer="statedir"/>

173

</listitem>

174

</varlistentry>

175

133

176

</variablelist>

134

177

</refsect1>

135

178

167

210

[DEFAULT]

168

211

# A configuration example

169

212

interface = eth0

170

address = 2001:db8:f983:bd0b:30de:ae4a:71f2:f672

213

address = fe80::aede:48ff:fe71:f6f2

171

214

port = 1025

172

215

debug = true

173

216

priority = SECURE256:!CTYPE-X.509:+CTYPE-OPENPGP

174

217

servicename = Daena

218

use_dbus = False

219

use_ipv6 = True

220

restore = True

221

statedir = /var/lib/mandos

175

222

</programlisting>

176

223

</informalexample>

177

224

</refsect1>

179

226

180

227

181

228

<para>

229

<citerefentry><refentrytitle>intro</refentrytitle>

230

<manvolnum>8mandos</manvolnum></citerefentry>,

182

231

<citerefentry><refentrytitle>gnutls_priority_init</refentrytitle

183

232

><manvolnum>3</manvolnum></citerefentry>,

184

233

<citerefentry><refentrytitle>mandos</refentrytitle>

212

261

<para>

213

262

The clients use IPv6 link-local addresses, which are

214

263

immediately usable since a link-local addresses is

215

automatically assigned to a network interfaces when it

264

automatically assigned to a network interface when it

216

265

is brought up.

217

266

</para>

218

267

</listitem>

Older »