2
configuration for OpenPGP key dir
3
header files/symbols tally
4
check exit codes of all system calls
6
protocol version header
7
use strsep instead of strtok?
10
disable certain plugins
11
header files/symbols tally
12
check exit codes of all system calls
13
change uid to nobody:nogroup
14
other drop privs stuff?
15
pass things in environment, like device name, etc
16
Does cryptsetup already do this?
17
Configurable plugin dir
18
use strsep instead of strtok?
23
protocol version header
24
Run-time communication with server
27
[Mandos-tools/utilities]
4
** TODO [#A] Clean up /tmp directory on signal
7
** TODO [#B] use scandir(3) instead of readdir(3)
8
** TODO [#C] use same file name rules as run-parts(8)
11
** TODO [#B] Log level :BUGS:
12
** TODO /etc/mandos/clients.d/*.conf
13
Watch this directory and add/remove/update clients?
14
** TODO config for TXT record
15
** TODO [#B] Run-time communication with server :BUGS:
20
syslogger.setLevel(logging.WARNING)
21
+ [[http://log.ometer.com/2007-05.html][Best D-Bus practices]]
22
** TODO Implement --foreground :BUGS:
23
[[info:standards:Option%20Table][Table of Long Options]]
24
** TODO Implement --socket
25
[[info:standards:Option%20Table][Table of Long Options]]
26
** TODO Date+time on console log messages :BUGS:
30
** [[file:mandos.xml::XXX][Document D-Bus interface]]
32
* Provide and install /etc/dbus-1/system.d/mandos.conf
35
*** Handle "no D-Bus server" and/or "no Mandos server found" better
36
*** [#B] --dump option
41
** TODO Loop until passwords match when run interactively
42
** TODO "--secfile" option
43
Using the "secfile" option instead of "secret"
44
** TODO [#B] "--test" option
45
For testing decryption before rebooting.
48
** /usr/share/initramfs-tools/hooks/mandos
49
*** TODO [#C] use same file name rules as run-parts(8)
50
*** TODO [#C] Do not install in initrd.img if configured not to.
51
Use "/etc/initramfs-tools/hooksconf.d/mandos"?
52
** TODO [#C] /etc/bash_completion.d/mandos
53
From XML sources directly?