/mandos/release

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to mandos-clients.conf.xml

  • Committer: Teddy Hogeborn
  • Date: 2014-01-21 20:43:52 UTC
  • mfrom: (237.7.200 trunk)
  • Revision ID: teddy@recompile.se-20140121204352-s0sd0d4mp86ivvog
Merge from trunk.

Show diffs side-by-side

added added

removed removed

Lines of Context:
3
3
        "http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
4
4
<!ENTITY CONFNAME "mandos-clients.conf">
5
5
<!ENTITY CONFPATH "<filename>/etc/mandos/clients.conf</filename>">
6
 
<!ENTITY TIMESTAMP "2017-02-23">
 
6
<!ENTITY TIMESTAMP "2013-10-15">
7
7
<!ENTITY % common SYSTEM "common.ent">
8
8
%common;
9
9
]>
37
37
      <year>2010</year>
38
38
      <year>2011</year>
39
39
      <year>2012</year>
40
 
      <year>2013</year>
41
 
      <year>2014</year>
42
 
      <year>2015</year>
43
 
      <year>2016</year>
44
 
      <year>2017</year>
45
40
      <holder>Teddy Hogeborn</holder>
46
41
      <holder>Björn Påhlsson</holder>
47
42
    </copyright>
182
177
            <varname>PATH</varname> will be searched.  The default
183
178
            value for the checker command is <quote><literal
184
179
            ><command>fping</command> <option>-q</option> <option
185
 
            >--</option> %%(host)s</literal></quote>.  Note that
186
 
            <command>mandos-keygen</command>, when generating output
187
 
            to be inserted into this file, normally looks for an SSH
188
 
            server on the Mandos client, and, if it find one, outputs
189
 
            a <option>checker</option> option to check for the
190
 
            client’s key fingerprint – this is more secure against
191
 
            spoofing.
 
180
            >--</option> %%(host)s</literal></quote>.
192
181
          </para>
193
182
          <para>
194
183
            In addition to normal start time expansion, this option
231
220
          <para>
232
221
            This option sets the OpenPGP fingerprint that identifies
233
222
            the public key that clients authenticate themselves with
234
 
            through TLS.  The string needs to be in hexadecimal form,
 
223
            through TLS.  The string needs to be in hexidecimal form,
235
224
            but spaces or upper/lower case are not significant.
236
225
          </para>
237
226
        </listitem>
464
453
      <literal>%(<replaceable>foo</replaceable>)s</literal> is
465
454
      obscure.
466
455
    </para>
467
 
    <xi:include href="bugs.xml"/>
468
456
  </refsect1>
469
457
  
470
458
  <refsect1 id="example">