/mandos/release : revision 86

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/release

« back to all changes in this revision

Viewing changes to TODO

Committer: Teddy Hogeborn
Date: 2008-08-18 03:50:28 UTC
Revision ID: teddy@fukt.bsnet.se-20080818035028-su31apqs2pv2147v

* mandos-keygen.xml: Removed <?xml-stylesheet>.  New entity
                     "&OVERVIEW;" referring to "overview.xml".
  (PURPOSE, OVERVIEW): New sections, same as in mandos(8).
  (EXAMPLES): Renamed to "EXAMPLE", as per man-pages(7).

* mandos.xml (OPTIONS, CLIENTS): Slight wording change.

files added:
COPYING

initramfs-tools-script

mandos-keygen.xml

overview.xml

plugins.d/usplash

files removed:
network-protocol.txt

files renamed:
mandos-client.c => plugin-runner.c

mandos-client.xml => plugin-runner.xml

files modified:
Makefile

TODO

initramfs-tools-hook

mandos

mandos-keygen

mandos.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/password-request.c

plugins.d/password-request.xml

Show diffs side-by-side

added added

removed removed

TODO

* [#A] README file

* [#A] COPYING file

[[file:/usr/share/common-licenses/GPL-3][GPLv3]]

* Mandos-client

** [#A] Change syntax for arguments

** [#A] Man page: man8/mandos-client.8mandos

*** DESCRIPTION

Describe the plus sign syntax for passing options from crypttab

* Plugin-runner

** [#B] Add more comments to code

** [#B] Add more if(debug) calls

** [#B] Seperate more code to function for more readability

** [#A] Man page: man8/plugin-runner.8mandos

*** EXIT STATUS

Text needed

*** EXAMPLES

Examples of normal usage, debug usage, debugging single or all

plugins, examples of crypttab lines with plus syntax, etc.

plugins, etc.

*** FILES

Text needed

*** SECURITY

Text needed

*** NOTES

Text needed

*** BUGS

Text needed

*** SEE ALSO

Explaining test on what you can read

** Use asprintf instead of malloc and strcat?

** use strsep instead of strtok?

** use config file in addition to arguments

** pass things in environment, like device name, etc

Explaining text on what you can read

** Keydir move: /etc/mandos -> /etc/keys/mandos

Must create in preinst if not pre-depending on cryptsetup

* Password-request

** [#A] Man page: man8/password-request.8mandos

** [#B] Temporarily lower kernel log level

for less printouts during sucessfull boot.

*** DESCRIPTION

Move options to new OPTIONS section.

State that this command is not meant to be invoked directly, but

Create this section

*** SECURITY

Create this section

*** NOTES

Create this section (if needed)

*** BUGS

Create this section

*** SEE ALSO

Refer to mandos-client(8mandos) and password-prompt(8mandos)

** Use asprintf instead of malloc and memcpy?

*** ENVIRONMENT

Document use of "cryptsource" and "crypttarget".

** IPv4 support

** use strsep instead of strtok?

** Do not depend on GPG key rings on disk

This would mean creating new GPG key rings with GPGME by importing

the key files from scratch on every program start.

** Do not depend on GnuPG key rings on disk

This would mean creating new GnuPG key rings with GPGME by

importing the key files from scratch on every program start.

* Password-prompt

** [#A] Man page: man8/password-prompt.8mandos

*** DESCRIPTION

Move options to new OPTIONS section.

Note that this is more or less a simple getpass(3) wrapper, even

though actual use of getpass(3) is not guaranteed.

*** EXIT STATUS

Create this section

*** EXAMPLES

Create this section

Not much to do here but it is noteworthy to state the danger of

not having a fallback option.

*** NOTES

Note that this is more or less a simple getpass(3) wrapper, even

though actual use of getpass(3) is not guaranteed.

*** BUGS

Create this section

*** SEE ALSO

does not. See also [[http://sources.redhat.com/ml/libc-alpha/2003-05/msg00251.html][Marcus Brinkmann: Re: getpass obsolete?]] and

[[http://article.gmane.org/gmane.comp.lib.glibc.alpha/4906][Petter Reinholdtsen: Re: getpass obsolete?]], and especially also

[[http://www.steve.org.uk/Reference/Unix/faq_4.html#SEC48][Unix Programming FAQ 3.1 How can I make my program not echo input?]]

** Replace completely with "/lib/cryptsetup/askpass"?

* Mandos (server)

** [#A] Command man page: man8/mandos.8

*** DESCRIPTION

Move options to new OPTIONS section

*** EXIT STATUS

Create this section

*** EXAMPLES

100

Create this section

101

*** FILES

102

Describe briefly that the server gets global settings from

103

mandos.conf and clients from clients.conf, but refer to their man

104

pages for more details.

105

*** DIAGNOSTICS

106

Create this section

107

*** SECURITY

108

Create this section

109

*** NOTES

110

Create this section (if needed)

111

*** BUGS

112

Create this section

113

*** SEE ALSO

114

Refer to the client man page

115

** [#A] Config file man page: man5/mandos.conf (mandos.conf)

116

** [#A] Config file man page: man5/mandos-clients.conf (clients.conf)

117

** [#A] /etc/init.d/mandos-server :teddy:

118

** Log level

** [#B] Log level :bugs:

119

** /etc/mandos/clients.d/*.conf

120

Watch this directory and add/remove/update clients?

121

** config for TXT record

122

** Run-time communication with server

** [#B] Run-time communication with server :bugs:

123

Probably using D-Bus

124