8
8
** [#B] Seperate more code to function for more readability
9
9
** [#A] Man page: man8/plugin-runner.8mandos
12
Environment is modified according to options and passed to plugins
12
14
Examples of normal usage, debug usage, debugging single or all
57
59
Must create in preinst if not pre-depending on cryptsetup
60
** [#A] Man page: man8/password-prompt.8mandos
62
Document short options
64
Note that this is more or less a simple getpass(3) wrapper, even
65
though actual use of getpass(3) is not guaranteed.
68
Document use of "cryptsource" and "crypttarget".
72
Examples of normal usage, debug usage, with a prefix, etc.
74
Not much to do here but it is noteworthy to state the danger of
75
not having a fallback option.
77
Refer to mandos-client(8mandos) and password-request(8mandos)
78
and also, perhaps, to cryptsetup(8)?
62
** [#C] Use getpass(3)?
80
63
Man page says "obsolete", but [[info:libc:getpass][GNU LibC Manual: Reading Passwords]]
81
64
does not. See also [[http://sources.redhat.com/ml/libc-alpha/2003-05/msg00251.html][Marcus Brinkmann: Re: getpass obsolete?]] and
82
65
[[http://article.gmane.org/gmane.comp.lib.glibc.alpha/4906][Petter Reinholdtsen: Re: getpass obsolete?]], and especially also
83
66
[[http://www.steve.org.uk/Reference/Unix/faq_4.html#SEC48][Unix Programming FAQ 3.1 How can I make my program not echo input?]]
86
** run gnutls_openpgp_crt_verify_self() and verify clients certificates
87
** [#A] Config file man page: man5/mandos-clients.conf (clients.conf)
88
*** For option "secret", document which program can help generate it.
89
69
** [#A] /etc/init.d/mandos-server :teddy:
90
70
** [#B] Log level :bugs:
91
71
** /etc/mandos/clients.d/*.conf
92
Go through all man pages to conform to the style of tags chosen in
93
[[http://svn.debian.org/wsvn/debian-xml-sgml/packages/docbook-xsl/trunk/debian/examples/foo.1.example_manpage.xml?op=file&rev=0&sc=0][foo.1.example_manpage.xml]]. In particular:
94
*** Synopsis <arg> and <option> tags
97
*** EXAMPLES &COMMANDNAME;
98
** Use xinclude for common sections
99
Like copyright, authors, etc.
112
104
*** Update initrd.img after installation
113
105
This seems to use some kind of "trigger" system
106
[[file:/usr/share/doc/dpkg/triggers.txt.gz]]
107
dpkg-trigger(1), deb-triggers(5)
114
108
*** Keydir move: /etc/mandos -> /etc/keys/mandos
115
109
Must create in preinst if not pre-depending on cryptsetup
116
110
*** mandos-keygen
117
**** [#A] Output cut-and-paste ready snippet for clients.conf.
111
**** "--passfile" option
112
Using the "secfile" option instead of "secret"
113
**** [#A] "--test" option
114
For testing decryption before rebooting.
119
116
*** [#A] Create mandos user and group for server
120
117
*** [#A] Create /var/run/mandos directory with perm and ownership
added
removed
TODO
