/mandos/trunk : revision 1131

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to mandos.conf.xml

Committer: Teddy Hogeborn
Date: 2019-07-29 16:35:53 UTC
Revision ID: teddy@recompile.se-20190729163553-1i442i2cbx64c537

Make tests and man page examples match

Make the tests test_manual_page_example[1-5] match exactly what is
written in the manual page, and add comments to manual page as
reminders to keep tests and manual page examples in sync.

* mandos-ctl (Test_commands_from_options.test_manual_page_example_1):
  Remove "--verbose" option, since the manual does not have it as the
  first example, and change assertion to match.
* mandos-ctl.xml (EXAMPLE): Add comments to all examples documenting
  which test function they correspond to.  Also remove unnecessary
  quotes from option arguments in fourth example, and clarify language
  slightly in fifth example.

files added:
.bzr-builddeb

.bzr-builddeb/default.conf

DBUS-API

INSTALL

NEWS

README

bugs.xml

common.ent

dbus-mandos.conf

debian

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.examples

debian/mandos-client.links

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos-client.templates

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.prerm

debian/mandos.templates

debian/po

debian/po/POTFILES.in

debian/po/templates.pot

debian/rules

debian/source

debian/source/format

debian/source/lintian-overrides

debian/source/local-options

debian/tests

debian/tests/control

debian/upstream

debian/upstream/signing-key.asc

debian/watch

default-mandos

dracut-module

dracut-module/ask-password-mandos.path

dracut-module/ask-password-mandos.service

dracut-module/cmdline-mandos.sh

dracut-module/module-setup.sh

dracut-module/password-agent.c

dracut-module/password-agent.xml

init.d-mandos

initramfs-tools-conf

initramfs-tools-conf-hook

initramfs-tools-script-stop

initramfs-unpack

intro.xml

legalnotice.xml

mandos-ctl

mandos-ctl.xml

mandos-monitor

mandos-monitor.xml

mandos-to-cryptroot-unlock

mandos.lsm

mandos.service

network-hooks.d

network-hooks.d/bridge

network-hooks.d/bridge.conf

network-hooks.d/openvpn

network-hooks.d/openvpn.conf

network-hooks.d/wireless

network-hooks.d/wireless.conf

plugin-helpers

plugin-helpers/mandos-client-iprouteadddel.c

plugin-runner.conf

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/plymouth.c

plugins.d/plymouth.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

tmpfiles.d-mandos.conf

files removed:
initramfs-tools-hook-conf

plugins.d/usplash

files renamed:
plugins.d/password-request.c => plugins.d/mandos-client.c

plugins.d/password-request.xml => plugins.d/mandos-client.xml

files modified:
.bzrignore

Makefile

TODO

clients.conf

initramfs-tools-hook

initramfs-tools-script

mandos

mandos-clients.conf.xml

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.xml

overview.xml

plugin-runner.c

plugin-runner.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

Show diffs side-by-side

added added

removed removed

mandos.conf.xml

<?xml version='1.0' encoding='UTF-8'?>

<?xml version="1.0" encoding="UTF-8"?>

<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"

"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [

<!ENTITY VERSION "1.0">

<!ENTITY CONFNAME "mandos.conf">

<!ENTITY CONFPATH "<filename>/etc/mandos/mandos.conf</filename>">

<!ENTITY TIMESTAMP "2008-08-29">

<!ENTITY TIMESTAMP "2019-06-20">

<!ENTITY % common SYSTEM "common.ent">

%common;

<title>Mandos Manual</title>

<productname>Mandos</productname>

<productnumber>&VERSION;</productnumber>

<productnumber>&version;</productnumber>

<date>&TIMESTAMP;</date>

<firstname>Björn</firstname>

<surname>Påhlsson</surname>

<email>belorn@fukt.bsnet.se</email>

<email>belorn@recompile.se</email>

</address>

</author>

<firstname>Teddy</firstname>

<surname>Hogeborn</surname>

<email>teddy@fukt.bsnet.se</email>

<email>teddy@recompile.se</email>

</address>

</author>

</authorgroup>

<holder>Teddy Hogeborn</holder>

<holder>Björn Påhlsson</holder>

</copyright>

<para>

This manual page is free software: you can redistribute it

and/or modify it under the terms of the GNU General Public

License as published by the Free Software Foundation,

either version 3 of the License, or (at your option) any

later version.

</para>

<para>

This manual page is distributed in the hope that it will

be useful, but WITHOUT ANY WARRANTY; without even the

implied warranty of MERCHANTABILITY or FITNESS FOR A

PARTICULAR PURPOSE. See the GNU General Public License

for more details.

</para>

<para>

You should have received a copy of the GNU General Public

License along with this program; If not, see

<ulink url="http://www.gnu.org/licenses/"/>.

</para>

</legalnotice>

<xi:include href="legalnotice.xml"/>

</refentryinfo>

<refentrytitle>&CONFNAME;</refentrytitle>

Configuration file for the Mandos server

</refpurpose>

</refnamediv>

&CONFPATH;

</synopsis>

<synopsis>&CONFPATH;</synopsis>

</refsynopsisdiv>

<title>DESCRIPTION</title>

<para>

<quote>#</quote> or <quote>;</quote> are ignored and may be used

to provide comments.

</para>

</refsect1>

100

101

<title>OPTIONS</title>

102

103

104

105

<term><varname>interface</varname></term>

<term><option>interface<literal> = </literal><replaceable

>NAME</replaceable></option></term>

106

107

<synopsis><literal>interface = </literal><replaceable

108

>NAME</replaceable>

109

</synopsis>

110

<xi:include href="mandos-options.xml" xpointer="interface"/>

111

</listitem>

112

</varlistentry>

113

114

100

115

<term><varname>address</varname></term>

101

<term><option>address<literal> = </literal><replaceable

102

>ADDRESS</replaceable></option></term>

116

103

117

<synopsis><literal>address = </literal><replaceable

118

>ADDRESS</replaceable>

119

</synopsis>

120

104

<xi:include href="mandos-options.xml" xpointer="address"/>

121

105

</listitem>

122

106

</varlistentry>

123

107

124

108

125

109

<term><option>port<literal> = </literal><replaceable

110

>NUMBER</replaceable></option></term>

126

111

127

<synopsis><literal>port = </literal><replaceable

128

>NUMBER</replaceable>

129

</synopsis>

130

112

<xi:include href="mandos-options.xml" xpointer="port"/>

131

113

</listitem>

132

114

</varlistentry>

133

115

134

116

135

<term><varname>debug</varname></term>

136

137

<synopsis><literal>debug = </literal>{ <literal

117

<term><option>debug<literal> = </literal>{ <literal

138

118

>1</literal> | <literal>yes</literal> | <literal

139

119

>true</literal> | <literal>on</literal> | <literal

140

120

>0</literal> | <literal>no</literal> | <literal

141

>false</literal> | <literal>off</literal> }

142

</synopsis>

121

>false</literal> | <literal>off</literal> }</option></term>

122

143

123

<xi:include href="mandos-options.xml" xpointer="debug"/>

144

124

</listitem>

145

125

</varlistentry>

146

126

147

127

148

<term><varname>priority</varname></term>

128

<term><option>priority<literal> = </literal><replaceable

129

>STRING</replaceable></option></term>

149

130

150

<synopsis><literal>priority = </literal><replaceable

151

>STRING</replaceable>

152

</synopsis>

153

131

<xi:include href="mandos-options.xml" xpointer="priority"/>

154

132

</listitem>

155

133

</varlistentry>

156

134

157

135

158

<term><varname>servicename</varname></term>

136

<term><option>servicename<literal> = </literal

137

><replaceable>NAME</replaceable></option></term>

159

138

160

<synopsis><literal>servicename = </literal><replaceable

161

>NAME</replaceable>

162

</synopsis>

163

139

<xi:include href="mandos-options.xml"

164

140

xpointer="servicename"/>

165

141

</listitem>

166

142

</varlistentry>

167

143

144

145

<term><option>use_dbus<literal> = </literal>{ <literal

146

>1</literal> | <literal>yes</literal> | <literal

147

>true</literal> | <literal>on</literal> | <literal

148

>0</literal> | <literal>no</literal> | <literal

149

>false</literal> | <literal>off</literal> }</option></term>

150

151

<xi:include href="mandos-options.xml" xpointer="dbus"/>

152

</listitem>

153

</varlistentry>

154

155

156

<term><option>use_ipv6<literal> = </literal>{ <literal

157

>1</literal> | <literal>yes</literal> | <literal

158

>true</literal> | <literal>on</literal> | <literal

159

>0</literal> | <literal>no</literal> | <literal

160

>false</literal> | <literal>off</literal> }</option></term>

161

162

<xi:include href="mandos-options.xml" xpointer="ipv6"/>

163

</listitem>

164

</varlistentry>

165

166

167

<term><option>restore<literal> = </literal>{ <literal

168

>1</literal> | <literal>yes</literal> | <literal

169

>true</literal> | <literal>on</literal> | <literal

170

>0</literal> | <literal>no</literal> | <literal

171

>false</literal> | <literal>off</literal> }</option></term>

172

173

<xi:include href="mandos-options.xml" xpointer="restore"/>

174

</listitem>

175

</varlistentry>

176

177

178

<term><option>statedir<literal> = </literal><replaceable

179

>DIRECTORY</replaceable></option></term>

180

181

<xi:include href="mandos-options.xml" xpointer="statedir"/>

182

</listitem>

183

</varlistentry>

184

185

186

<term><option>socket<literal> = </literal><replaceable

187

>NUMBER</replaceable></option></term>

188

189

<xi:include href="mandos-options.xml" xpointer="socket"/>

190

</listitem>

191

</varlistentry>

192

168

193

</variablelist>

169

194

</refsect1>

170

195

180

205

<para>

181

206

The <literal>[DEFAULT]</literal> is necessary because the Python

182

207

built-in module <systemitem class="library">ConfigParser</systemitem>

183

requres it.

208

requires it.

184

209

</para>

210

<xi:include href="bugs.xml"/>

185

211

</refsect1>

186

212

187

213

201

227

202

228

[DEFAULT]

203

229

# A configuration example

204

interface = eth0

205

address = 2001:db8:f983:bd0b:30de:ae4a:71f2:f672

230

interface = enp1s0

231

address = fe80::aede:48ff:fe71:f6f2

206

232

port = 1025

207

debug = true

208

priority = SECURE256:!CTYPE-X.509:+CTYPE-OPENPGP

233

debug = True

234

priority = SECURE128:!CTYPE-X.509:+CTYPE-RAWPK:!RSA:!VERS-ALL:+VERS-TLS1.3:%PROFILE_ULTRA

209

235

servicename = Daena

236

use_dbus = False

237

use_ipv6 = True

238

restore = True

239

statedir = /var/lib/mandos

210

240

</programlisting>

211

241

</informalexample>

212

242

</refsect1>

214

244

215

245

216

246

<para>

247

<citerefentry><refentrytitle>intro</refentrytitle>

248

<manvolnum>8mandos</manvolnum></citerefentry>,

217

249

<citerefentry><refentrytitle>gnutls_priority_init</refentrytitle

218

250

><manvolnum>3</manvolnum></citerefentry>,

219

251

<citerefentry><refentrytitle>mandos</refentrytitle>

221

253

<citerefentry><refentrytitle>mandos-clients.conf</refentrytitle>

222

254

223

255

</para>

224

256

225

257

226

258

227

259

<term>

247

279

<para>

248

280

The clients use IPv6 link-local addresses, which are

249

281

immediately usable since a link-local addresses is

250

automatically assigned to a network interfaces when it

282

automatically assigned to a network interface when it

251

283

is brought up.

252

284

</para>

253

285

</listitem>

Older »