/mandos/trunk

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to debian/control

Committer: Teddy Hogeborn
Date: 2008-09-05 16:24:33 UTC
Revision ID: teddy@fukt.bsnet.se-20080905162433-58fgx91ae9foxlh1

* Makefile (PIDDIR, USER, GROUP): Removed.
  (install-server): Do not create $(PIDDIR).
  (uninstall-server): Do not remove $(PIDDIR).

* init.d-mandos (PIDFILE): Changed to "/var/run/$NAME.pid".

* mandos (IPv6_TCPServer.enabled): New attribute.
  (IPv6_TCPServer.server_activate): Only call method of superclass if
                                    "self.enabled".
  (IPv6_TCPServer.enable): Set "self.enabled" to True.
  (main): Create client Set() early.  Create IPv6_TCPServer object
          early.  Switch to user and group "mandos", "nobody" or
          65534, if possible.  Enable IPv6_TCPServer *after* switching
          user.

* mandos-keygen (KEYDIR): Changed to "/etc/keys/mandos".

* mandos.xml (FILES): Changed PID file.
  (SECURITY): The server does need to be privileged, but switches to a
              non-privileged user.

* plugin-runner.xml (EXAMPLE): Changed long example to something more
                               realistic.

files added:
plugins.d/usplash

files removed:
.bzr-builddeb

.bzr-builddeb/default.conf

DBUS-API

INSTALL

NEWS

common.ent

dbus-mandos.conf

debian

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.examples

debian/mandos-client.links

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.prerm

debian/po

debian/rules

debian/source

debian/source/format

debian/source/local-options

debian/watch

initramfs-unpack

intro.xml

mandos-ctl

mandos-ctl.xml

mandos-monitor

mandos-monitor.xml

mandos.lsm

mandos.service

network-hooks.d

network-hooks.d/bridge

network-hooks.d/bridge.conf

network-hooks.d/openvpn

network-hooks.d/openvpn.conf

network-hooks.d/wireless

network-hooks.d/wireless.conf

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/plymouth.c

plugins.d/plymouth.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

files renamed:
plugins.d/mandos-client.c => plugins.d/password-request.c

plugins.d/mandos-client.xml => plugins.d/password-request.xml

files modified:
.bzrignore

Makefile

README

TODO

clients.conf

default-mandos

init.d-mandos

initramfs-tools-hook

initramfs-tools-hook-conf

initramfs-tools-script

legalnotice.xml

mandos

mandos-clients.conf.xml

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.xml

overview.xml

plugin-runner.c

plugin-runner.conf

plugin-runner.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

Show diffs side-by-side

added added

removed removed

1

Source: mandos

2

Section: admin

3

Priority: extra

4

Maintainer: Mandos Maintainers <mandos@recompile.se>

5

Uploaders: Teddy Hogeborn <teddy@recompile.se>,

6

Björn Påhlsson <belorn@recompile.se>

7

Build-Depends: debhelper (>= 9), docbook-xml, docbook-xsl,

8

libavahi-core-dev, libgpgme11-dev, libgnutls-dev, xsltproc,

9

pkg-config, systemd, python (>=2.6), python-gnutls, python-dbus,

10

python-avahi, python-gobject, python (>=2.7) | python-argparse

11

Standards-Version: 3.9.4

12

Vcs-Bzr: http://ftp.recompile.se/pub/mandos/trunk

13

Vcs-Browser: http://bzr.recompile.se/loggerhead/mandos/trunk/files

14

Homepage: http://www.recompile.se/mandos

15

16

Package: mandos

17

Architecture: all

18

Depends: ${misc:Depends}, python (>=2.6), python-gnutls, python-dbus,

19

python-avahi, python-gobject, avahi-daemon, adduser,

20

python-urwid, python (>=2.7) | python-argparse, gnupg (<< 2),

21

initscripts (>= 2.88dsf-13.3), avahi-daemon (>= 0.6.31-3)

22

| systemd-sysv

23

Recommends: fping

24

Description: server giving encrypted passwords to Mandos clients

25

This is the server part of the Mandos system, which allows

26

computers to have encrypted root file systems and at the

27

same time be capable of remote and/or unattended reboots.

28

.

29

The computers run a small client program in the initial RAM

30

disk environment which will communicate with a server over a

31

network. All network communication is encrypted using TLS.

32

The clients are identified by the server using an OpenPGP

33

key; each client has one unique to it. The server sends the

34

clients an encrypted password. The encrypted password is

35

decrypted by the clients using the same OpenPGP key, and the

36

password is then used to unlock the root file system,

37

whereupon the computers can continue booting normally.

38

39

Package: mandos-client

40

Architecture: linux-any

41

Depends: ${shlibs:Depends}, ${misc:Depends}, adduser, cryptsetup,

42

gnupg (<< 2), initramfs-tools

43

Breaks: dropbear (<= 0.53.1-1)

44

Enhances: cryptsetup

45

Description: do unattended reboots with an encrypted root file system

46

This is the client part of the Mandos system, which allows

47

computers to have encrypted root file systems and at the

48

same time be capable of remote and/or unattended reboots.

49

.

50

The computers run a small client program in the initial RAM

51

disk environment which will communicate with a server over a

52

network. All network communication is encrypted using TLS.

53

The clients are identified by the server using an OpenPGP

54

key; each client has one unique to it. The server sends the

55

clients an encrypted password. The encrypted password is

56

decrypted by the clients using the same OpenPGP key, and the

57

password is then used to unlock the root file system,

58

whereupon the computers can continue booting normally.

Older »