To get this branch, use:
bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk
« back to all changes in this revision
Viewing changes to mandos.xml
- Committer: Teddy Hogeborn
- Date: 2008-09-05 16:24:33 UTC
- Revision ID: teddy@fukt.bsnet.se-20080905162433-58fgx91ae9foxlh1
* Makefile (PIDDIR, USER, GROUP): Removed.
(install-server): Do not create $(PIDDIR).
(uninstall-server): Do not remove $(PIDDIR).
* init.d-mandos (PIDFILE): Changed to "/var/run/$NAME.pid".
* mandos (IPv6_TCPServer.enabled): New attribute.
(IPv6_TCPServer.server_activate): Only call method of superclass if
"self.enabled".
(IPv6_TCPServer.enable): Set "self.enabled" to True.
(main): Create client Set() early. Create IPv6_TCPServer object
early. Switch to user and group "mandos", "nobody" or
65534, if possible. Enable IPv6_TCPServer *after* switching
user.
* mandos-keygen (KEYDIR): Changed to "/etc/keys/mandos".
* mandos.xml (FILES): Changed PID file.
(SECURITY): The server does need to be privileged, but switches to a
non-privileged user.
* plugin-runner.xml (EXAMPLE): Changed long example to something more
realistic.
(install-server): Do not create $(PIDDIR).
(uninstall-server): Do not remove $(PIDDIR).
* init.d-mandos (PIDFILE): Changed to "/var/run/$NAME.pid".
* mandos (IPv6_TCPServer.enabled): New attribute.
(IPv6_TCPServer.server_activate): Only call method of superclass if
"self.enabled".
(IPv6_TCPServer.enable): Set "self.enabled" to True.
(main): Create client Set() early. Create IPv6_TCPServer object
early. Switch to user and group "mandos", "nobody" or
65534, if possible. Enable IPv6_TCPServer *after* switching
user.
* mandos-keygen (KEYDIR): Changed to "/etc/keys/mandos".
* mandos.xml (FILES): Changed PID file.
(SECURITY): The server does need to be privileged, but switches to a
non-privileged user.
* plugin-runner.xml (EXAMPLE): Changed long example to something more
realistic.
- files modified:
- Makefile
added
removed
mandos.xml
