/mandos/trunk : revision 238

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to mandos-keygen.xml

Committer: Teddy Hogeborn
Date: 2008-12-10 01:26:02 UTC
mfrom: (237.1.2 mandos)
Revision ID: teddy@fukt.bsnet.se-20081210012602-vhz3h75xkj24t340

First version of a somewhat complete D-Bus server interface.  Also
change user/group name to "_mandos".

* debian/mandos.postinst: Rename old "mandos" user and group to
                          "_mandos"; create "_mandos" user and group
                          if none exist.
* debian/mandos-client.postinst: - '' -

* initramfs-tools-hook: Try "_mandos" before "mandos" as user and
                        group name.

* mandos (_datetime_to_dbus_struct): New; was previously local.
  (Client.started): Renamed to "last_started".  All users changed.
  (Client.started): New; boolean.
  (Client.dbus_object_path): New.
  (Client.check_command): Renamed to "checker_command".  All users
                          changed.
  (Client.__init__): Set and use "self.dbus_object_path".  Set
                     "self.started".
  (Client.start): Update "self.started".  Emit "self.PropertyChanged"
                  signals for both "started" and "last_started".
  (Client.stop): Update "self.started".  Emit "self.PropertyChanged"
                 signal for "started".
  (Client.checker_callback): Take additional "command" argument.  All
                             callers changed. Emit
                             "self.PropertyChanged" signal.
  (Client.bump_timeout): Emit "self.PropertyChanged" signal for
                         "last_checked_ok".
  (Client.start_checker): Emit "self.PropertyChanged" signal for
                          "checker_running".
  (Client.stop_checker): Emit "self.PropertyChanged" signal for
                         "checker_running".
  (Client.still_valid): Bug fix: use "getattr(self, started, False)"
                        instead of "self.started" in case this client
                        object is so new that the "started" attribute
                        has not been created yet.
  (Client.IntervalChanged, Client.CheckerIsRunning, Client.GetChecker,
  Client.GetCreated, Client.GetFingerprint, Client.GetHost,
  Client.GetInterval, Client.GetName, Client.GetStarted,
  Client.GetTimeout, Client.StateChanged, Client.TimeoutChanged):
  Removed; all callers changed.
  (Client.CheckerCompleted): Add "condition" and "command" arguments.
                             All callers changed.
  (Client.GetAllProperties, Client.PropertyChanged): New.
  (Client.StillValid): Renamed to "IsStillValid".
  (Client.StartChecker): Changed to its own function to avoid the
                         return value from "Client.start_checker()".
  (Client.Stop): Changed to its own function to avoid the return value
                 from "Client.stop()".
  (main): Try "_mandos" before "mandos" as user and group name.
          Removed inner function "remove_from_clients".  New inner
          class "MandosServer".

files added:
.bzr-builddeb

.bzr-builddeb/default.conf

INSTALL

NEWS

README

common.ent

debian

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.config

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.links

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos-client.templates

debian/mandos.README.Debian

debian/mandos.config

debian/mandos.dirs

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.prerm

debian/mandos.templates

debian/po

debian/po/POTFILES.in

debian/po/sv.po

debian/rules

default-mandos

init.d-mandos

mandos.lsm

plugin-runner.conf

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

files removed:
plugins.d/usplash

files renamed:
plugins.d/password-request.c => plugins.d/mandos-client.c

plugins.d/password-request.xml => plugins.d/mandos-client.xml

files modified:
.bzrignore

Makefile

TODO

clients.conf

initramfs-tools-hook

initramfs-tools-script

legalnotice.xml

mandos

mandos-clients.conf.xml

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf.xml

mandos.xml

overview.xml

plugin-runner.c

plugin-runner.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

Show diffs side-by-side

added added

removed removed

mandos-keygen.xml

<?xml version="1.0" encoding="UTF-8"?>

<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"

"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [

<!ENTITY VERSION "1.0">

<!ENTITY COMMANDNAME "mandos-keygen">

<!ENTITY TIMESTAMP "2008-09-03">

<!ENTITY TIMESTAMP "2008-10-03">

<!ENTITY % common SYSTEM "common.ent">

%common;

<title>Mandos Manual</title>

<productname>Mandos</productname>

<productnumber>&VERSION;</productnumber>

<productnumber>&version;</productnumber>

<date>&TIMESTAMP;</date>

</copyright>

<xi:include href="legalnotice.xml"/>

</refentryinfo>

<refentrytitle>&COMMANDNAME;</refentrytitle>

Generate key and password for Mandos client and server.

</refpurpose>

</refnamediv>

<command>&COMMANDNAME;</command>

122

123

123

124

<arg choice="plain"><option>--password</option></arg>

124

125

126

<arg choice="plain"><option>--passfile

127

128

129

125

130

</group>

126

131

<sbr/>

127

132

<group>

159

164

<para>

160

165

<command>&COMMANDNAME;</command> is a program to generate the

161

166

OpenPGP key used by

162

<citerefentry><refentrytitle>password-request</refentrytitle>

167

<citerefentry><refentrytitle>mandos-client</refentrytitle>

163

168

<manvolnum>8mandos</manvolnum></citerefentry>. The key is

164

169

normally written to /etc/mandos for later installation into the

165

170

initrd image, but this, and most other things, can be changed

167

172

</para>

168

173

<para>

169

174

This program can also be used with the

170

<option>--password</option> option to generate a ready-made

171

section for <filename>clients.conf</filename> (see

175

<option>--password</option> or <option>--passfile</option>

176

options to generate a ready-made section for

177

<filename>clients.conf</filename> (see

172

178

<citerefentry><refentrytitle>mandos-clients.conf</refentrytitle>

173

179

<manvolnum>5</manvolnum></citerefentry>).

174

180

</para>

197

203

</para>

198

204

</listitem>

199

205

</varlistentry>

200

206

201

207

202

208

<term><option>--dir

203

209

<replaceable>DIRECTORY</replaceable></option></term>

210

216

</para>

211

217

</listitem>

212

218

</varlistentry>

213

219

214

220

215

221

<term><option>--type

216

222

222

228

</para>

223

229

</listitem>

224

230

</varlistentry>

225

231

226

232

227

233

<term><option>--length

228

234

234

240

</para>

235

241

</listitem>

236

242

</varlistentry>

237

243

238

244

239

245

<term><option>--subtype

240

246

<replaceable>KEYTYPE</replaceable></option></term>

247

253

</para>

248

254

</listitem>

249

255

</varlistentry>

250

256

251

257

252

258

<term><option>--sublength

253

259

259

265

</para>

260

266

</listitem>

261

267

</varlistentry>

262

268

263

269

264

270

<term><option>--email

265

271

<replaceable>ADDRESS</replaceable></option></term>

271

277

</para>

272

278

</listitem>

273

279

</varlistentry>

274

280

275

281

276

282

<term><option>--comment

277

283

284

290

</para>

285

291

</listitem>

286

292

</varlistentry>

287

293

288

294

289

295

<term><option>--expire

290

296

298

304

</para>

299

305

</listitem>

300

306

</varlistentry>

301

307

302

308

303

309

<term><option>--force</option></term>

304

310

326

332

</para>

327

333

</listitem>

328

334

</varlistentry>

335

336

<term><option>--passfile

337

338

<term><option>-F

339

340

341

<para>

342

The same as <option>--password</option>, but read from

343

<replaceable>FILE</replaceable>, not the terminal.

344

</para>

345

</listitem>

346

</varlistentry>

329

347

</variablelist>

330

348

</refsect1>

331

349

332

350

333

351

<title>OVERVIEW</title>

334

352

<xi:include href="overview.xml"/>

338

356

<filename>clients.conf</filename> on the server.

339

357

</para>

340

358

</refsect1>

341

359

342

360

343

361

<title>EXIT STATUS</title>

344

362

<para>

364

382

</variablelist>

365

383

</refsect1>

366

384

367

385

368

386

<title>FILES</title>

369

387

<para>

370

388

Use the <option>--dir</option> option to change where

401

419

</varlistentry>

402

420

</variablelist>

403

421

</refsect1>

404

422

405

423

406

424

407

425

408

426

409

427

410

428

411

429

412

430

<title>EXAMPLE</title>

413

431

454

472

</para>

455

473

</informalexample>

456

474

</refsect1>

457

475

458

476

459

477

<title>SECURITY</title>

460

478

<para>

469

487

<manvolnum>8</manvolnum></citerefentry>.

470

488

</para>

471

489

</refsect1>

472

490

473

491

474

492

475

493

<para>

479

497

<manvolnum>5</manvolnum></citerefentry>,

480

498

<citerefentry><refentrytitle>mandos</refentrytitle>

481

499

<manvolnum>8</manvolnum></citerefentry>,

482

<citerefentry><refentrytitle>password-request</refentrytitle>

500

<citerefentry><refentrytitle>mandos-client</refentrytitle>

483

501

<manvolnum>8mandos</manvolnum></citerefentry>

484

502

</para>

485

503

</refsect1>

Older »