6
[[file:/usr/share/common-licenses/GPL-3][GPLv3]]
9
** [#A] Man page: man8/mandos-client.8mandos
10
** [#B] Fix %d format strings to use [[https://secure.wikimedia.org/wikipedia/en/wiki/Inttypes.h][<inttypes.h>]]
4
** header files/symbols tally
5
** check exit codes of all system calls
7
** protocol version header
11
8
** use strsep instead of strtok?
12
** use config file in addition to arguments
11
** header files/symbols tally
12
** check exit codes of all system calls
13
** change uid to nobody:nogroup
14
other drop privs stuff?
13
15
** pass things in environment, like device name, etc
16
** [#A] Man page: man8/password-request.8mandos
17
** [#B] Fix %d format strings to use [[https://secure.wikimedia.org/wikipedia/en/wiki/Inttypes.h][<inttypes.h>]]
16
Does cryptsetup already do this?
19
17
** use strsep instead of strtok?
20
** Do not depend on GPG key rings on disk
21
This would mean creating new GPG key rings with GPGME by importing
22
the key files from scratch on every program start.
25
** [#A] Man page: man8/password-prompt.8mandos
27
Man page says "obsolete", but [[info:libc:getpass][GNU LibC Manual: Reading Passwords]]
28
does not. See also [[http://sources.redhat.com/ml/libc-alpha/2003-05/msg00251.html][Marcus Brinkmann: Re: getpass obsolete?]] and
29
[[http://article.gmane.org/gmane.comp.lib.glibc.alpha/4906][Petter Reinholdtsen: Re: getpass obsolete?]], and especially also
30
[[http://www.steve.org.uk/Reference/Unix/faq_4.html#SEC48][Unix Programming FAQ 3.1 How can I make my program not echo input?]]
33
** [#A] Command man page: man8/mandos.8
34
** [#A] Config file man page: man5/mandos.conf (mandos.conf)
35
** [#A] Config file man page: man5/mandos-clients.conf (clients.conf)
36
** [#A] /etc/init.d/mandos-server :teddy:
38
** /etc/mandos/clients.d/*.conf
39
Watch this directory and add/remove/update clients?
40
** config for TXT record
22
** protocol version header
41
23
** Run-time communication with server
43
See also [[*Mandos-tools]]
44
** Implement --foreground
45
[[info:standards:Option%20Table][Table of Long Options]]
47
[[info:standards:Option%20Table][Table of Long Options]]
49
26
* Mandos-tools/utilities
50
27
All of this probably using D-Bus
56
** [#A] Change initrd.img file to not be publically readable
57
** [#A] Create /etc/initramfs-tools/hooks/mandos
58
[[file:/usr/share/doc/initramfs-tools/examples/example_hook][Example initramfs-tools hook script]]
59
** [#A] Create GPG key ring files in initrd
60
** [#A] Create mandos user and group for server
61
** [#A] Create /var/run/mandos directory with perm and ownership
69
* Announce project on news
70
news:comp.os.linux.announce
72
* [[http://en.tldp.org/HOWTO/Software-Release-Practice-HOWTO/][Software Release Practice HOWTO]]