/mandos/trunk : revision 24.1.80

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to TODO

Committer: Björn Påhlsson
Date: 2008-09-02 10:40:22 UTC
mfrom: (139 mandos)
mto: (24.1.154 mandos) (237.4.3 mandos-release)
mto: This revision was merged to the branch mainline in revision 149.
Revision ID: belorn@braxen-20080902104022-5x39n4gmle0j15ws

merge

files added:
.bzrignore

legalnotice.xml

files modified:
Makefile

TODO

clients.conf

initramfs-tools-hook

mandos

mandos-clients.conf.xml

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf.xml

mandos.xml

overview.xml

plugin-runner.c

plugin-runner.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/password-request.xml

Show diffs side-by-side

added added

removed removed

TODO

** [#B] Add more if(debug) calls

** [#B] Seperate more code to function for more readability

** [#A] Man page: man8/plugin-runner.8mandos

*** EXIT STATUS

*** ENVIRONMENT

Environment is modified according to options and passed to plugins

*** EXAMPLE

Examples of normal usage, debug usage, debugging single or all

plugins, etc.

*** FILES

*** SECURITY

Note the danger of using this program, since you might lock

yourself out of your system without any means of entering the root

Must create in preinst if not pre-depending on cryptsetup

* password-prompt

** [#A] Man page: man8/password-prompt.8mandos

*** SYNOPSIS

Document short options

*** DESCRIPTION

Note that this is more or less a simple getpass(3) wrapper, even

though actual use of getpass(3) is not guaranteed.

*** EXIT STATUS

*** ENVIRONMENT

Document use of "cryptsource" and "crypttarget".

*** FILES

*** BUGS

*** EXAMPLE

Examples of normal usage, debug usage, with a prefix, etc.

*** SECURITY

Not much to do here but it is noteworthy to state the danger of

not having a fallback option.

*** SEE ALSO

Refer to mandos-client(8mandos) and password-request(8mandos)

and also, perhaps, to cryptsetup(8)?

** Use getpass(3)?

** [#C] Use getpass(3)?

Man page says "obsolete", but [[info:libc:getpass][GNU LibC Manual: Reading Passwords]]

does not. See also [[http://sources.redhat.com/ml/libc-alpha/2003-05/msg00251.html][Marcus Brinkmann: Re: getpass obsolete?]] and

[[http://article.gmane.org/gmane.comp.lib.glibc.alpha/4906][Petter Reinholdtsen: Re: getpass obsolete?]], and especially also

[[http://www.steve.org.uk/Reference/Unix/faq_4.html#SEC48][Unix Programming FAQ 3.1 How can I make my program not echo input?]]

* mandos (server)

** [#A] Config file man page: man5/mandos-clients.conf (clients.conf)

*** For option "secret", document which program can help generate it.

** [#A] /etc/init.d/mandos-server :teddy:

** [#B] Log level :bugs:

** /etc/mandos/clients.d/*.conf

108

** Disable client

109

** Enable client

110

* Man pages

** Use xinclude for common sections

Like authors, etc.

111

* Installer

112

** Client-side

113

*** Update initrd.img after installation

114

This seems to use some kind of "trigger" system

[[file:/usr/share/doc/dpkg/triggers.txt.gz]]

dpkg-trigger(1), deb-triggers(5)

115

*** Keydir move: /etc/mandos -> /etc/keys/mandos

116

Must create in preinst if not pre-depending on cryptsetup

117

*** mandos-keygen

100

**** "--passfile" option

101

Using the "secfile" option instead of "secret"

118

102

**** [#A] "--test" option

119

103

For testing decryption before rebooting.

120

104

** Server-side

Older »