/mandos/trunk

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to overview.xml

  • Committer: Teddy Hogeborn
  • Date: 2008-07-22 06:23:29 UTC
  • Revision ID: teddy@fukt.bsnet.se-20080722062329-jaex5y5mslf6sqjx
* mandos-clients.conf ([DEFAULT]): New section.

* plugins.d/mandosclient.c (start_mandos_communication): Only print if
                                                         debugging.
                                                         Print server
                                                         name.
                                                         Bug fix: Loop
                                                         until suc-
                                                         cess.

* server.py (serverName): Set via option, not globally.
  (Client.__init__): Removed argument "options".  Require "timeout"
                     and "interval" arguments.
  (tcp_handler.handle): Set "priority" from self.server.options.
  (main): Removed "--timeout" and "--interval" options.  New options
          "--priority" and "--servicename".  Add defaults for
          "timeout" and "interval".  Set "serviceName" from options.
          Do not pass "options" to "Client()".

Show diffs side-by-side

added added

removed removed

Lines of Context:
1
 
<?xml version="1.0" encoding="UTF-8"?>
2
 
<!DOCTYPE para PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
3
 
        "http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd">
4
 
<para>
5
 
  This is part of the Mandos system for allowing computers to have
6
 
  encrypted root file systems and at the same time be capable of
7
 
  remote and/or unattended reboots.  The computers run a small client
8
 
  program in the initial <acronym>RAM</acronym> disk environment which
9
 
  will communicate with a server over a network.  All network
10
 
  communication is encrypted using <acronym>TLS</acronym>.  The
11
 
  clients are identified by the server using a TLS key; each client
12
 
  has one unique to it.  The server sends the clients an encrypted
13
 
  password.  The encrypted password is decrypted by the clients using
14
 
  a separate OpenPGP key, and the password is then used to unlock the
15
 
  root file system, whereupon the computers can continue booting
16
 
  normally.
17
 
</para>