/mandos/trunk : revision 28

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to plugins.d/password-prompt.xml

Committer: Teddy Hogeborn
Date: 2008-07-29 03:35:39 UTC
Revision ID: teddy@fukt.bsnet.se-20080729033539-08zecoj3jwlkpjhw

* server.conf: New file.

* mandos-clients.conf: Renamed to clients.conf.

* Makefile (FORTIFY): New.
  (CFLAGS): Include $(FORTIFY).

* plugins.d/mandosclient.c (main): New "if_index" variable.  Bug fix:
                                   check if interface exists.  New
                                   "--connect" option.

* server.py (serviceInterface): Removed; replaced by
                                "AvahiService.interface".  All users
                                changed.
  (AvahiError, AvahiServiceError, AvahiGroupError): New exception
                                                    classes.
  (AvahiService): New class.
  (serviceName): Removed; replaced by "AvahiService.name".  All users
                 changed.
  (serviceType): Removed; replaced by "AvahiService.type".  All users
                 changed.
  (servicePort): Removed; replaced by "AvahiService.port".  All users
                 changed.
  (serviceTXT): Removed; replaced by "AvahiService.TXT".  All users
                changed.
  (domain): Removed; replaced by "AvahiService.domain".  All users
            changed.
  (host): Removed; replaced by "AvahiService.host".  All users
          changed.
  (rename_count): Removed; replaced by "AvahiService.rename_count" and
                 "AvahiService.max_renames".  All users changed.
  (Client.__init__): If no secret or secfile, raise TypeError instead
                     of RuntimeError.
  (Client.last_seen): Renamed to "Client.last_checked_ok".  All users
                      changed.
  (Client.stop, Client.stop_checker): Use "getattr" with default value
                                      instead of "hasattr".
  (Client.still_valid): Removed "now" argument.
  (Client.handle): Separate the "no client found" and "client invalid"
                   cases for clearer code.
  (IPv6_TCPServer.__init__): "options" argument replaced by
                             "settings".  All callers changed.
  (IPv6_TCPServer.options): Replaced by "IPv6_TCPServer.settings".
                            All users changed.
  (IPv6_TCPServer.server_bind): Use getattr instead of hasattr.
  (add_service): Removed; replaced by "AvahiService.add".  All callers
                 changed.
  (remove_service): Removed; replaced by "AvahiService.remove".  All
                    callers changed.
  (entry_group_state_changed): On entry group collision, call the new
                               AvahiService.rename method.  Raise
                               AvahiGroupError on group error.
  (if_nametoindex): Use ctypes.utils.find_library to locate the C
                    library.  Cache the result.  Loop on EINTR.
  (daemon): Use os.path.devnull to locate "/dev/null".
  (killme): Removed.  All callers changed to do "sys.exit()" instead,
            except where stated otherwise.
  (main): Removed "exitstatus".  Removed all default values from all
          non-bool options.  New option "--configdir".  New variables
          "server_defaults" and "server_settings", read from
          "%(configdir)s/server.conf".  Let any supplied command line
          options override server settings.   Variable "defaults"
          renamed to "client_defaults", which is read from
          "clients.conf" instead of "mandos-clients.conf".  New global
          AvahiService object "service" replaces old global variables.
          Catch AvahiError and exit with error if caught.

files added:
ca.pem

cert.pem

client-cert.pem

client-key.pem

crl.pem

key.pem

files removed:
.bzr-builddeb

.bzr-builddeb/default.conf

.bzrignore

COPYING

INSTALL

README

common.ent

debian

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.config

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.links

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos-client.templates

debian/mandos.README.Debian

debian/mandos.config

debian/mandos.dirs

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.prerm

debian/mandos.templates

debian/po

debian/po/POTFILES.in

debian/po/sv.po

debian/rules

default-mandos

init.d-mandos

initramfs-tools-hook

initramfs-tools-hook-conf

initramfs-tools-script

legalnotice.xml

mandos-clients.conf.xml

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf.xml

mandos.xml

overview.xml

plugin-runner.conf

plugin-runner.xml

plugins.d/askpass-fifo.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.xml

plugins.d/splashy.c

plugins.d/usplash.c

files renamed:
plugin-runner.c => plugbasedclient.c

plugins.d/mandos-client.c => plugins.d/mandosclient.c

plugins.d/password-prompt.c => plugins.d/passprompt.c

mandos.conf => server.conf

mandos => server.py

files modified:
Makefile

TODO

clients.conf

Show diffs side-by-side

added added

removed removed

plugins.d/password-prompt.xml

<?xml version="1.0" encoding="UTF-8"?>

<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"

"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [

<!ENTITY COMMANDNAME "password-prompt">

<!ENTITY TIMESTAMP "2008-09-30">

<!ENTITY % common SYSTEM "../common.ent">

%common;

<title>Mandos Manual</title>

<productname>Mandos</productname>

<productnumber>&version;</productnumber>

<date>&TIMESTAMP;</date>

<firstname>Björn</firstname>

<surname>Påhlsson</surname>

<email>belorn@fukt.bsnet.se</email>

</address>

</author>

<firstname>Teddy</firstname>

<surname>Hogeborn</surname>

<email>teddy@fukt.bsnet.se</email>

</address>

</author>

</authorgroup>

<holder>Teddy Hogeborn</holder>

<holder>Björn Påhlsson</holder>

</copyright>

<xi:include href="../legalnotice.xml"/>

</refentryinfo>

<refentrytitle>&COMMANDNAME;</refentrytitle>

<manvolnum>8mandos</manvolnum>

</refmeta>

<refname><command>&COMMANDNAME;</command></refname>

<refpurpose>Prompt for a password and output it.</refpurpose>

</refnamediv>

<command>&COMMANDNAME;</command>

<arg choice="plain"><option>--prefix <replaceable

>PREFIX</replaceable></option></arg>

<arg choice="plain"><option>-p </option><replaceable

>PREFIX</replaceable></arg>

</group>

<sbr/>

<arg choice="opt"><option>--debug</option></arg>

</cmdsynopsis>

<command>&COMMANDNAME;</command>

</group>

</cmdsynopsis>

<command>&COMMANDNAME;</command>

<arg choice="plain"><option>--usage</option></arg>

</cmdsynopsis>

<command>&COMMANDNAME;</command>

<arg choice="plain"><option>--version</option></arg>

</group>

</cmdsynopsis>

</refsynopsisdiv>

<title>DESCRIPTION</title>

<para>

All <command>&COMMANDNAME;</command> does is prompt for a

password and output any given password to standard output. This

is not very useful on its own. This program is really meant to

run as a plugin in the <application>Mandos</application>

client-side system, where it is used as a fallback and

alternative to retrieving passwords from a <application

>Mandos</application> server.

</para>

<para>

This program is little more than a <citerefentry><refentrytitle

>getpass</refentrytitle><manvolnum>3</manvolnum></citerefentry>

wrapper, although actual use of that function is not guaranteed

or implied.

</para>

100

</refsect1>

101

102

103

<title>OPTIONS</title>

104

<para>

105

This program is commonly not invoked from the command line; it

106

is normally started by the <application>Mandos</application>

107

plugin runner, see <citerefentry><refentrytitle

108

>plugin-runner</refentrytitle><manvolnum>8mandos</manvolnum>

109

</citerefentry>. Any command line options this program accepts

110

are therefore normally provided by the plugin runner, and not

111

directly.

112

</para>

113

114

115

116

<term><option>--prefix=<replaceable

117

>PREFIX</replaceable></option></term>

118

<term><option>-p

119

<replaceable>PREFIX</replaceable></option></term>

120

121

<para>

122

Prefix string shown before the password prompt.

123

</para>

124

</listitem>

125

</varlistentry>

126

127

128

<term><option>--debug</option></term>

129

130

<para>

131

Enable debug mode. This will enable a lot of output to

132

standard error about what the program is doing. The

133

program will still perform all other functions normally.

134

</para>

135

</listitem>

136

</varlistentry>

137

138

139

140

141

142

<para>

143

Gives a help message about options and their meanings.

144

</para>

145

</listitem>

146

</varlistentry>

147

148

149

<term><option>--usage</option></term>

150

151

<para>

152

Gives a short usage message.

153

</para>

154

</listitem>

155

</varlistentry>

156

157

158

<term><option>--version</option></term>

159

160

161

<para>

162

Prints the program version.

163

</para>

164

</listitem>

165

</varlistentry>

166

</variablelist>

167

</refsect1>

168

169

170

<title>EXIT STATUS</title>

171

<para>

172

If exit status is 0, the output from the program is the password

173

as it was read. Otherwise, if exit status is other than 0, the

174

program has encountered an error, and any output so far could be

175

corrupt and/or truncated, and should therefore be ignored.

176

</para>

177

</refsect1>

178

179

180

<title>ENVIRONMENT</title>

181

182

183

<term><envar>cryptsource</envar></term>

184

<term><envar>crypttarget</envar></term>

185

186

<para>

187

If set, these environment variables will be assumed to

188

contain the source device name and the target device

189

mapper name, respectively, and will be shown as part of

190

the prompt.

191

</para>

192

<para>

193

These variables will normally be inherited from

194

<citerefentry><refentrytitle>plugin-runner</refentrytitle>

195

<manvolnum>8mandos</manvolnum></citerefentry>, which will

196

normally have inherited them from

197

<filename>/scripts/local-top/cryptroot</filename> in the

198

initial <acronym>RAM</acronym> disk environment, which will

199

have set them from parsing kernel arguments and

200

<filename>/conf/conf.d/cryptroot</filename> (also in the

201

initial RAM disk environment), which in turn will have been

202

created when the initial RAM disk image was created by

203

<filename

204

>/usr/share/initramfs-tools/hooks/cryptroot</filename>, by

205

extracting the information of the root file system from

206

<filename >/etc/crypttab</filename>.

207

</para>

208

<para>

209

This behavior is meant to exactly mirror the behavior of

210

<command>askpass</command>, the default password prompter.

211

</para>

212

</listitem>

213

</varlistentry>

214

</variablelist>

215

</refsect1>

216

217

218

219

<para>

220

None are known at this time.

221

</para>

222

</refsect1>

223

224

225

<title>EXAMPLE</title>

226

<para>

227

Note that normally, command line options will not be given

228

directly, but via options for the Mandos <citerefentry

229

><refentrytitle>plugin-runner</refentrytitle>

230

<manvolnum>8mandos</manvolnum></citerefentry>.

231

</para>

232

233

<para>

234

Normal invocation needs no options:

235

</para>

236

<para>

237

<userinput>&COMMANDNAME;</userinput>

238

</para>

239

</informalexample>

240

241

<para>

242

Show a prefix before the prompt; in this case, a host name.

243

It might be useful to be reminded of which host needs a

244

password, in case of <acronym>KVM</acronym> switches, etc.

245

</para>

246

<para>

247

248

249

<userinput>&COMMANDNAME; --prefix=host.example.org:</userinput>

250

251

</para>

252

</informalexample>

253

254

<para>

255

Run in debug mode.

256

</para>

257

<para>

258

259

<userinput>&COMMANDNAME; --debug</userinput>

260

</para>

261

</informalexample>

262

</refsect1>

263

264

265

<title>SECURITY</title>

266

<para>

267

On its own, this program is very simple, and does not exactly

268

present any security risks. The one thing that could be

269

considered worthy of note is this: This program is meant to be

270

run by <citerefentry><refentrytitle

271

>plugin-runner</refentrytitle><manvolnum>8mandos</manvolnum>

272

</citerefentry>, and will, when run standalone, outside, in a

273

normal environment, immediately output on its standard output

274

any presumably secret password it just received. Therefore,

275

when running this program standalone (which should never

276

normally be done), take care not to type in any real secret

277

password by force of habit, since it would then immediately be

278

shown as output.

279

</para>

280

<para>

281

To further alleviate any risk of being locked out of a system,

282

the <citerefentry><refentrytitle>plugin-runner</refentrytitle>

283

<manvolnum>8mandos</manvolnum></citerefentry> has a fallback

284

mode which does the same thing as this program, only with less

285

features.

286

</para>

287

</refsect1>

288

289

290

291

<para>

292

<citerefentry><refentrytitle>crypttab</refentrytitle>

293

294

<citerefentry><refentrytitle>mandos-client</refentrytitle>

295

<manvolnum>8mandos</manvolnum></citerefentry>

296

<citerefentry><refentrytitle>plugin-runner</refentrytitle>

297

<manvolnum>8mandos</manvolnum></citerefentry>,

298

</para>

299

</refsect1>

300

</refentry>

301

302

303

304

305

Older »