/mandos/trunk : revision 288

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to plugins.d/mandos-client.xml

Committer: Teddy Hogeborn
Date: 2009-01-27 15:42:41 UTC
Revision ID: teddy@fukt.bsnet.se-20090127154241-x0kosjtvuo0iuptd

* plugins.d/mandos-client.c (main): Use separate bool variable instead
                                    of clumsy NUL character in
                                    "tempdir".  Bug fix: Don't try to
                                    remove temp directory if it was
                                    never created.

files added:
.bzr-builddeb

.bzr-builddeb/default.conf

INSTALL

NEWS

common.ent

debian

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.dirs

debian/mandos-client.docs

debian/mandos-client.links

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.docs

debian/mandos.lintian-overrides

debian/mandos.postinst

debian/mandos.prerm

debian/po

debian/rules

debian/watch

mandos-ctl

mandos.lsm

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

files removed:
plugins.d/usplash

files renamed:
plugins.d/password-request.c => plugins.d/mandos-client.c

plugins.d/password-request.xml => plugins.d/mandos-client.xml

files modified:
.bzrignore

Makefile

README

TODO

clients.conf

default-mandos

init.d-mandos

initramfs-tools-hook

initramfs-tools-script

legalnotice.xml

mandos

mandos-clients.conf.xml

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.xml

overview.xml

plugin-runner.c

plugin-runner.conf

plugin-runner.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

Show diffs side-by-side

added added

removed removed

plugins.d/mandos-client.xml

<?xml version="1.0" encoding="UTF-8"?>

<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"

"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [

<!ENTITY VERSION "1.0">

<!ENTITY COMMANDNAME "password-request">

<!ENTITY TIMESTAMP "2008-09-04">

<!ENTITY COMMANDNAME "mandos-client">

<!ENTITY TIMESTAMP "2009-01-24">

<!ENTITY % common SYSTEM "../common.ent">

%common;

<title>Mandos Manual</title>

<productname>Mandos</productname>

<productnumber>&VERSION;</productnumber>

<productnumber>&version;</productnumber>

<date>&TIMESTAMP;</date>

</authorgroup>

<holder>Teddy Hogeborn</holder>

<holder>Björn Påhlsson</holder>

</copyright>

<xi:include href="../legalnotice.xml"/>

</refentryinfo>

<refentrytitle>&COMMANDNAME;</refentrytitle>

<manvolnum>8mandos</manvolnum>

<refname><command>&COMMANDNAME;</command></refname>

Client for mandos

Client for <application>Mandos</application>

</refpurpose>

</refnamediv>

<command>&COMMANDNAME;</command>

113

115

</group>

114

116

</cmdsynopsis>

115

117

</refsynopsisdiv>

116

118

117

119

118

120

<title>DESCRIPTION</title>

119

121

<para>

120

122

<command>&COMMANDNAME;</command> is a client program that

121

123

communicates with <citerefentry><refentrytitle

122

124

>mandos</refentrytitle><manvolnum>8</manvolnum></citerefentry>

123

to get a password. It uses IPv6 link-local addresses to get

124

network connectivity, Zeroconf to find servers, and TLS with an

125

OpenPGP key to ensure authenticity and confidentiality. It

126

keeps running, trying all servers on the network, until it

127

receives a satisfactory reply or a TERM signal is received.

125

to get a password. In slightly more detail, this client program

126

brings up a network interface, uses the interface’s IPv6

127

link-local address to get network connectivity, uses Zeroconf to

128

find servers on the local network, and communicates with servers

129

using TLS with an OpenPGP key to ensure authenticity and

130

confidentiality. This client program keeps running, trying all

131

servers on the network, until it receives a satisfactory reply

132

or a TERM signal is received. If no servers are found, or after

133

all servers have been tried, it waits indefinitely for new

134

servers to appear.

128

135

</para>

129

136

<para>

130

137

This program is not meant to be run directly; it is really meant

199

206

specifies the interface to use to connect to the address

200

207

given.

201

208

</para>

209

<para>

210

Note that since this program will normally run in the

211

initial RAM disk environment, the interface must be an

212

interface which exists at that stage. Thus, the interface

213

can not be a pseudo-interface such as <quote>br0</quote>

214

or <quote>tun0</quote>; such interfaces will not exist

215

until much later in the boot process, and can not be used

216

by this program.

217

</para>

202

218

</listitem>

203

219

</varlistentry>

204

220

215

231

</para>

216

232

</listitem>

217

233

</varlistentry>

218

234

219

235

220

236

<term><option>--seckey=<replaceable

221

237

>FILE</replaceable></option></term>

238

254

xpointer="priority"/>

239

255

</listitem>

240

256

</varlistentry>

241

257

242

258

243

259

<term><option>--dh-bits=<replaceable

244

260

>BITS</replaceable></option></term>

284

300

</para>

285

301

</listitem>

286

302

</varlistentry>

287

303

288

304

289

305

<term><option>--version</option></term>

290

306

296

312

</varlistentry>

297

313

</variablelist>

298

314

</refsect1>

299

315

300

316

301

317

<title>OVERVIEW</title>

302

318

<xi:include href="../overview.xml"/>

311

327

<filename>/etc/crypttab</filename>, but it would then be

312

328

impossible to enter a password for the encrypted root disk at

313

329

the console, since this program does not read from the console

314

at all. This is why a separate plugin (<citerefentry>

315

<refentrytitle>password-prompt</refentrytitle>

316

<manvolnum>8mandos</manvolnum></citerefentry>) does that, which

317

will be run in parallel to this one by the plugin runner.

330

at all. This is why a separate plugin runner (<citerefentry>

331

<refentrytitle>plugin-runner</refentrytitle>

332

<manvolnum>8mandos</manvolnum></citerefentry>) is used to run

333

both this program and others in in parallel,

334

<emphasis>one</emphasis> of which will prompt for passwords on

335

the system console.

318

336

</para>

319

337

</refsect1>

320

338

327

345

program will exit with a non-zero exit status only if a critical

328

346

error occurs. Otherwise, it will forever connect to new

329

347

<application>Mandos</application> servers as they appear, trying

330

to get a decryptable password.

348

to get a decryptable password and print it.

331

349

</para>

332

350

</refsect1>

333

351

341

359

</para>

342

360

</refsect1>

343

361

344

362

345

363

<title>FILES</title>

346

364

347

365

366

384

367

385

368

386

369

387

370

388

371

389

<title>EXAMPLE</title>

372

390

<para>

421

439

</para>

422

440

</informalexample>

423

441

</refsect1>

424

442

425

443

426

444

<title>SECURITY</title>

427

445

<para>

447

465

The only remaining weak point is that someone with physical

448

466

access to the client hard drive might turn off the client

449

467

computer, read the OpenPGP keys directly from the hard drive,

450

and communicate with the server. The defense against this is

451

that the server is supposed to notice the client disappearing

452

and will stop giving out the encrypted data. Therefore, it is

453

important to set the timeout and checker interval values tightly

454

on the server. See <citerefentry><refentrytitle

468

and communicate with the server. To safeguard against this, the

469

server is supposed to notice the client disappearing and stop

470

giving out the encrypted data. Therefore, it is important to

471

set the timeout and checker interval values tightly on the

472

server. See <citerefentry><refentrytitle

455

473

>mandos</refentrytitle><manvolnum>8</manvolnum></citerefentry>.

456

474

</para>

457

475

<para>

468

486

confidential.

469

487

</para>

470

488

</refsect1>

471

489

472

490

473

491

474

492

<para>

599

617

</varlistentry>

600

618

</variablelist>

601

619

</refsect1>

602

603

620

</refentry>

621

604

622

605

623

606

624

Older »