/mandos/trunk : revision 51

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to mandos-client.xml

Committer: Teddy Hogeborn
Date: 2008-08-09 01:39:09 UTC
Revision ID: teddy@fukt.bsnet.se-20080809013909-n3i3ll1voycmmw7l

* clients.conf: Better comments.
  (foo): Commented out and changed into a better example client.
  (braxen_client): Removed.
  (bar): New commented-out example client.

* mandos: Changed all log messages to be unicode strings.
  (Client.fqdn): Renamed to "host".  All users and documentation
                 changed.
  (main): Exit immediately if no clients are defined.

* mandos.conf: Better comments.

files added:
network-protocol.txt

files removed:
.bzrignore

COPYING

initramfs-tools-hook

initramfs-tools-hook-conf

initramfs-tools-script

mandos-keygen

mandos-keygen.xml

mandos-options.xml

overview.xml

plugins.d/usplash

files renamed:
plugin-runner.c => mandos-client.c

plugin-runner.xml => mandos-client.xml

files modified:
Makefile

TODO

clients.conf

mandos

mandos-clients.conf.xml

mandos.conf

mandos.conf.xml

mandos.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/password-request.c

plugins.d/password-request.xml

Show diffs side-by-side

added added

removed removed

mandos-client.xml

<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"

"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [

<!ENTITY VERSION "1.0">

<!ENTITY COMMANDNAME "plugin-runner">

<!ENTITY TIMESTAMP "2008-08-31">

<!ENTITY COMMANDNAME "mandos-client">

<title>Mandos Manual</title>

<title>&COMMANDNAME;</title>

<productname>Mandos</productname>

<productname>&COMMANDNAME;</productname>

<productnumber>&VERSION;</productnumber>

<date>&TIMESTAMP;</date>

<firstname>Björn</firstname>

</authorgroup>

<holder>Teddy Hogeborn</holder>

<holder>Björn Påhlsson</holder>

<holder>Teddy Hogeborn & Björn Påhlsson</holder>

</copyright>

<para>

<refname><command>&COMMANDNAME;</command></refname>

Run Mandos plugins. Pass data from first succesful one.

get password for encrypted rootdisk

</refpurpose>

</refnamediv>

<command>&COMMANDNAME;</command>

<arg choice="plain"><option>--global-envs=<replaceable

>VAR</replaceable><literal>=</literal><replaceable

>value</replaceable></option></arg>

<arg choice="plain"><option>-e

<replaceable>VAR</replaceable><literal>=</literal><replaceable

>value</replaceable> </option></arg>

</group>

<sbr/>

<arg choice="plain"><option>--envs-for=<replaceable

>PLUGIN</replaceable><literal>:</literal><replaceable

>ENV</replaceable><literal>=</literal><replaceable

>value</replaceable></option></arg>

PLUGIN</replaceable><literal>:</literal><replaceable

>ENV</replaceable><literal>=</literal><replaceable

>value</replaceable> </option></arg>

</group>

<sbr/>

100

<arg choice="plain"><option>--global-options=<replaceable

101

>OPTIONS</replaceable></option></arg>

102

103

OPTIONS</replaceable> </option></arg>

104

</group>

105

<sbr/>

106

107

<arg choice="plain"><option>--options-for=<replaceable

108

>PLUGIN</replaceable><literal>:</literal><replaceable

109

>OPTIONS</replaceable></option></arg>

110

111

PLUGIN</replaceable><literal>:</literal><replaceable

112

>OPTIONS</replaceable> </option></arg>

113

</group>

114

<sbr/>

115

116

<arg choice="plain"><option>--disable=<replaceable

117

>PLUGIN</replaceable></option></arg>

118

<arg choice="plain"><option>-d

119

<replaceable>PLUGIN</replaceable> </option></arg>

120

</group>

121

<sbr/>

122

<arg><option>--groupid=<replaceable

123

>ID</replaceable></option></arg>

124

<sbr/>

125

<arg><option>--userid=<replaceable

126

>ID</replaceable></option></arg>

127

<sbr/>

128

<arg><option>--plugin-dir=<replaceable

129

>DIRECTORY</replaceable></option></arg>

130

<sbr/>

131

<arg><option>--debug</option></arg>

132

</cmdsynopsis>

133

134

<command>&COMMANDNAME;</command>

135

136

137

138

</group>

139

</cmdsynopsis>

140

141

<command>&COMMANDNAME;</command>

142

<arg choice='plain'><option>--usage</option></arg>

143

</cmdsynopsis>

144

145

<command>&COMMANDNAME;</command>

146

147

<arg choice='plain'><option>--version</option></arg>

148

149

</group>

<arg choice='opt' rep='repeat'>OPTION</arg>

150

</cmdsynopsis>

151

</refsynopsisdiv>

152

155

<para>

156

<command>&COMMANDNAME;</command> is a plugin runner that waits

157

for any of its plugins to return sucessfull with a password, and

158

passes it to cryptsetup as stdout message. This command is not

159

meant to be invoked directly, but is instead meant to be run by

160

cryptsetup by being specified in /etc/crypttab as a keyscript

161

and subsequlently started in the initrd environment. See

162

<citerefentry><refentrytitle>crypttab</refentrytitle>

163

<manvolnum>5</manvolnum></citerefentry> for more information on

164

keyscripts.

passes it to cryptsetup. plugins is defined as any executables

in the plugins directory will by default will be

/conf/conf.d/mandos/plugins.d. to stdout.

165

</para>

166

167

<para>

168

plugins is looked for in the plugins directory which by default will be

169

/conf/conf.d/mandos/plugins.d if not changed by option --plugin-dir.

170

</para>

171

</refsect1>

172

173

<title>OPTIONS</title>

174

175

176

<term><option>--global-options

177

<replaceable>OPTIONS</replaceable></option></term>

178

<term><option>-g

179

<replaceable>OPTIONS</replaceable></option></term>

<term><literal>-g</literal>,<literal>--global-options

<replaceable>OPTIONS</replaceable></literal></term>

180

181

<para>

182

Global options given to all plugins as additional start

183

arguments. Options are specified with a -o flag followed

184

by a comma separated string of options.

185

</para>

186

100

</listitem>

187

101

</varlistentry>

188

102

189

103

190

<term><option>--options-for

191

<replaceable>PLUGIN</replaceable><literal>:</literal

192

><replaceable>OPTION</replaceable></option></term>

193

<term><option>-o

194

<replaceable>PLUGIN</replaceable><literal>:</literal

195

><replaceable>OPTION</replaceable></option></term>

104

<term><literal>-o</literal>,<literal> --options-for

105

<replaceable>PLUGIN</replaceable>:<replaceable>OPTION</replaceable>

106

</literal></term>

196

107

197

108

<para>

198

109

Plugin specific options given to the plugin as additional

199

110

start arguments. Options are specified with a -o flag

200

111

followed by a comma separated string of options.

201

</para>

112

</para>

202

113

</listitem>

203

</varlistentry>

114

</varlistentry>

204

115

205

116

206

<term><option> --disable

207

<replaceable>PLUGIN</replaceable></option></term>

208

<term><option>-d

209

<replaceable>PLUGIN</replaceable></option></term>

117

<term><literal>-d</literal>,<literal> --disable

118

<replaceable>PLUGIN</replaceable>

119

</literal></term>

210

120

211

121

<para>

212

122

Disable a specific plugin

213

</para>

123

</para>

214

124

</listitem>

215

125

</varlistentry>

216

126

217

127

218

<term><option>--groupid

219

128

<term><literal>--groupid <replaceable>ID</replaceable>

129

</literal></term>

220

130

221

131

<para>

222

132

Group ID the plugins will run as

223

133

</para>

224

134

</listitem>

225

</varlistentry>

135

</varlistentry>

226

136

227

137

228

<term><option>--userid

229

138

<term><literal>--userid <replaceable>ID</replaceable>

139

</literal></term>

230

140

231

141

<para>

232

142

User ID the plugins will run as

233

143

</para>

234

144

</listitem>

235

</varlistentry>

145

</varlistentry>

236

146

237

147

238

<term><option>--plugin-dir

239

<replaceable>DIRECTORY</replaceable></option></term>

148

<term><literal>--plugin-dir <replaceable>DIRECTORY</replaceable>

149

</literal></term>

240

150

241

151

<para>

242

152

Specify a different plugin directory

243

153

</para>

244

154

</listitem>

245

</varlistentry>

155

</varlistentry>

246

156

247

157

248

<term><option>--debug</option></term>

158

<term><literal>--debug</literal></term>

249

159

250

160

<para>

251

161

Debug mode

254

164

</varlistentry>

255

165

256

166

257

258

167

259

168

260

169

<para>

261

170

Gives a help message

264

173

</varlistentry>

265

174

266

175

267

<term><option>--usage</option></term>

176

<term><literal>--usage</literal></term>

268

177

269

178

<para>

270

179

Gives a short usage message

273

182

</varlistentry>

274

183

275

184

276

<term><option>--version</option></term>

277

185

<term><literal>-V</literal>, <literal>--version</literal></term>

278

186

279

187

<para>

280

188

Prints the program version

281

189

</para>

282

190

</listitem>

283

</varlistentry>

191

</varlistentry>

284

192

</variablelist>

285

193

</refsect1>

286

287

288

<title>EXIT STATUS</title>

289

<para>

290

</para>

291

</refsect1>

292

293

294

<title>FILES</title>

295

<para>

296

</para>

297

</refsect1>

298

299

300

<title>NOTES</title>

301

<para>

302

</para>

303

</refsect1>

304

305

306

307

<para>

308

</para>

309

</refsect1>

310

311

312

<title>EXAMPLE</title>

313

<para>

314

</para>

315

</refsect1>

316

317

318

<title>SECURITY</title>

319

<para>

320

</para>

321

</refsect1>

322

323

324

325

<para>

326

<citerefentry><refentrytitle>cryptsetup</refentrytitle>

327

<manvolnum>8</manvolnum></citerefentry>,

328

<citerefentry><refentrytitle>mandos</refentrytitle>

329

<manvolnum>8</manvolnum></citerefentry>,

330

<citerefentry><refentrytitle>password-prompt</refentrytitle>

331

<manvolnum>8mandos</manvolnum></citerefentry>,

332

<citerefentry><refentrytitle>password-request</refentrytitle>

333

<manvolnum>8mandos</manvolnum></citerefentry>

334

</para>

335

</refsect1>

336

337

194

</refentry>

338

339

340

341

342

Older »