/mandos/trunk

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to intro.xml

  • Committer: Teddy Hogeborn
  • Date: 2014-08-09 23:37:07 UTC
  • Revision ID: teddy@recompile.se-20140809233707-6c5qyievp78lnzf1
askpass-fifo: Lower privileges after opening FIFO.

* plugins.d/askpass-fifo.c (main): Lower privileges after opening FIFO.

Show diffs side-by-side

added added

removed removed

Lines of Context:
1
1
<?xml version="1.0" encoding="UTF-8"?>
2
2
<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
3
3
"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
4
 
<!ENTITY TIMESTAMP "2015-07-20">
 
4
<!ENTITY TIMESTAMP "2014-06-22">
5
5
<!ENTITY % common SYSTEM "common.ent">
6
6
%common;
7
7
]>
32
32
    <copyright>
33
33
      <year>2011</year>
34
34
      <year>2012</year>
35
 
      <year>2013</year>
36
 
      <year>2014</year>
37
 
      <year>2015</year>
38
35
      <holder>Teddy Hogeborn</holder>
39
36
      <holder>Björn Påhlsson</holder>
40
37
    </copyright>
200
197
      </para>
201
198
    </refsect2>
202
199
    
203
 
    <refsect2 id="sniff">
204
 
      <title>How about sniffing the network traffic and decrypting it
205
 
      later by physically grabbing the Mandos client and using its
206
 
      key?</title>
207
 
      <para>
208
 
        We only use <acronym>PFS</acronym> (Perfect Forward Security)
209
 
        key exchange algorithms in TLS, which protects against this.
210
 
      </para>
211
 
    </refsect2>
212
 
    
213
200
    <refsect2 id="physgrab">
214
201
      <title>Physically grabbing the Mandos server computer?</title>
215
202
      <para>