/mandos/trunk : revision 738.1.2

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to plugins.d/mandos-client.xml

Committer: Teddy Hogeborn
Date: 2015-07-01 20:01:26 UTC
mto: This revision was merged to the branch mainline in revision 759.
Revision ID: teddy@recompile.se-20150701200126-qb3f6c3jcas2f4og

mandos-client: Try to start a plugin to add and remove a local route.

* debian/mandos-client.README.Debian: Add setting of environment
                                      variable MANDOSPLUGINHELPERDIR
                                      to command line testing
                                      mandos-client.
* mandos-client.c (raise_privileges): Moved to top of file.
                  (raise_privileges_permanently): - '' -
                  (lower_privileges): - '' -
                  (lower_privileges_permanently): - '' -
  (add_remove_local_route, add_local_route, remove_local_route): New.
  (start_mandos_communication): Set SOCK_CLOEXEC flag on socket.  Run
                                the above functions to add (and
                                remove) local route, if the conditions
                                indicates it could help.
  (run_network_hooks): Use O_DIRECTORY, O_PATH, and O_CLOEXEC flags
                       when opening network hook directory. Do
                       TEMP_FAILURE_RETRY around opening of /dev/null
                       and network hook executables.  Move redirecting
                       of stdout and stderr to as late as possible
                       before fexecve().
  (main): Use O_DIRECTORY and O_PATH when opening temporary directory.
* plugins.d/mandos-client.xml (ENVIRONMENT): Document usage of the
                                             MANDOSPLUGINHELPERDIR
                                             environment variable.

files added:
debian/upstream

debian/upstream/signing-key.asc

initramfs-unpack

mandos.service

plugin-helpers

files modified:
DBUS-API

INSTALL

Makefile

NEWS

TODO

common.ent

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.lintian-overrides

debian/mandos.dirs

debian/mandos.postinst

debian/rules

debian/watch

init.d-mandos

initramfs-tools-hook

intro.xml

mandos

mandos-clients.conf.xml

mandos-ctl

mandos-keygen

mandos-keygen.xml

mandos-monitor

mandos-monitor.xml

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.lsm

mandos.xml

plugin-runner.c

plugin-runner.xml

plugins.d/askpass-fifo.c

plugins.d/mandos-client.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.c

plugins.d/plymouth.c

plugins.d/splashy.c

plugins.d/usplash.c

Show diffs side-by-side

added added

removed removed

plugins.d/mandos-client.xml

<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"

"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [

<!ENTITY COMMANDNAME "mandos-client">

<!ENTITY TIMESTAMP "2013-06-21">

<!ENTITY TIMESTAMP "2015-06-29">

<!ENTITY % common SYSTEM "../common.ent">

%common;

<holder>Teddy Hogeborn</holder>

<holder>Björn Påhlsson</holder>

</copyright>

218

221

assumed to separate the address from the port number.

219

222

</para>

220

223

<para>

221

This option is normally only useful for testing and

222

debugging.

224

Normally, Zeroconf would be used to locate Mandos servers,

225

in which case this option would only be used when testing

226

and debugging.

223

227

</para>

224

228

</listitem>

225

229

</varlistentry>

258

262

<para>

259

263

<replaceable>NAME</replaceable> can be the string

260

264

<quote><literal>none</literal></quote>; this will make

261

<command>&COMMANDNAME;</command> not bring up

262

<emphasis>any</emphasis> interfaces specified

263

<emphasis>after</emphasis> this string. This is not

264

recommended, and only meant for advanced users.

265

<command>&COMMANDNAME;</command> only bring up interfaces

266

specified <emphasis>before</emphasis> this string. This

267

is not recommended, and only meant for advanced users.

265

268

</para>

266

269

</listitem>

267

270

</varlistentry>

442

445

443

446

444

447

<title>ENVIRONMENT</title>

448

449

450

<term><envar>MANDOSPLUGINHELPERDIR</envar></term>

451

452

<para>

453

This environment variable will be assumed to contain the

454

directory containing any helper executables. The use and

455

nature of these helper executables, if any, is

456

purposefully not documented.

457

</para>

458

</listitem>

459

</varlistentry>

460

</variablelist>

445

461

<para>

446

This program does not use any environment variables, not even

447

the ones provided by <citerefentry><refentrytitle

462

This program does not use any other environment variables, not

463

even the ones provided by <citerefentry><refentrytitle

448

464

>cryptsetup</refentrytitle><manvolnum>8</manvolnum>

449

465

</citerefentry>.

450

466

</para>

746

762

<para>

747

763

It will also help if the checker program on the server is

748

764

configured to request something from the client which can not be

749

spoofed by someone else on the network, unlike unencrypted

750

<acronym>ICMP</acronym> echo (<quote>ping</quote>) replies.

765

spoofed by someone else on the network, like SSH server key

766

fingerprints, and unlike unencrypted <acronym>ICMP</acronym>

767

echo (<quote>ping</quote>) replies.

751

768

</para>

752

769

<para>

753

770

<emphasis>Note</emphasis>: This makes it completely insecure to

Older »