/mandos/trunk : revision 742

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to Makefile

Committer: Teddy Hogeborn
Date: 2015-03-10 18:03:38 UTC
Revision ID: teddy@recompile.se-20150310180338-pcxw6r2qmw9k6br9

Add ":!RSA" to GnuTLS priority string, to disallow non-DHE kx.

If Mandos was somehow made to use a non-ephemeral Diffie-Hellman key
exchange algorithm in the TLS handshake, any saved network traffic
could then be decrypted later if the Mandos client key was obtained.
By default, Mandos uses ephemeral DH key exchanges which does not have
this problem, but a non-ephemeral key exchange algorithm was still
enabled by default. The simplest solution is to simply turn that off,
which ensures that Mandos will always use ephemeral DH key exchanges.

There is a "PFS" priority string specifier, but we can't use it because:

1. Security-wise, it is a mix between "NORMAL" and "SECURE128" - it
enables a lot more algorithms than "SECURE256".

2. It is only available since GnuTLS 3.2.4.

Thanks to Andreas Fischer <af@bantuX.org> for reporting this issue.

files added:
DBUS-API

debian/mandos-client.examples

debian/source

debian/source/format

debian/source/local-options

debian/upstream

debian/upstream/signing-key.asc

initramfs-unpack

intro.xml

mandos-ctl.xml

mandos-monitor.xml

mandos.service

network-hooks.d

network-hooks.d/bridge

network-hooks.d/bridge.conf

network-hooks.d/openvpn

network-hooks.d/openvpn.conf

network-hooks.d/wireless

network-hooks.d/wireless.conf

plugins.d/plymouth.c

plugins.d/plymouth.xml

files modified:
.bzrignore

INSTALL

Makefile

NEWS

README

TODO

clients.conf

common.ent

dbus-mandos.conf

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.docs

debian/mandos.postinst

debian/mandos.prerm

debian/rules

debian/watch

init.d-mandos

initramfs-tools-hook

initramfs-tools-script

mandos

mandos-clients.conf.xml

mandos-ctl

mandos-keygen

mandos-keygen.xml

mandos-monitor

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.lsm

mandos.xml

plugin-runner.c

plugin-runner.xml

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/mandos-client.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

Show diffs side-by-side

added added

removed removed

Makefile

WARN=-O -Wall -Wformat=2 -Winit-self -Wmissing-include-dirs \

-Wswitch-default -Wswitch-enum -Wunused-parameter \

-Wstrict-aliasing=1 -Wextra -Wfloat-equal -Wundef -Wshadow \

WARN=-O -Wall -Wextra -Wdouble-promotion -Wformat=2 -Winit-self \

-Wmissing-include-dirs -Wswitch-default -Wswitch-enum \

-Wunused -Wuninitialized -Wstrict-overflow=5 \

-Wsuggest-attribute=pure -Wsuggest-attribute=const \

-Wsuggest-attribute=noreturn -Wfloat-equal -Wundef -Wshadow \

-Wunsafe-loop-optimizations -Wpointer-arith \

-Wbad-function-cast -Wcast-qual -Wcast-align -Wwrite-strings \

-Wconversion -Wstrict-prototypes -Wold-style-definition \

-Wpacked -Wnested-externs -Winline -Wvolatile-register-var

# -Wunreachable-code

-Wconversion -Wlogical-op -Waggregate-return \

-Wstrict-prototypes -Wold-style-definition \

-Wmissing-format-attribute -Wnormalized=nfc -Wpacked \

-Wredundant-decls -Wnested-externs -Winline -Wvla \

-Wvolatile-register-var -Woverlength-strings

#DEBUG=-ggdb3

# For info about _FORTIFY_SOURCE, see

# <http://www.kernel.org/doc/man-pages/online/pages/man7/feature_test_macros.7.html>

# For info about _FORTIFY_SOURCE, see feature_test_macros(7)

# and <http://gcc.gnu.org/ml/gcc-patches/2004-09/msg02055.html>.

FORTIFY=-D_FORTIFY_SOURCE=2 -fstack-protector-all -fPIC

LINK_FORTIFY_LD=-z relro -z now

LINK_FORTIFY += -pie

endif

#COVERAGE=--coverage

OPTIMIZE=-Os

OPTIMIZE=-Os -fno-strict-aliasing

LANGUAGE=-std=gnu99

htmldir=man

version=1.0.14

version=1.6.9

SED=sed

USER=$(firstword $(subst :, ,$(shell getent passwd _mandos || getent passwd nobody || echo 65534)))

GROUP=$(firstword $(subst :, ,$(shell getent group _mandos || getent group nobody || echo 65534)))

## Use these settings for a traditional /usr/local install

# PREFIX=$(DESTDIR)/usr/local

# CONFDIR=$(DESTDIR)/etc/mandos

# KEYDIR=$(DESTDIR)/etc/mandos/keys

# MANDIR=$(PREFIX)/man

# INITRAMFSTOOLS=$(DESTDIR)/etc/initramfs-tools

# STATEDIR=$(DESTDIR)/var/lib/mandos

# LIBDIR=$(PREFIX)/lib

## These settings are for a package-type install

KEYDIR=$(DESTDIR)/etc/keys/mandos

MANDIR=$(PREFIX)/share/man

INITRAMFSTOOLS=$(DESTDIR)/usr/share/initramfs-tools

STATEDIR=$(DESTDIR)/var/lib/mandos

LIBDIR=$(shell \

for d in \

"/usr/lib/`dpkg-architecture -qDEB_HOST_MULTIARCH 2>/dev/null`" \

"`rpm --eval='%{_libdir}' 2>/dev/null`" /usr/lib; do \

if [ -d "$$d" -a "$$d" = "$${d%/}" ]; then \

echo "$(DESTDIR)$$d"; \

break; \

fi; \

done)

SYSTEMD=$(DESTDIR)$(shell pkg-config systemd --variable=systemdsystemunitdir)

GNUTLS_CFLAGS=$(shell pkg-config --cflags-only-I gnutls)

GNUTLS_LIBS=$(shell pkg-config --libs gnutls)

AVAHI_CFLAGS=$(shell pkg-config --cflags-only-I avahi-core)

getconf LFS_LDFLAGS)

# Do not change these two

CFLAGS=$(WARN) $(DEBUG) $(FORTIFY) $(COVERAGE) $(OPTIMIZE) \

CFLAGS+=$(WARN) $(DEBUG) $(FORTIFY) $(COVERAGE) $(OPTIMIZE) \

$(LANGUAGE) $(GNUTLS_CFLAGS) $(AVAHI_CFLAGS) $(GPGME_CFLAGS) \

-DVERSION='"$(version)"'

LDFLAGS=$(COVERAGE) $(LINK_FORTIFY) $(foreach flag,$(LINK_FORTIFY_LD),-Xlinker $(flag))

LDFLAGS+=-Xlinker --as-needed $(COVERAGE) $(LINK_FORTIFY) $(foreach flag,$(LINK_FORTIFY_LD),-Xlinker $(flag))

# Commands to format a DocBook <refentry> document into a manual page

DOCBOOKTOMAN=$(strip cd $(dir $<); xsltproc --nonet --xinclude \

--param make.single.year.ranges 1 \

--param man.output.quietly 1 \

--param man.authors.section.enabled 0 \

/usr/share/xml/docbook/stylesheet/nwalsh/manpages/docbook.xsl \

$(notdir $<); \

$(MANPOST) $(notdir $@))

# DocBook-to-man post-processing to fix a '\n' escape bug

MANPOST=$(SED) --in-place --expression='s,\\\\en,\\en,g;s,\\n,\\en,g'

if locale --all 2>/dev/null | grep --regexp='^en_US\.utf8$$' \

&& type man 2>/dev/null; then LANG=en_US.UTF-8 MANWIDTH=80 \

man --warnings --encoding=UTF-8 --local-file $(notdir $@); \

fi >/dev/null)

DOCBOOKTOHTML=$(strip xsltproc --nonet --xinclude \

--param make.year.ranges 1 \

104

--expression='s/$<a class="citerefentry" href="$$"><span class="citerefentry"><span class="refentrytitle">$$[^<]*$$<\/span>($$[^)]*$$)<\/span><\/a>$/\1\3.\5\2\3\4\5\6/g'

105

106

PLUGINS=plugins.d/password-prompt plugins.d/mandos-client \

plugins.d/usplash plugins.d/splashy plugins.d/askpass-fifo

107

plugins.d/usplash plugins.d/splashy plugins.d/askpass-fifo \

108

plugins.d/plymouth

109

CPROGS=plugin-runner $(PLUGINS)

PROGS=mandos mandos-keygen mandos-ctl $(CPROGS)

DOCS=mandos.8 plugin-runner.8mandos mandos-keygen.8 \

110

PROGS=mandos mandos-keygen mandos-ctl mandos-monitor $(CPROGS)

111

DOCS=mandos.8 mandos-keygen.8 mandos-monitor.8 mandos-ctl.8 \

112

mandos.conf.5 mandos-clients.conf.5 plugin-runner.8mandos \

113

plugins.d/mandos-client.8mandos \

plugins.d/password-prompt.8mandos mandos.conf.5 \

plugins.d/usplash.8mandos plugins.d/splashy.8mandos \

plugins.d/askpass-fifo.8mandos mandos-clients.conf.5

114

plugins.d/password-prompt.8mandos plugins.d/usplash.8mandos \

115

plugins.d/splashy.8mandos plugins.d/askpass-fifo.8mandos \

116

plugins.d/plymouth.8mandos intro.8mandos

117

118

htmldocs=$(addsuffix .xhtml,$(DOCS))

119

117

140

%.8mandos.xhtml: %.xml common.ent legalnotice.xml

118

141

$(DOCBOOKTOHTML)

119

142

143

intro.8mandos: intro.xml common.ent legalnotice.xml

144

$(DOCBOOKTOMAN)

145

intro.8mandos.xhtml: intro.xml common.ent legalnotice.xml

146

$(DOCBOOKTOHTML)

147

120

148

mandos.8: mandos.xml common.ent mandos-options.xml overview.xml \

121

149

legalnotice.xml

122

150

$(DOCBOOKTOMAN)

131

159

legalnotice.xml

132

160

$(DOCBOOKTOHTML)

133

161

162

mandos-monitor.8: mandos-monitor.xml common.ent overview.xml \

163

legalnotice.xml

164

$(DOCBOOKTOMAN)

165

mandos-monitor.8.xhtml: mandos-monitor.xml common.ent overview.xml \

166

legalnotice.xml

167

$(DOCBOOKTOHTML)

168

169

mandos-ctl.8: mandos-ctl.xml common.ent overview.xml \

170

legalnotice.xml

171

$(DOCBOOKTOMAN)

172

mandos-ctl.8.xhtml: mandos-ctl.xml common.ent overview.xml \

173

legalnotice.xml

174

$(DOCBOOKTOHTML)

175

134

176

mandos.conf.5: mandos.conf.xml common.ent mandos-options.xml \

135

177

legalnotice.xml

136

178

$(DOCBOOKTOMAN)

177

219

--expression='s/^$version = "$[^"]*"$$/\1$(version)"/' \

178

220

$@)

179

221

222

mandos-monitor: Makefile

223

$(strip $(SED) --in-place \

224

--expression='s/^$version = "$[^"]*"$$/\1$(version)"/' \

225

$@)

226

180

227

mandos.lsm: Makefile

181

228

$(strip $(SED) --in-place \

182

229

--expression='s/^$Version:$.*/\1\t$(version)/' \

189

236

$@)

190

237

191

238

plugins.d/mandos-client: plugins.d/mandos-client.c

192

$(LINK.c) $(GNUTLS_LIBS) $(AVAHI_LIBS) $(GPGME_LIBS) $(strip\

193

) $(COMMON) $^ $(LOADLIBES) $(LDLIBS) -o $@

239

$(LINK.c) $^ -lrt $(GNUTLS_LIBS) $(AVAHI_LIBS) $(strip\

240

) $(GPGME_LIBS) $(LOADLIBES) $(LDLIBS) -o $@

194

241

195

.PHONY : all doc html clean distclean run-client run-server install \

196

install-server install-client uninstall uninstall-server \

197

uninstall-client purge purge-server purge-client

242

.PHONY : all doc html clean distclean mostlyclean maintainer-clean \

243

check run-client run-server install install-html \

244

install-server install-client-nokey install-client uninstall \

245

uninstall-server uninstall-client purge purge-server \

246

purge-client

198

247

199

248

clean:

200

249

-rm --force $(CPROGS) $(objects) $(htmldocs) $(DOCS) core

202

251

distclean: clean

203

252

mostlyclean: clean

204

253

maintainer-clean: clean

205

-rm --force --recursive keydir confdir

254

-rm --force --recursive keydir confdir statedir

206

255

207

256

check: all

208

257

./mandos --check

258

./mandos-ctl --check

209

259

210

260

# Run the client with a local config and key

211

261

run-client: all keydir/seckey.txt keydir/pubkey.txt

262

@echo "###################################################################"

263

@echo "# The following error messages are harmless and can be safely #"

264

@echo "# ignored. The messages are caused by not running as root, but #"

265

@echo "# you should NOT run \"make run-client\" as root unless you also #"

266

@echo "# unpacked and compiled Mandos as root, which is NOT recommended. #"

267

@echo "# From plugin-runner: setgid: Operation not permitted #"

268

@echo "# setuid: Operation not permitted #"

269

@echo "# From askpass-fifo: mkfifo: Permission denied #"

270

@echo "# From mandos-client: #"

271

@echo "# Failed to raise privileges: Operation not permitted #"

272

@echo "# Warning: network hook \"*\" exited with status * #"

273

@echo "###################################################################"

274

# We set GNOME_KEYRING_CONTROL to block pam_gnome_keyring

212

275

./plugin-runner --plugin-dir=plugins.d \

213

276

--config-file=plugin-runner.conf \

214

--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt \

277

--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt,--network-hook-dir=network-hooks.d \

278

--env-for=mandos-client:GNOME_KEYRING_CONTROL= \

215

279

$(CLIENTARGS)

216

280

217

281

# Used by run-client

220

284

./mandos-keygen --dir keydir --force

221

285

222

286

# Run the server with a local config

223

run-server: confdir/mandos.conf confdir/clients.conf

224

./mandos --debug --no-dbus --configdir=confdir $(SERVERARGS)

287

run-server: confdir/mandos.conf confdir/clients.conf statedir

288

./mandos --debug --no-dbus --configdir=confdir \

289

--statedir=statedir $(SERVERARGS)

225

290

226

291

# Used by run-server

227

292

confdir/mandos.conf: mandos.conf

231

296

install --directory confdir

232

297

install --mode=u=rw $< $@

233

298

# Add a client password

234

./mandos-keygen --dir keydir --password >> $@

299

./mandos-keygen --dir keydir --password --no-ssh >> $@

300

statedir:

301

install --directory statedir

235

302

236

303

install: install-server install-client-nokey

237

304

242

309

243

310

install-server: doc

244

311

install --directory $(CONFDIR)

312

if install --directory --mode=u=rwx --owner=$(USER) \

313

--group=$(GROUP) $(STATEDIR); then \

314

:; \

315

elif install --directory --mode=u=rwx $(STATEDIR); then \

316

chown -- $(USER):$(GROUP) $(STATEDIR) || :; \

317

245

318

install --mode=u=rwx,go=rx mandos $(PREFIX)/sbin/mandos

319

install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \

320

mandos-ctl

321

install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \

322

mandos-monitor

246

323

install --mode=u=rw,go=r --target-directory=$(CONFDIR) \

247

324

mandos.conf

248

325

install --mode=u=rw --target-directory=$(CONFDIR) \

249

326

clients.conf

327

install --mode=u=rw,go=r dbus-mandos.conf \

328

$(DESTDIR)/etc/dbus-1/system.d/mandos.conf

250

329

install --mode=u=rwx,go=rx init.d-mandos \

251

330

$(DESTDIR)/etc/init.d/mandos

331

if [ "$(SYSTEMD)" != "$(DESTDIR)" -a -d "$(SYSTEMD)" ]; then \

332

install --mode=u=rw,go=r mandos.service $(SYSTEMD); \

333

252

334

install --mode=u=rw,go=r default-mandos \

253

335

$(DESTDIR)/etc/default/mandos

254

336

if [ -z $(DESTDIR) ]; then \

256

338

257

339

gzip --best --to-stdout mandos.8 \

258

340

> $(MANDIR)/man8/mandos.8.gz

341

gzip --best --to-stdout mandos-monitor.8 \

342

> $(MANDIR)/man8/mandos-monitor.8.gz

343

gzip --best --to-stdout mandos-ctl.8 \

344

> $(MANDIR)/man8/mandos-ctl.8.gz

259

345

gzip --best --to-stdout mandos.conf.5 \

260

346

> $(MANDIR)/man5/mandos.conf.5.gz

261

347

gzip --best --to-stdout mandos-clients.conf.5 \

262

348

> $(MANDIR)/man5/mandos-clients.conf.5.gz

349

gzip --best --to-stdout intro.8mandos \

350

> $(MANDIR)/man8/intro.8mandos.gz

263

351

264

352

install-client-nokey: all doc

265

install --directory $(PREFIX)/lib/mandos $(CONFDIR)

353

install --directory $(LIBDIR)/mandos $(CONFDIR)

266

354

install --directory --mode=u=rwx $(KEYDIR) \

267

$(PREFIX)/lib/mandos/plugins.d

268

if [ "$(CONFDIR)" != "$(PREFIX)/lib/mandos" ]; then \

355

$(LIBDIR)/mandos/plugins.d

356

if [ "$(CONFDIR)" != "$(LIBDIR)/mandos" ]; then \

269

357

install --mode=u=rwx \

270

358

--directory "$(CONFDIR)/plugins.d"; \

271

359

360

install --mode=u=rwx,go=rx --directory \

361

"$(CONFDIR)/network-hooks.d"

272

362

install --mode=u=rwx,go=rx \

273

--target-directory=$(PREFIX)/lib/mandos plugin-runner

363

--target-directory=$(LIBDIR)/mandos plugin-runner

274

364

install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \

275

365

mandos-keygen

276

366

install --mode=u=rwx,go=rx \

277

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

367

--target-directory=$(LIBDIR)/mandos/plugins.d \

278

368

plugins.d/password-prompt

279

369

install --mode=u=rwxs,go=rx \

280

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

370

--target-directory=$(LIBDIR)/mandos/plugins.d \

281

371

plugins.d/mandos-client

282

372

install --mode=u=rwxs,go=rx \

283

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

373

--target-directory=$(LIBDIR)/mandos/plugins.d \

284

374

plugins.d/usplash

285

375

install --mode=u=rwxs,go=rx \

286

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

376

--target-directory=$(LIBDIR)/mandos/plugins.d \

287

377

plugins.d/splashy

288

378

install --mode=u=rwxs,go=rx \

289

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

379

--target-directory=$(LIBDIR)/mandos/plugins.d \

290

380

plugins.d/askpass-fifo

381

install --mode=u=rwxs,go=rx \

382

--target-directory=$(LIBDIR)/mandos/plugins.d \

383

plugins.d/plymouth

291

384

install initramfs-tools-hook \

292

385

$(INITRAMFSTOOLS)/hooks/mandos

293

386

install --mode=u=rw,go=r initramfs-tools-hook-conf \

299

392

> $(MANDIR)/man8/mandos-keygen.8.gz

300

393

gzip --best --to-stdout plugin-runner.8mandos \

301

394

> $(MANDIR)/man8/plugin-runner.8mandos.gz

395

gzip --best --to-stdout plugins.d/mandos-client.8mandos \

396

> $(MANDIR)/man8/mandos-client.8mandos.gz

302

397

gzip --best --to-stdout plugins.d/password-prompt.8mandos \

303

398

> $(MANDIR)/man8/password-prompt.8mandos.gz

304

gzip --best --to-stdout plugins.d/mandos-client.8mandos \

305

> $(MANDIR)/man8/mandos-client.8mandos.gz

306

399

gzip --best --to-stdout plugins.d/usplash.8mandos \

307

400

> $(MANDIR)/man8/usplash.8mandos.gz

308

401

gzip --best --to-stdout plugins.d/splashy.8mandos \

309

402

> $(MANDIR)/man8/splashy.8mandos.gz

310

403

gzip --best --to-stdout plugins.d/askpass-fifo.8mandos \

311

404

> $(MANDIR)/man8/askpass-fifo.8mandos.gz

405

gzip --best --to-stdout plugins.d/plymouth.8mandos \

406

> $(MANDIR)/man8/plymouth.8mandos.gz

312

407

313

408

install-client: install-client-nokey

314

409

# Post-installation stuff

320

415

321

416

uninstall-server:

322

417

-rm --force $(PREFIX)/sbin/mandos \

418

$(PREFIX)/sbin/mandos-ctl \

419

$(PREFIX)/sbin/mandos-monitor \

323

420

$(MANDIR)/man8/mandos.8.gz \

421

$(MANDIR)/man8/mandos-monitor.8.gz \

422

$(MANDIR)/man8/mandos-ctl.8.gz \

324

423

$(MANDIR)/man5/mandos.conf.5.gz \

325

424

$(MANDIR)/man5/mandos-clients.conf.5.gz

326

425

update-rc.d -f mandos remove

332

431

! grep --regexp='^ *[^ #].*keyscript=[^,=]*/mandos/' \

333

432

$(DESTDIR)/etc/crypttab

334

433

-rm --force $(PREFIX)/sbin/mandos-keygen \

335

$(PREFIX)/lib/mandos/plugin-runner \

336

$(PREFIX)/lib/mandos/plugins.d/password-prompt \

337

$(PREFIX)/lib/mandos/plugins.d/mandos-client \

338

$(PREFIX)/lib/mandos/plugins.d/usplash \

339

$(PREFIX)/lib/mandos/plugins.d/splashy \

340

$(PREFIX)/lib/mandos/plugins.d/askpass-fifo \

434

$(LIBDIR)/mandos/plugin-runner \

435

$(LIBDIR)/mandos/plugins.d/password-prompt \

436

$(LIBDIR)/mandos/plugins.d/mandos-client \

437

$(LIBDIR)/mandos/plugins.d/usplash \

438

$(LIBDIR)/mandos/plugins.d/splashy \

439

$(LIBDIR)/mandos/plugins.d/askpass-fifo \

440

$(LIBDIR)/mandos/plugins.d/plymouth \

341

441

$(INITRAMFSTOOLS)/hooks/mandos \

342

442

$(INITRAMFSTOOLS)/conf-hooks.d/mandos \

343

443

$(INITRAMFSTOOLS)/scripts/init-premount/mandos \

444

$(MANDIR)/man8/mandos-keygen.8.gz \

344

445

$(MANDIR)/man8/plugin-runner.8mandos.gz \

345

$(MANDIR)/man8/mandos-keygen.8.gz \

446

$(MANDIR)/man8/mandos-client.8mandos.gz

346

447

$(MANDIR)/man8/password-prompt.8mandos.gz \

347

448

$(MANDIR)/man8/usplash.8mandos.gz \

348

449

$(MANDIR)/man8/splashy.8mandos.gz \

349

450

$(MANDIR)/man8/askpass-fifo.8mandos.gz \

350

$(MANDIR)/man8/mandos-client.8mandos.gz

351

-rmdir $(PREFIX)/lib/mandos/plugins.d $(CONFDIR)/plugins.d \

352

$(PREFIX)/lib/mandos $(CONFDIR) $(KEYDIR)

451

$(MANDIR)/man8/plymouth.8mandos.gz \

452

-rmdir $(LIBDIR)/mandos/plugins.d $(CONFDIR)/plugins.d \

453

$(LIBDIR)/mandos $(CONFDIR) $(KEYDIR)

353

454

update-initramfs -k all -u

354

455

355

456

purge: purge-server purge-client

356

457

357

458

purge-server: uninstall-server

358

459

-rm --force $(CONFDIR)/mandos.conf $(CONFDIR)/clients.conf \

460

$(DESTDIR)/etc/dbus-1/system.d/mandos.conf

359

461

$(DESTDIR)/etc/default/mandos \

360

462

$(DESTDIR)/etc/init.d/mandos \

463

$(SYSTEMD)/mandos.service \

464

$(DESTDIR)/run/mandos.pid \

361

465

$(DESTDIR)/var/run/mandos.pid

362

466

-rmdir $(CONFDIR)

363

467

Older »