/mandos/trunk : revision 742

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to Makefile

Committer: Teddy Hogeborn
Date: 2015-03-10 18:03:38 UTC
Revision ID: teddy@recompile.se-20150310180338-pcxw6r2qmw9k6br9

Add ":!RSA" to GnuTLS priority string, to disallow non-DHE kx.

If Mandos was somehow made to use a non-ephemeral Diffie-Hellman key
exchange algorithm in the TLS handshake, any saved network traffic
could then be decrypted later if the Mandos client key was obtained.
By default, Mandos uses ephemeral DH key exchanges which does not have
this problem, but a non-ephemeral key exchange algorithm was still
enabled by default. The simplest solution is to simply turn that off,
which ensures that Mandos will always use ephemeral DH key exchanges.

There is a "PFS" priority string specifier, but we can't use it because:

1. Security-wise, it is a mix between "NORMAL" and "SECURE128" - it
enables a lot more algorithms than "SECURE256".

2. It is only available since GnuTLS 3.2.4.

Thanks to Andreas Fischer <af@bantuX.org> for reporting this issue.

files added:
debian/mandos-client.examples

debian/source

debian/source/format

debian/source/local-options

debian/upstream

debian/upstream/signing-key.asc

initramfs-unpack

intro.xml

mandos-ctl.xml

mandos-monitor.xml

mandos.service

network-hooks.d

network-hooks.d/bridge

network-hooks.d/bridge.conf

network-hooks.d/openvpn

network-hooks.d/openvpn.conf

network-hooks.d/wireless

network-hooks.d/wireless.conf

plugins.d/plymouth.xml

files modified:
.bzrignore

DBUS-API

INSTALL

Makefile

NEWS

README

TODO

clients.conf

common.ent

dbus-mandos.conf

debian/changelog

debian/compat

debian/control

debian/copyright

debian/mandos-client.README.Debian

debian/mandos-client.lintian-overrides

debian/mandos-client.postinst

debian/mandos-client.postrm

debian/mandos.README.Debian

debian/mandos.dirs

debian/mandos.postinst

debian/mandos.prerm

debian/rules

debian/watch

init.d-mandos

initramfs-tools-hook

initramfs-tools-script

mandos

mandos-clients.conf.xml

mandos-ctl

mandos-keygen

mandos-keygen.xml

mandos-monitor

mandos-options.xml

mandos.conf

mandos.conf.xml

mandos.lsm

mandos.xml

plugin-runner.c

plugin-runner.xml

plugins.d/askpass-fifo.c

plugins.d/askpass-fifo.xml

plugins.d/mandos-client.c

plugins.d/mandos-client.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/plymouth.c

plugins.d/splashy.c

plugins.d/splashy.xml

plugins.d/usplash.c

plugins.d/usplash.xml

Show diffs side-by-side

added added

removed removed

Makefile

WARN=-O -Wall -Wformat=2 -Winit-self -Wmissing-include-dirs \

-Wswitch-default -Wswitch-enum -Wunused-parameter \

-Wstrict-aliasing=1 -Wextra -Wfloat-equal -Wundef -Wshadow \

WARN=-O -Wall -Wextra -Wdouble-promotion -Wformat=2 -Winit-self \

-Wmissing-include-dirs -Wswitch-default -Wswitch-enum \

-Wunused -Wuninitialized -Wstrict-overflow=5 \

-Wsuggest-attribute=pure -Wsuggest-attribute=const \

-Wsuggest-attribute=noreturn -Wfloat-equal -Wundef -Wshadow \

-Wunsafe-loop-optimizations -Wpointer-arith \

-Wbad-function-cast -Wcast-qual -Wcast-align -Wwrite-strings \

-Wconversion -Wstrict-prototypes -Wold-style-definition \

-Wpacked -Wnested-externs -Winline -Wvolatile-register-var

# -Wunreachable-code

-Wconversion -Wlogical-op -Waggregate-return \

-Wstrict-prototypes -Wold-style-definition \

-Wmissing-format-attribute -Wnormalized=nfc -Wpacked \

-Wredundant-decls -Wnested-externs -Winline -Wvla \

-Wvolatile-register-var -Woverlength-strings

#DEBUG=-ggdb3

# For info about _FORTIFY_SOURCE, see

# <http://www.kernel.org/doc/man-pages/online/pages/man7/feature_test_macros.7.html>

# For info about _FORTIFY_SOURCE, see feature_test_macros(7)

# and <http://gcc.gnu.org/ml/gcc-patches/2004-09/msg02055.html>.

FORTIFY=-D_FORTIFY_SOURCE=2 -fstack-protector-all -fPIC

LINK_FORTIFY_LD=-z relro -z now

LINK_FORTIFY += -pie

endif

#COVERAGE=--coverage

OPTIMIZE=-Os

OPTIMIZE=-Os -fno-strict-aliasing

LANGUAGE=-std=gnu99

htmldir=man

version=1.0.14

version=1.6.9

SED=sed

USER=$(firstword $(subst :, ,$(shell getent passwd _mandos || getent passwd nobody || echo 65534)))

GROUP=$(firstword $(subst :, ,$(shell getent group _mandos || getent group nobody || echo 65534)))

## Use these settings for a traditional /usr/local install

# PREFIX=$(DESTDIR)/usr/local

# CONFDIR=$(DESTDIR)/etc/mandos

# KEYDIR=$(DESTDIR)/etc/mandos/keys

# MANDIR=$(PREFIX)/man

# INITRAMFSTOOLS=$(DESTDIR)/etc/initramfs-tools

# STATEDIR=$(DESTDIR)/var/lib/mandos

# LIBDIR=$(PREFIX)/lib

## These settings are for a package-type install

KEYDIR=$(DESTDIR)/etc/keys/mandos

MANDIR=$(PREFIX)/share/man

INITRAMFSTOOLS=$(DESTDIR)/usr/share/initramfs-tools

STATEDIR=$(DESTDIR)/var/lib/mandos

LIBDIR=$(shell \

for d in \

"/usr/lib/`dpkg-architecture -qDEB_HOST_MULTIARCH 2>/dev/null`" \

"`rpm --eval='%{_libdir}' 2>/dev/null`" /usr/lib; do \

if [ -d "$$d" -a "$$d" = "$${d%/}" ]; then \

echo "$(DESTDIR)$$d"; \

break; \

fi; \

done)

SYSTEMD=$(DESTDIR)$(shell pkg-config systemd --variable=systemdsystemunitdir)

GNUTLS_CFLAGS=$(shell pkg-config --cflags-only-I gnutls)

GNUTLS_LIBS=$(shell pkg-config --libs gnutls)

AVAHI_CFLAGS=$(shell pkg-config --cflags-only-I avahi-core)

getconf LFS_LDFLAGS)

# Do not change these two

CFLAGS=$(WARN) $(DEBUG) $(FORTIFY) $(COVERAGE) $(OPTIMIZE) \

CFLAGS+=$(WARN) $(DEBUG) $(FORTIFY) $(COVERAGE) $(OPTIMIZE) \

$(LANGUAGE) $(GNUTLS_CFLAGS) $(AVAHI_CFLAGS) $(GPGME_CFLAGS) \

-DVERSION='"$(version)"'

LDFLAGS=$(COVERAGE) $(LINK_FORTIFY) $(foreach flag,$(LINK_FORTIFY_LD),-Xlinker $(flag))

LDFLAGS+=-Xlinker --as-needed $(COVERAGE) $(LINK_FORTIFY) $(foreach flag,$(LINK_FORTIFY_LD),-Xlinker $(flag))

# Commands to format a DocBook <refentry> document into a manual page

DOCBOOKTOMAN=$(strip cd $(dir $<); xsltproc --nonet --xinclude \

--param make.single.year.ranges 1 \

--param man.output.quietly 1 \

--param man.authors.section.enabled 0 \

/usr/share/xml/docbook/stylesheet/nwalsh/manpages/docbook.xsl \

$(notdir $<); \

$(MANPOST) $(notdir $@))

# DocBook-to-man post-processing to fix a '\n' escape bug

MANPOST=$(SED) --in-place --expression='s,\\\\en,\\en,g;s,\\n,\\en,g'

if locale --all 2>/dev/null | grep --regexp='^en_US\.utf8$$' \

&& type man 2>/dev/null; then LANG=en_US.UTF-8 MANWIDTH=80 \

man --warnings --encoding=UTF-8 --local-file $(notdir $@); \

fi >/dev/null)

DOCBOOKTOHTML=$(strip xsltproc --nonet --xinclude \

--param make.year.ranges 1 \

107

plugins.d/usplash plugins.d/splashy plugins.d/askpass-fifo \

108

plugins.d/plymouth

109

CPROGS=plugin-runner $(PLUGINS)

PROGS=mandos mandos-keygen mandos-ctl $(CPROGS)

DOCS=mandos.8 plugin-runner.8mandos mandos-keygen.8 \

110

PROGS=mandos mandos-keygen mandos-ctl mandos-monitor $(CPROGS)

111

DOCS=mandos.8 mandos-keygen.8 mandos-monitor.8 mandos-ctl.8 \

112

mandos.conf.5 mandos-clients.conf.5 plugin-runner.8mandos \

113

plugins.d/mandos-client.8mandos \

plugins.d/password-prompt.8mandos mandos.conf.5 \

plugins.d/usplash.8mandos plugins.d/splashy.8mandos \

plugins.d/askpass-fifo.8mandos mandos-clients.conf.5

114

plugins.d/password-prompt.8mandos plugins.d/usplash.8mandos \

115

plugins.d/splashy.8mandos plugins.d/askpass-fifo.8mandos \

116

plugins.d/plymouth.8mandos intro.8mandos

117

118

htmldocs=$(addsuffix .xhtml,$(DOCS))

119

118

140

%.8mandos.xhtml: %.xml common.ent legalnotice.xml

119

141

$(DOCBOOKTOHTML)

120

142

143

intro.8mandos: intro.xml common.ent legalnotice.xml

144

$(DOCBOOKTOMAN)

145

intro.8mandos.xhtml: intro.xml common.ent legalnotice.xml

146

$(DOCBOOKTOHTML)

147

121

148

mandos.8: mandos.xml common.ent mandos-options.xml overview.xml \

122

149

legalnotice.xml

123

150

$(DOCBOOKTOMAN)

132

159

legalnotice.xml

133

160

$(DOCBOOKTOHTML)

134

161

162

mandos-monitor.8: mandos-monitor.xml common.ent overview.xml \

163

legalnotice.xml

164

$(DOCBOOKTOMAN)

165

mandos-monitor.8.xhtml: mandos-monitor.xml common.ent overview.xml \

166

legalnotice.xml

167

$(DOCBOOKTOHTML)

168

169

mandos-ctl.8: mandos-ctl.xml common.ent overview.xml \

170

legalnotice.xml

171

$(DOCBOOKTOMAN)

172

mandos-ctl.8.xhtml: mandos-ctl.xml common.ent overview.xml \

173

legalnotice.xml

174

$(DOCBOOKTOHTML)

175

135

176

mandos.conf.5: mandos.conf.xml common.ent mandos-options.xml \

136

177

legalnotice.xml

137

178

$(DOCBOOKTOMAN)

178

219

--expression='s/^$version = "$[^"]*"$$/\1$(version)"/' \

179

220

$@)

180

221

222

mandos-monitor: Makefile

223

$(strip $(SED) --in-place \

224

--expression='s/^$version = "$[^"]*"$$/\1$(version)"/' \

225

$@)

226

181

227

mandos.lsm: Makefile

182

228

$(strip $(SED) --in-place \

183

229

--expression='s/^$Version:$.*/\1\t$(version)/' \

190

236

$@)

191

237

192

238

plugins.d/mandos-client: plugins.d/mandos-client.c

193

$(LINK.c) $(GNUTLS_LIBS) $(AVAHI_LIBS) $(GPGME_LIBS) $(strip\

194

) $(COMMON) $^ $(LOADLIBES) $(LDLIBS) -o $@

239

$(LINK.c) $^ -lrt $(GNUTLS_LIBS) $(AVAHI_LIBS) $(strip\

240

) $(GPGME_LIBS) $(LOADLIBES) $(LDLIBS) -o $@

195

241

196

.PHONY : all doc html clean distclean run-client run-server install \

197

install-server install-client uninstall uninstall-server \

198

uninstall-client purge purge-server purge-client

242

.PHONY : all doc html clean distclean mostlyclean maintainer-clean \

243

check run-client run-server install install-html \

244

install-server install-client-nokey install-client uninstall \

245

uninstall-server uninstall-client purge purge-server \

246

purge-client

199

247

200

248

clean:

201

249

-rm --force $(CPROGS) $(objects) $(htmldocs) $(DOCS) core

203

251

distclean: clean

204

252

mostlyclean: clean

205

253

maintainer-clean: clean

206

-rm --force --recursive keydir confdir

254

-rm --force --recursive keydir confdir statedir

207

255

208

256

check: all

209

257

./mandos --check

258

./mandos-ctl --check

210

259

211

260

# Run the client with a local config and key

212

261

run-client: all keydir/seckey.txt keydir/pubkey.txt

215

264

@echo "# ignored. The messages are caused by not running as root, but #"

216

265

@echo "# you should NOT run \"make run-client\" as root unless you also #"

217

266

@echo "# unpacked and compiled Mandos as root, which is NOT recommended. #"

218

@echo "# From plugin-runner: setuid: Operation not permitted #"

267

@echo "# From plugin-runner: setgid: Operation not permitted #"

268

@echo "# setuid: Operation not permitted #"

219

269

@echo "# From askpass-fifo: mkfifo: Permission denied #"

220

@echo "# From mandos-client: setuid: Operation not permitted #"

221

@echo "# seteuid: Operation not permitted #"

222

@echo "# klogctl: Operation not permitted #"

270

@echo "# From mandos-client: #"

271

@echo "# Failed to raise privileges: Operation not permitted #"

272

@echo "# Warning: network hook \"*\" exited with status * #"

223

273

@echo "###################################################################"

274

# We set GNOME_KEYRING_CONTROL to block pam_gnome_keyring

224

275

./plugin-runner --plugin-dir=plugins.d \

225

276

--config-file=plugin-runner.conf \

226

--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt \

277

--options-for=mandos-client:--seckey=keydir/seckey.txt,--pubkey=keydir/pubkey.txt,--network-hook-dir=network-hooks.d \

278

--env-for=mandos-client:GNOME_KEYRING_CONTROL= \

227

279

$(CLIENTARGS)

228

280

229

281

# Used by run-client

232

284

./mandos-keygen --dir keydir --force

233

285

234

286

# Run the server with a local config

235

run-server: confdir/mandos.conf confdir/clients.conf

236

@echo "#################################################################"

237

@echo "# NOTE: Please IGNORE the error about \"Could not open file #"

238

@echo "# u'/var/run/mandos.pid'\" - it is harmless and is caused by #"

239

@echo "# the server not running as root. Do NOT run \"make run-server\" #"

240

@echo "# server as root if you didn't also unpack and compile it thus. #"

241

@echo "#################################################################"

242

./mandos --debug --no-dbus --configdir=confdir $(SERVERARGS)

287

run-server: confdir/mandos.conf confdir/clients.conf statedir

288

./mandos --debug --no-dbus --configdir=confdir \

289

--statedir=statedir $(SERVERARGS)

243

290

244

291

# Used by run-server

245

292

confdir/mandos.conf: mandos.conf

249

296

install --directory confdir

250

297

install --mode=u=rw $< $@

251

298

# Add a client password

252

./mandos-keygen --dir keydir --password >> $@

299

./mandos-keygen --dir keydir --password --no-ssh >> $@

300

statedir:

301

install --directory statedir

253

302

254

303

install: install-server install-client-nokey

255

304

260

309

261

310

install-server: doc

262

311

install --directory $(CONFDIR)

312

if install --directory --mode=u=rwx --owner=$(USER) \

313

--group=$(GROUP) $(STATEDIR); then \

314

:; \

315

elif install --directory --mode=u=rwx $(STATEDIR); then \

316

chown -- $(USER):$(GROUP) $(STATEDIR) || :; \

317

263

318

install --mode=u=rwx,go=rx mandos $(PREFIX)/sbin/mandos

319

install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \

320

mandos-ctl

321

install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \

322

mandos-monitor

264

323

install --mode=u=rw,go=r --target-directory=$(CONFDIR) \

265

324

mandos.conf

266

325

install --mode=u=rw --target-directory=$(CONFDIR) \

267

326

clients.conf

327

install --mode=u=rw,go=r dbus-mandos.conf \

328

$(DESTDIR)/etc/dbus-1/system.d/mandos.conf

268

329

install --mode=u=rwx,go=rx init.d-mandos \

269

330

$(DESTDIR)/etc/init.d/mandos

331

if [ "$(SYSTEMD)" != "$(DESTDIR)" -a -d "$(SYSTEMD)" ]; then \

332

install --mode=u=rw,go=r mandos.service $(SYSTEMD); \

333

270

334

install --mode=u=rw,go=r default-mandos \

271

335

$(DESTDIR)/etc/default/mandos

272

336

if [ -z $(DESTDIR) ]; then \

274

338

275

339

gzip --best --to-stdout mandos.8 \

276

340

> $(MANDIR)/man8/mandos.8.gz

341

gzip --best --to-stdout mandos-monitor.8 \

342

> $(MANDIR)/man8/mandos-monitor.8.gz

343

gzip --best --to-stdout mandos-ctl.8 \

344

> $(MANDIR)/man8/mandos-ctl.8.gz

277

345

gzip --best --to-stdout mandos.conf.5 \

278

346

> $(MANDIR)/man5/mandos.conf.5.gz

279

347

gzip --best --to-stdout mandos-clients.conf.5 \

280

348

> $(MANDIR)/man5/mandos-clients.conf.5.gz

349

gzip --best --to-stdout intro.8mandos \

350

> $(MANDIR)/man8/intro.8mandos.gz

281

351

282

352

install-client-nokey: all doc

283

install --directory $(PREFIX)/lib/mandos $(CONFDIR)

353

install --directory $(LIBDIR)/mandos $(CONFDIR)

284

354

install --directory --mode=u=rwx $(KEYDIR) \

285

$(PREFIX)/lib/mandos/plugins.d

286

if [ "$(CONFDIR)" != "$(PREFIX)/lib/mandos" ]; then \

355

$(LIBDIR)/mandos/plugins.d

356

if [ "$(CONFDIR)" != "$(LIBDIR)/mandos" ]; then \

287

357

install --mode=u=rwx \

288

358

--directory "$(CONFDIR)/plugins.d"; \

289

359

360

install --mode=u=rwx,go=rx --directory \

361

"$(CONFDIR)/network-hooks.d"

290

362

install --mode=u=rwx,go=rx \

291

--target-directory=$(PREFIX)/lib/mandos plugin-runner

363

--target-directory=$(LIBDIR)/mandos plugin-runner

292

364

install --mode=u=rwx,go=rx --target-directory=$(PREFIX)/sbin \

293

365

mandos-keygen

294

366

install --mode=u=rwx,go=rx \

295

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

367

--target-directory=$(LIBDIR)/mandos/plugins.d \

296

368

plugins.d/password-prompt

297

369

install --mode=u=rwxs,go=rx \

298

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

370

--target-directory=$(LIBDIR)/mandos/plugins.d \

299

371

plugins.d/mandos-client

300

372

install --mode=u=rwxs,go=rx \

301

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

373

--target-directory=$(LIBDIR)/mandos/plugins.d \

302

374

plugins.d/usplash

303

375

install --mode=u=rwxs,go=rx \

304

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

376

--target-directory=$(LIBDIR)/mandos/plugins.d \

305

377

plugins.d/splashy

306

378

install --mode=u=rwxs,go=rx \

307

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

379

--target-directory=$(LIBDIR)/mandos/plugins.d \

308

380

plugins.d/askpass-fifo

309

381

install --mode=u=rwxs,go=rx \

310

--target-directory=$(PREFIX)/lib/mandos/plugins.d \

382

--target-directory=$(LIBDIR)/mandos/plugins.d \

311

383

plugins.d/plymouth

312

384

install initramfs-tools-hook \

313

385

$(INITRAMFSTOOLS)/hooks/mandos

320

392

> $(MANDIR)/man8/mandos-keygen.8.gz

321

393

gzip --best --to-stdout plugin-runner.8mandos \

322

394

> $(MANDIR)/man8/plugin-runner.8mandos.gz

395

gzip --best --to-stdout plugins.d/mandos-client.8mandos \

396

> $(MANDIR)/man8/mandos-client.8mandos.gz

323

397

gzip --best --to-stdout plugins.d/password-prompt.8mandos \

324

398

> $(MANDIR)/man8/password-prompt.8mandos.gz

325

gzip --best --to-stdout plugins.d/mandos-client.8mandos \

326

> $(MANDIR)/man8/mandos-client.8mandos.gz

327

399

gzip --best --to-stdout plugins.d/usplash.8mandos \

328

400

> $(MANDIR)/man8/usplash.8mandos.gz

329

401

gzip --best --to-stdout plugins.d/splashy.8mandos \

330

402

> $(MANDIR)/man8/splashy.8mandos.gz

331

403

gzip --best --to-stdout plugins.d/askpass-fifo.8mandos \

332

404

> $(MANDIR)/man8/askpass-fifo.8mandos.gz

405

gzip --best --to-stdout plugins.d/plymouth.8mandos \

406

> $(MANDIR)/man8/plymouth.8mandos.gz

333

407

334

408

install-client: install-client-nokey

335

409

# Post-installation stuff

341

415

342

416

uninstall-server:

343

417

-rm --force $(PREFIX)/sbin/mandos \

418

$(PREFIX)/sbin/mandos-ctl \

419

$(PREFIX)/sbin/mandos-monitor \

344

420

$(MANDIR)/man8/mandos.8.gz \

421

$(MANDIR)/man8/mandos-monitor.8.gz \

422

$(MANDIR)/man8/mandos-ctl.8.gz \

345

423

$(MANDIR)/man5/mandos.conf.5.gz \

346

424

$(MANDIR)/man5/mandos-clients.conf.5.gz

347

425

update-rc.d -f mandos remove

353

431

! grep --regexp='^ *[^ #].*keyscript=[^,=]*/mandos/' \

354

432

$(DESTDIR)/etc/crypttab

355

433

-rm --force $(PREFIX)/sbin/mandos-keygen \

356

$(PREFIX)/lib/mandos/plugin-runner \

357

$(PREFIX)/lib/mandos/plugins.d/password-prompt \

358

$(PREFIX)/lib/mandos/plugins.d/mandos-client \

359

$(PREFIX)/lib/mandos/plugins.d/usplash \

360

$(PREFIX)/lib/mandos/plugins.d/splashy \

361

$(PREFIX)/lib/mandos/plugins.d/askpass-fifo \

362

$(PREFIX)/lib/mandos/plugins.d/plymouth \

434

$(LIBDIR)/mandos/plugin-runner \

435

$(LIBDIR)/mandos/plugins.d/password-prompt \

436

$(LIBDIR)/mandos/plugins.d/mandos-client \

437

$(LIBDIR)/mandos/plugins.d/usplash \

438

$(LIBDIR)/mandos/plugins.d/splashy \

439

$(LIBDIR)/mandos/plugins.d/askpass-fifo \

440

$(LIBDIR)/mandos/plugins.d/plymouth \

363

441

$(INITRAMFSTOOLS)/hooks/mandos \

364

442

$(INITRAMFSTOOLS)/conf-hooks.d/mandos \

365

443

$(INITRAMFSTOOLS)/scripts/init-premount/mandos \

444

$(MANDIR)/man8/mandos-keygen.8.gz \

366

445

$(MANDIR)/man8/plugin-runner.8mandos.gz \

367

$(MANDIR)/man8/mandos-keygen.8.gz \

446

$(MANDIR)/man8/mandos-client.8mandos.gz

368

447

$(MANDIR)/man8/password-prompt.8mandos.gz \

369

448

$(MANDIR)/man8/usplash.8mandos.gz \

370

449

$(MANDIR)/man8/splashy.8mandos.gz \

371

450

$(MANDIR)/man8/askpass-fifo.8mandos.gz \

372

$(MANDIR)/man8/mandos-client.8mandos.gz

373

-rmdir $(PREFIX)/lib/mandos/plugins.d $(CONFDIR)/plugins.d \

374

$(PREFIX)/lib/mandos $(CONFDIR) $(KEYDIR)

451

$(MANDIR)/man8/plymouth.8mandos.gz \

452

-rmdir $(LIBDIR)/mandos/plugins.d $(CONFDIR)/plugins.d \

453

$(LIBDIR)/mandos $(CONFDIR) $(KEYDIR)

375

454

update-initramfs -k all -u

376

455

377

456

purge: purge-server purge-client

378

457

379

458

purge-server: uninstall-server

380

459

-rm --force $(CONFDIR)/mandos.conf $(CONFDIR)/clients.conf \

460

$(DESTDIR)/etc/dbus-1/system.d/mandos.conf

381

461

$(DESTDIR)/etc/default/mandos \

382

462

$(DESTDIR)/etc/init.d/mandos \

463

$(SYSTEMD)/mandos.service \

464

$(DESTDIR)/run/mandos.pid \

383

465

$(DESTDIR)/var/run/mandos.pid

384

466

-rmdir $(CONFDIR)

385

467

Older »