/mandos/trunk : revision 92

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to overview.xml

Committer: Teddy Hogeborn
Date: 2008-08-20 00:35:41 UTC
Revision ID: teddy@fukt.bsnet.se-20080820003541-zxymabnc6yfj8y7t

* mandos-keygen.xml (SEE ALSO): Remove "and".

* mandos.conf.xml (SEE ALSO): New section.

* mandos.xml (SEE ALSO): Changed man page references to a comma-
separated list, as per man-pages(7). Added
reference to sh(1).

files removed:
.bzrignore

files modified:
Makefile

TODO

clients.conf

initramfs-tools-hook

mandos

mandos-clients.conf.xml

mandos-keygen

mandos-keygen.xml

mandos-options.xml

mandos.conf.xml

mandos.xml

overview.xml

plugin-runner.c

plugin-runner.xml

plugins.d/password-prompt.c

plugins.d/password-prompt.xml

plugins.d/password-request.c

plugins.d/password-request.xml

Show diffs side-by-side

added added

removed removed

overview.xml

<!DOCTYPE chapter PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"

"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd">

<para>

This is part of the Mandos system for allowing computers to have

encrypted root file systems and at the same time be capable of

remote and/or unattended reboots. The computers run a small client

program in the initial RAM disk environment which will communicate

with a server over a network. The clients are identified by the

server using a OpenPGP key; each client has one unique to it. The

server sends the clients an encrypted password. The encrypted

password is decrypted by the clients using the same OpenPGP key, and

the password is then used to unlock the root file system, whereupon

the computers can continue booting normally.

This is part of the Mandos system for allowing host computers to

have encrypted root file systems and also be capable of remote and

unattended reboots. The host computers run a small client program

in the initial RAM disk environment which will communicate with a

server over a network. The clients are identified by the server

using a OpenPGP key; each client has one unique to it. The server

sends the clients an encrypted password. The encrypted password is

decrypted by the clients using the same OpenPGP key, and the

password is then used to unlock the root file system, whereupon the

host computers can continue booting normally.

</para>

Older »