4
4
Maintainer: Mandos Maintainers <mandos@recompile.se>
5
5
Uploaders: Teddy Hogeborn <teddy@recompile.se>,
6
6
Björn Påhlsson <belorn@recompile.se>
7
Build-Depends: debhelper (>= 10), docbook-xml, docbook-xsl,
7
Build-Depends: debhelper (>= 9), docbook-xml, docbook-xsl,
8
8
libavahi-core-dev, libgpgme-dev | libgpgme11-dev,
9
9
libgnutls28-dev (>= 3.3.0) | gnutls-dev (>= 3.3.0),
10
libgnutls28-dev (<< 3.6.0) | libgnutls30 (<< 3.6.0)
11
| libgnutls30 (>= 3.6.6),
10
libgnutls28-dev (<< 3.6.0) | libgnutls30 (<< 3.6.0),
12
11
xsltproc, pkg-config, libnl-route-3-dev
13
12
Build-Depends-Indep: systemd, python (>= 2.7), python (<< 3),
14
13
python-dbus, python-gi
15
Standards-Version: 4.3.0
14
Standards-Version: 4.1.3
16
15
Vcs-Bzr: https://ftp.recompile.se/pub/mandos/trunk
17
16
Vcs-Browser: https://bzr.recompile.se/loggerhead/mandos/trunk/files
18
17
Homepage: https://www.recompile.se/mandos
19
Rules-Requires-Root: binary-targets
23
21
Depends: ${misc:Depends}, python (>= 2.7), python (<< 3),
24
22
libgnutls28-dev (>= 3.3.0) | libgnutls30 (>= 3.3.0),
25
libgnutls28-dev (<< 3.6.0) | libgnutls30 (<< 3.6.0)
26
| libgnutls30 (>= 3.6.6),
23
libgnutls28-dev (<< 3.6.0) | libgnutls30 (<< 3.6.0),
27
24
python-dbus, python-gi, avahi-daemon, adduser, python-urwid,
28
gnupg2 | gnupg, systemd-sysv | lsb-base (>= 3.0-6),
29
debconf (>= 1.5.5) | debconf-2.0
25
gnupg2 | gnupg, systemd-sysv | lsb-base (>= 3.0-6)
30
26
Recommends: ssh-client | fping
31
27
Description: server giving encrypted passwords to Mandos clients
32
28
This is the server part of the Mandos system, which allows
36
32
The computers run a small client program in the initial RAM
37
33
disk environment which will communicate with a server over a
38
34
network. All network communication is encrypted using TLS.
39
The clients are identified by the server using a TLS public
35
The clients are identified by the server using an OpenPGP
40
36
key; each client has one unique to it. The server sends the
41
37
clients an encrypted password. The encrypted password is
42
decrypted by the clients using an OpenPGP key, and the
38
decrypted by the clients using the same OpenPGP key, and the
43
39
password is then used to unlock the root file system,
44
40
whereupon the computers can continue booting normally.
46
42
Package: mandos-client
47
43
Architecture: linux-any
48
Depends: ${shlibs:Depends}, ${misc:Depends}, adduser,
49
cryptsetup (<< 2:2.0.3-1) | cryptsetup-initramfs,
50
initramfs-tools (>= 0.99), dpkg-dev (>=1.16.0),
51
gnutls-bin (>= 3.6.6) | openssl (>= 1.1.0),
52
debconf (>= 1.5.5) | debconf-2.0
44
Depends: ${shlibs:Depends}, ${misc:Depends}, adduser, cryptsetup,
45
initramfs-tools, dpkg-dev (>=1.16.0)
46
Recommends: ssh, gnutls-bin | openssl
54
47
Breaks: dropbear (<= 0.53.1-1)
55
48
Enhances: cryptsetup
56
49
Description: do unattended reboots with an encrypted root file system
61
54
The computers run a small client program in the initial RAM
62
55
disk environment which will communicate with a server over a
63
56
network. All network communication is encrypted using TLS.
64
The clients are identified by the server using a TLS public
57
The clients are identified by the server using an OpenPGP
65
58
key; each client has one unique to it. The server sends the
66
59
clients an encrypted password. The encrypted password is
67
decrypted by the clients using an OpenPGP key, and the
60
decrypted by the clients using the same OpenPGP key, and the
68
61
password is then used to unlock the root file system,
69
62
whereupon the computers can continue booting normally.