/mandos/trunk

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to INSTALL

  • Committer: Teddy Hogeborn
  • Date: 2018-08-15 09:26:02 UTC
  • Revision ID: teddy@recompile.se-20180815092602-xoyb5s6gf8376i7u
http://bugs.debian.org/894495
mandos-client: Set system clock if necessary

* plugins.d/mandos-client.c (init_gpgme/import_key): If the system
  clock is not set, or set to january 1970, set the system clock to
  the more plausible value that is the mtime of the key file.  This is
  required by GnuPG to be able to import the keys.  (We can't pass the
  --ignore-time-conflict or the --ignore-valid-from options though
  GPGME.)

Show diffs side-by-side

added added

removed removed

Lines of Context:
INSTALL
39
39
    
40
40
*** Mandos Server
41
41
    + GnuTLS 3.3          https://www.gnutls.org/
42
 
      (but not 3.6.0 or later, until 3.6.6, which works)
43
 
    + Avahi 0.6.16        https://www.avahi.org/
 
42
    + Avahi 0.6.16        http://www.avahi.org/
44
43
    + Python 2.7          https://www.python.org/
45
44
    + dbus-python 0.82.4 https://dbus.freedesktop.org/doc/dbus-python/
46
45
    + PyGObject 3.7.1     https://wiki.gnome.org/Projects/PyGObject
57
56
    fping ssh-client
58
57
    
59
58
*** Mandos Client
60
 
    + GNU C Library 2.17 https://gnu.org/software/libc/
 
59
    + GNU C Library 2.16 https://gnu.org/software/libc/
 
60
    + initramfs-tools 0.85i
 
61
                        https://tracker.debian.org/pkg/initramfs-tools
61
62
    + GnuTLS 3.3        https://www.gnutls.org/
62
 
      (but not 3.6.0 or later, until 3.6.6 which works)
63
 
    + Avahi 0.6.16      https://www.avahi.org/
 
63
    + Avahi 0.6.16      http://www.avahi.org/
64
64
    + GnuPG 1.4.9       https://www.gnupg.org/
65
65
    + GPGME 1.1.6       https://www.gnupg.org/related_software/gpgme/
66
66
    + pkg-config https://www.freedesktop.org/wiki/Software/pkg-config/
67
 
    + libnl-route 3     https://www.infradead.org/~tgr/libnl/
68
 
    + GLib 2.40         http://www.gtk.org/
69
 
    
70
 
    One of:
71
 
    + initramfs-tools 0.85i
72
 
                        https://tracker.debian.org/pkg/initramfs-tools
73
 
    + dracut 044+241
74
 
         http://www.kernel.org/pub/linux/utils/boot/dracut/dracut.html
75
67
    
76
68
    Strongly recommended:
77
69
    + OpenSSH           http://www.openssh.com/
78
70
    
79
71
    Package names:
80
 
    initramfs-tools dracut libgnutls-dev gnutls-bin libavahi-core-dev
81
 
    gnupg libgpgme11-dev pkg-config ssh libnl-route-3-dev
82
 
    libglib2.0-dev
 
72
    initramfs-tools libgnutls-dev libavahi-core-dev gnupg
 
73
    libgpgme11-dev pkg-config ssh
83
74
 
84
75
* Installing the Mandos server
85
76
  
132
123
     
133
124
        # /usr/lib/mandos/plugins.d/mandos-client \
134
125
                --pubkey=/etc/keys/mandos/pubkey.txt \
135
 
                --seckey=/etc/keys/mandos/seckey.txt \
136
 
                --tls-privkey=/etc/keys/mandos/tls-privkey.pem \
137
 
                --tls-pubkey=/etc/keys/mandos/tls-pubkey.pem; echo
 
126
                --seckey=/etc/keys/mandos/seckey.txt; echo
138
127
     
139
128
     This command should retrieve the password from the server,
140
129
     decrypt it, and output it to standard output.