/mandos/trunk

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to mandos.xml

  • Committer: Teddy Hogeborn
  • Date: 2018-08-15 09:26:02 UTC
  • Revision ID: teddy@recompile.se-20180815092602-xoyb5s6gf8376i7u
http://bugs.debian.org/894495
mandos-client: Set system clock if necessary

* plugins.d/mandos-client.c (init_gpgme/import_key): If the system
  clock is not set, or set to january 1970, set the system clock to
  the more plausible value that is the mtime of the key file.  This is
  required by GnuPG to be able to import the keys.  (We can't pass the
  --ignore-time-conflict or the --ignore-valid-from options though
  GPGME.)

Show diffs side-by-side

added added

removed removed

Lines of Context:
mandos.xml
2
2
<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
3
3
"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
4
4
<!ENTITY COMMANDNAME "mandos">
5
 
<!ENTITY TIMESTAMP "2013-10-23">
 
5
<!ENTITY TIMESTAMP "2018-02-08">
6
6
<!ENTITY % common SYSTEM "common.ent">
7
7
%common;
8
8
]>
37
37
      <year>2011</year>
38
38
      <year>2012</year>
39
39
      <year>2013</year>
 
40
      <year>2014</year>
 
41
      <year>2015</year>
 
42
      <year>2016</year>
 
43
      <year>2017</year>
 
44
      <year>2018</year>
40
45
      <holder>Teddy Hogeborn</holder>
41
46
      <holder>Björn Påhlsson</holder>
42
47
    </copyright>
106
111
      <replaceable>FD</replaceable></option></arg>
107
112
      <sbr/>
108
113
      <arg><option>--foreground</option></arg>
 
114
      <sbr/>
 
115
      <arg><option>--no-zeroconf</option></arg>
109
116
    </cmdsynopsis>
110
117
    <cmdsynopsis>
111
118
      <command>&COMMANDNAME;</command>
234
241
        <term><option>--priority <replaceable>
235
242
        PRIORITY</replaceable></option></term>
236
243
        <listitem>
237
 
          <xi:include href="mandos-options.xml"
238
 
                      xpointer="priority_compat"/>
 
244
          <xi:include href="mandos-options.xml" xpointer="priority"/>
239
245
        </listitem>
240
246
      </varlistentry>
241
247
      
323
329
        </listitem>
324
330
      </varlistentry>
325
331
      
 
332
      <varlistentry>
 
333
        <term><option>--no-zeroconf</option></term>
 
334
        <listitem>
 
335
          <xi:include href="mandos-options.xml" xpointer="zeroconf"/>
 
336
        </listitem>
 
337
      </varlistentry>
 
338
      
326
339
    </variablelist>
327
340
  </refsect1>
328
341
  
523
536
          <para>
524
537
            The file containing the process id of the
525
538
            <command>&COMMANDNAME;</command> process started last.
 
539
            <emphasis >Note:</emphasis> If the <filename
 
540
            class="directory">/run</filename> directory does not
 
541
            exist, <filename>/var/run/mandos.pid</filename> will be
 
542
            used instead.
526
543
          </para>
527
544
        </listitem>
528
545
      </varlistentry>
529
546
      <varlistentry>
530
 
        <term><filename class="devicefile">/dev/log</filename></term>
531
 
      </varlistentry>
532
 
      <varlistentry>
533
547
        <term><filename
534
548
        class="directory">/var/lib/mandos</filename></term>
535
549
        <listitem>
541
555
        </listitem>
542
556
      </varlistentry>
543
557
      <varlistentry>
544
 
        <term><filename>/dev/log</filename></term>
 
558
        <term><filename class="devicefile">/dev/log</filename></term>
545
559
        <listitem>
546
560
          <para>
547
561
            The Unix domain socket to where local syslog messages are
576
590
      This server does not check the expire time of clients’ OpenPGP
577
591
      keys.
578
592
    </para>
 
593
    <xi:include href="bugs.xml"/>
579
594
  </refsect1>
580
595
  
581
596
  <refsect1 id="example">
694
709
      </varlistentry>
695
710
      <varlistentry>
696
711
        <term>
697
 
          <ulink url="http://www.gnu.org/software/gnutls/"
698
 
          >GnuTLS</ulink>
 
712
          <ulink url="https://gnutls.org/">GnuTLS</ulink>
699
713
        </term>
700
714
      <listitem>
701
715
        <para>
739
753
      </varlistentry>
740
754
      <varlistentry>
741
755
        <term>
742
 
          RFC 4346: <citetitle>The Transport Layer Security (TLS)
743
 
          Protocol Version 1.1</citetitle>
 
756
          RFC 5246: <citetitle>The Transport Layer Security (TLS)
 
757
          Protocol Version 1.2</citetitle>
744
758
        </term>
745
759
      <listitem>
746
760
        <para>
747
 
          TLS 1.1 is the protocol implemented by GnuTLS.
 
761
          TLS 1.2 is the protocol implemented by GnuTLS.
748
762
        </para>
749
763
      </listitem>
750
764
      </varlistentry>
760
774
      </varlistentry>
761
775
      <varlistentry>
762
776
        <term>
763
 
          RFC 5081: <citetitle>Using OpenPGP Keys for Transport Layer
764
 
          Security</citetitle>
 
777
          RFC 6091: <citetitle>Using OpenPGP Keys for Transport Layer
 
778
          Security (TLS) Authentication</citetitle>
765
779
        </term>
766
780
      <listitem>
767
781
        <para>