/mandos/trunk

To get this branch, use:
bzr branch http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to intro.xml

  • Committer: Teddy Hogeborn
  • Date: 2019-02-10 03:50:20 UTC
  • Revision ID: teddy@recompile.se-20190210035020-nttr1tybgwwixueu
Show debconf note about new TLS key IDs

If mandos-client did not see TLS keys and had to create them, or if
mandos sees GnuTLS version 3.6.6 or later, show an important notice on
package installation about the importance of adding the new key_id
options to clients.conf on the Mandos server.

* debian/control (Package: mandos, Package: mandos-client): Depend on
                                                            debconf.
* debian/mandos-client.lintian-overrides: Override warnings.
* debian/mandos-client.postinst (create_keys): Show notice if new TLS
                                               key files were created.
* debian/mandos-client.templates: New.
* debian/mandos.lintian-overrides: Override warnings.
* debian/mandos.postinst (configure): If GnuTLS 3.6.6 or later is
                                      detected, show an important
                                      notice (once) about the new
                                      key_id option required in
                                      clients.conf.
* debian/mandos.templates: New.

Show diffs side-by-side

added added

removed removed

Lines of Context:
1
1
<?xml version="1.0" encoding="UTF-8"?>
2
2
<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
3
3
"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
4
 
<!ENTITY TIMESTAMP "2019-03-30">
 
4
<!ENTITY TIMESTAMP "2019-02-09">
5
5
<!ENTITY % common SYSTEM "common.ent">
6
6
%common;
7
7
]>
38
38
      <year>2016</year>
39
39
      <year>2017</year>
40
40
      <year>2018</year>
41
 
      <year>2019</year>
42
41
      <holder>Teddy Hogeborn</holder>
43
42
      <holder>Björn Påhlsson</holder>
44
43
    </copyright>
144
143
      long, and will no longer give out the encrypted key.  The timing
145
144
      here is the only real weak point, and the method, frequency and
146
145
      timeout of the server’s checking can be adjusted to any desired
147
 
      level of paranoia.
 
146
      level of paranoia
148
147
    </para>
149
148
    <para>
150
149
      (The encrypted keys on the Mandos server is on its normal file