diff options
| author | Jameson Graef Rollins <jrollins@finestructure.net> | 2008-11-16 03:22:18 -0500 |
|---|---|---|
| committer | Jameson Graef Rollins <jrollins@finestructure.net> | 2008-11-16 03:22:18 -0500 |
| commit | 5d9949335aeb1dec04f530cbb3dfcac24288706a (patch) | |
| tree | e4c81a45e2dcfdd46409beab222d122751f5f6d7 | |
| parent | dd002c89fc4dccabc16d488a15a40cc88383605f (diff) | |
| parent | d056cc64effacd7936fddb6e696957868fff7eed (diff) | |
Merge commit 'dkg/master'
Conflicts:
packaging/debian/changelog
| -rw-r--r-- | packaging/debian/changelog | 12 | ||||
| -rwxr-xr-x | src/monkeysphere-server | 6 | ||||
| -rw-r--r-- | website/bugs/useful-information.mdwn | 14 | ||||
| -rw-r--r-- | website/download.mdwn | 2 |
4 files changed, 30 insertions, 4 deletions
diff --git a/packaging/debian/changelog b/packaging/debian/changelog index e8ea1a9..3b7432b 100644 --- a/packaging/debian/changelog +++ b/packaging/debian/changelog @@ -1,11 +1,19 @@ -monkeysphere (0.22-1) UNRELEASED; urgency=low +monkeysphere (0.22~pre-1) UNRELEASED; urgency=low * New upstream release: + [ Jameson Rollins ] + - added info log output when a new key is added to known_hosts file. - added some useful output to the ssh-proxycommand for "marginal" cases where keys are found for host but do not have full validity. - -- Jameson Graef Rollins <jrollins@finestructure.net> Sun, 16 Nov 2008 03:17:16 -0500 + [ Daniel Kahn Gillmor ] + + - automatically output two copies of the host's public key: one + standard ssh public key file, and the other a minimal OpenPGP key with + just the latest valid self-sig. + + -- Jameson Graef Rollins <jrollins@finestructure.net> Sun, 16 Nov 2008 03:22:08 -0500 monkeysphere (0.21-2) unstable; urgency=low diff --git a/src/monkeysphere-server b/src/monkeysphere-server index 665d916..bb26c04 100755 --- a/src/monkeysphere-server +++ b/src/monkeysphere-server @@ -399,7 +399,11 @@ EOF (umask 077 && \ gpg_host --export-secret-key "$fingerprint" | \ openpgp2ssh "$fingerprint" > "${SYSDATADIR}/ssh_host_rsa_key") - log info "private SSH host key output to file: ${SYSDATADIR}/ssh_host_rsa_key" + log info "SSH host private key output to file: ${SYSDATADIR}/ssh_host_rsa_key" + ssh-keygen -y -f "${SYSDATADIR}/ssh_host_rsa_key" > "${SYSDATADIR}/ssh_host_rsa_key.pub" + log info "SSH host public key output to file: ${SYSDATADIR}/ssh_host_rsa_key.pub" + gpg_authentication --export-options export-minimal --export "0x${fingerprint}!" > "${SYSDATADIR}/ssh_host_rsa_key.pub.gpg" + log info "SSH host public key in OpenPGP form: ${SYSDATADIR}/ssh_host_rsa_key.pub.gpg" } # extend the lifetime of a host key: diff --git a/website/bugs/useful-information.mdwn b/website/bugs/useful-information.mdwn index 0750354..62094bb 100644 --- a/website/bugs/useful-information.mdwn +++ b/website/bugs/useful-information.mdwn @@ -8,3 +8,17 @@ time seems to the monkeysphere very similar to a key re-added ten seconds after last login. Still, from a UI perspective, I want to know what monkeysphere is doing. + +------ + +It looks like jrollins committed a change for reporting at INFO level +when a host key gets added by the monkeysphere: +2459fa3ea277d7b9289945748619eab1e3441e5c + +When i connect to a host whose key is not already present in my +known_hosts file, i get the following to stderr: + + ms: * new key for squeak.fifthhorseman.net added to known_hosts file. + +This doesn't fully close this bug, because we aren't notifying on key +deletion, afaict. diff --git a/website/download.mdwn b/website/download.mdwn index e67d0dc..6d5a73f 100644 --- a/website/download.mdwn +++ b/website/download.mdwn @@ -75,7 +75,7 @@ For those that would like to download the source directly, [the source is available](/community) via [git](http://git.or.cz/). The [latest -tarball](http://archive.monkeysphere.info/debian/pool/monkeysphere/m/monkeysphere/monkeysphere_.orig.tar.gz) +tarball](http://archive.monkeysphere.info/debian/pool/monkeysphere/m/monkeysphere/monkeysphere_0.21.orig.tar.gz) is also available, and has these checksums: <pre> |