summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2009-02-20Merge commit 'dkg/master'Jameson Graef Rollins
2009-02-20more wordsmithing.Daniel Kahn Gillmor
2009-02-20documentation tuning.Daniel Kahn Gillmor
2009-02-20documentation overhaul for users just getting started.Daniel Kahn Gillmor
2009-02-20tweak/cleanup some of the prompts.Jameson Graef Rollins
2009-02-20readability revision for getting-started-admin.mdwnDaniel Kahn Gillmor
2009-02-20tuning some diagnostic text.Daniel Kahn Gillmor
2009-02-20clean up 0.23 changelog entryDaniel Kahn Gillmor
2009-02-20tune automated revocation certificate description; add FIXME to allow it to ↵Daniel Kahn Gillmor
be set explicitly.
2009-02-20monkeysphere-host revoke-key should now be capable of publishing theDaniel Kahn Gillmor
revocation certificate to the keyservers directly, should the admin want that. It can also run without prompting, if MONKEYSPHERE_PROMPT=false. In the no-prompts case, it never publishes to the keyserver, it indicates that the key was compromised, and it writes a boilerplate description to make it easy to identify this kind of certificate.
2009-02-20trivial implementation of monkeysphere-host revoke-key: just prints ↵Daniel Kahn Gillmor
ascii-armored revocation certificate to stdout, and admin is expected to know what to do with it.
2009-02-20clarify revoke_hostname warningDaniel Kahn Gillmor
2009-02-20document why monkeysphere import-subkey is not yet working.Daniel Kahn Gillmor
2009-02-20explicitly set GNUPGHOME in su_monkeysphere_user calls to gpg in ↵Jameson Graef Rollins
add_revoker, to avoid any confusion about having GNUPGHOME as a tempdir exported to the environment.
2009-02-20stupid bug fixJameson Graef Rollins
2009-02-20add_revoker fully working. also cleanup of add_certifier.Jameson Graef Rollins
add_revoker and add_certifier to many similar procedures, so I'm trying to keep them in sync as I figure out the right way to handle things.
2009-02-19Merge commit 'jrollins/master'Daniel Kahn Gillmor
2009-02-19correcting ssh_proxycommand output.Daniel Kahn Gillmor
2009-02-19remove import_subkey from monkeysphere usage and man page until we getJameson Graef Rollins
a chance to fully implement it.
2009-02-19clean up the diagnostics functions, check for ID-Certifiers in m-a dDaniel Kahn Gillmor
2009-02-19cleaning up output of cruft reportDaniel Kahn Gillmor
2009-02-19diagnostics should now check for cruft from old versions of the monkeysphere.Daniel Kahn Gillmor
2009-02-19fix arg parsing in add_certifier to allow of - for stdin read.Jameson Graef Rollins
2009-02-19Modify/cleanup add_certifier and add_revoker, so that their code baseJameson Graef Rollins
is more similar, and so that they can read keys from stdin instead of just from a file. Also fix the permissions on the tempdir in publish_key.
2009-02-19some updates to getting-started-*Jameson Graef Rollins
2009-02-19the import_subkey function was in fact not implement at all. MUST FIX!Jameson Graef Rollins
2009-02-19add a gpg_user function in monkeysphere to add some gpg quietingJameson Graef Rollins
option, and use it in all gpg invocations. add a trap to subkey_to_ssh_agent.
2009-02-19The monkeysphere {import,gen}_subkey functions were not up-to-date.Jameson Graef Rollins
did a lot of work to bring them up-to-date, and better handle argument checking. also updated man page, changelog, and tests/basic.
2009-02-19modify import_key to take the key file to import as an argument. can be '-' ↵Jameson Graef Rollins
to import from stdin. modify man page and test accordingly.
2009-02-19more fix permissions and ownership on authentication directories.Jameson Graef Rollins
2009-02-19fix permissions and ownership on authentication directories.Jameson Graef Rollins
2009-02-19avoid chown -R, explicitly indicate the files we expect to be changed.Daniel Kahn Gillmor
2009-02-19do not show uid validity for gpg authentication core, since the core has no ↵Daniel Kahn Gillmor
ultimate ownertrust
2009-02-19Merge commit 'jrollins/master'Daniel Kahn Gillmor
2009-02-19added msmktempfile; got rid of /dev/stdin assumption in ssh_proxycommand for ↵Daniel Kahn Gillmor
portability
2009-02-19don't use /dev/stdin hack with ssh-keygen to get ssh fingerprint. just use ↵Jameson Graef Rollins
a tmp file.
2009-02-19clean up more gpg warnings during 0.23 transitionDaniel Kahn Gillmor
2009-02-19Merge commit 'dkg/master'Jameson Graef Rollins
2009-02-19Merge commit 'jrollins/master'Daniel Kahn Gillmor
2009-02-19Merge commit 'dkg/master'Jameson Graef Rollins
2009-02-19make sure fingerprint is loaded for update_gpg_pub_fileJameson Graef Rollins
2009-02-19still more cleanup in transitions/0.23Daniel Kahn Gillmor
2009-02-19fix CHECK_KEYSERVER variable in monkeysphere, so the default is correct for ↵Jameson Graef Rollins
proxycommand, and fix an errant bad line in proxycommand.
2009-02-19more cleanup on 0.23 transition scriptDaniel Kahn Gillmor
2009-02-19remove a permission warning from the old gpg config during 0.23 transition.Daniel Kahn Gillmor
2009-02-19more think-os in the 0.23 transition script.Daniel Kahn Gillmor
2009-02-19fix think-o in 0.23 transition.Daniel Kahn Gillmor
2009-02-19Merge commit 'jrollins/master'Daniel Kahn Gillmor
2009-02-19fail if hostname can not be determined in import_keyJameson Graef Rollins
2009-02-19reverse the order of two of the SEE ALSO references in monkeysphere(7). For ↵Daniel Kahn Gillmor
some reason, this avoids a bug in man that causes it to complain "<standard input>:57: warning [p 1, 8.3i]: cannot adjust line"