Age | Commit message (Collapse) | Author | |
---|---|---|---|
2013-03-13 | Simplify arguments passed to su_monkeysphere_user() and gpg_sphere | Jonas Smedegaard | |
It is a healthy coding practice to keep each argument separate when executing system calls, i.e. quote each variable separately instead of relying on whitespace to indicate argument separation. This patch improves argument passing like this: a) Each argument is passed individually (not all as a single string) b) Arguments containing no variables are not quoted c) Dynamic arguments are double-quoted ( "$@" ) Due to su_monkeysphere_user() expanding arguments using "$*" (not "$@") arguments are collapsed into single strings, and this change is therefore mostly¹ cosmetic. It does improve clarity, however. Also, it eases switching to safer quoted arguments in the future. ¹ma/update_users had $STRICT_MODES properly dual-quoted line 82 which is dropped with this change (to keep patches simple). Next patch will restore proper quoting generally (i.e. including this one now relaxed). | |||
2013-02-07 | added keyid-format 0xlong to monkeysphere-authentication default gpg.conf ↵ | Daniel Kahn Gillmor | |
files (thanks, Jonas!) | |||
2010-11-13 | universalize and consolidate on --fixed-list-mode | Daniel Kahn Gillmor | |
2010-10-06 | Fix more calls to gpg_shere, finishing what was started in ↵ | Jameson Rollins | |
90166e0bb8e4ebc1c1174d9bc2021c604b7a1bd7 There were another calls to gpg_sphere that were packing everything into a single argument. Since we fixed the need to do that, we fix all these other calls that were fixed in the first round. | |||
2010-05-06 | support x509 anchors for monkeysphere-host, allow shared anchors between m-a ↵ | Daniel Kahn Gillmor | |
and mh (closes MS #2288) | |||
2010-03-14 | enable use of hkps (closes: MS #1749) | Daniel Kahn Gillmor | |
2009-12-12 | hush up m-a setup because the dd was making noise | Daniel Kahn Gillmor | |
2009-07-11 | explicitly set MONKEYSPHERE_GROUP | Jameson Graef Rollins | |
The monkeysphere group is now determined from the system "groups" command, and then MONKEYSPHERE_GROUP is explicitly set from this, and then used when setting group ownership. | |||
2009-04-06 | replacing head -c with dd (for portability reasons, see #673) | Daniel Kahn Gillmor | |
2009-03-02 | quieting down the transition script (and m-a setup). | Daniel Kahn Gillmor | |
2009-03-01 | removed base64 invocation in favor of perl to reduce dependency spread. | Daniel Kahn Gillmor | |
2009-02-19 | fix arg parsing in add_certifier to allow of - for stdin read. | Jameson Graef Rollins | |
2009-02-19 | more fix permissions and ownership on authentication directories. | Jameson Graef Rollins | |
2009-02-19 | fix permissions and ownership on authentication directories. | Jameson Graef Rollins | |
2009-02-19 | avoid chown -R, explicitly indicate the files we expect to be changed. | Daniel Kahn Gillmor | |
2009-02-19 | do not show uid validity for gpg authentication core, since the core has no ↵ | Daniel Kahn Gillmor | |
ultimate ownertrust | |||
2009-02-19 | add some log debug redirects | Jameson Graef Rollins | |
2009-02-19 | moved directory for monkeysphere-generated authorized_keys files back to its ↵ | Daniel Kahn Gillmor | |
old location at /var/lib/monkeysphere/authorized_keys | |||
2009-02-18 | add no-tty, quiet, and no-greeting to gpg wrapper invocations to supress as ↵ | Jameson Graef Rollins | |
much gpg output as possible. then cleanup gpg invocations. | |||
2009-02-17 | fix ma so that the setup command is folded into the other commands, so | Jameson Graef Rollins | |
it's never needed to be run manually, and can therefore be supressed in the usage/documentation. Also, add setup to the postinst script so that it's setup on installation. Also add pipefail to ma, and try to supress unnecessary gpg output, and redirect other to log debug. | |||
2009-02-17 | add some checks about setup to authentication | Jameson Graef Rollins | |
2009-02-12 | fix something that was resolved improperly in the previous merge. | Jameson Graef Rollins | |
2009-02-12 | Merge commit 'dkg/master' | Jameson Graef Rollins | |
Conflicts: src/share/ma/setup | |||
2009-02-12 | fix some calls to gpg_sphere that where not putting all arguments into a ↵ | Jameson Graef Rollins | |
single argument, as required by the strange su requirements. | |||
2009-02-12 | trust level != trust model | Daniel Kahn Gillmor | |
2009-02-12 | tweak some of the log output inconsequentially | Jameson Graef Rollins | |
2009-02-12 | no longer require the primary-keyring for the sphere gpg.conf now that we ↵ | Daniel Kahn Gillmor | |
use a single keyring | |||
2009-02-12 | fix typo | Daniel Kahn Gillmor | |
2009-02-12 | Fix the ma/setup function: | Jameson Graef Rollins | |
- fix reference to MONKEYSPHERE_USER for GNUPGHOME_SPHERE - break out core_fingerprint function - export core key to sphere keyring (necessary) - fix some logging (add more debug) and formatting | |||
2009-02-12 | fix reference to MONKEYSPHER_USER in ma/setup | Jameson Graef Rollins | |
2009-02-12 | clean up how trust level was check in ma/setup, with some debug output | Jameson Graef Rollins | |
2009-02-05 | m-a setup: take advantage of the new ability of pem2openpgp to generate its ↵ | Daniel Kahn Gillmor | |
own key. | |||
2009-02-02 | add ability to specify key length of core secret key, so the test scripts ↵ | Jameson Graef Rollins | |
can specify something smaller than the default. | |||
2009-02-01 | add some log debug output to ma-setup | Jameson Graef Rollins | |
2009-02-01 | Fix a bug in setup where gpg was called instead of gpg_core. This | Jameson Graef Rollins | |
could have caused serious data loss for the running user. Should note to be carefull with this in the future. Also fix ownership on sphere gnupghome. | |||
2009-02-01 | new function to export signatures from core to sphere keyrings. this | Jameson Graef Rollins | |
is so that the sphere does not have to read the core pubring to get the certifier ltsigs, and we can therefore keep tighter permissions on the core keyring files. updated some comments/documentation as well. | |||
2009-02-01 | fix a bunch of directory references to the new data/share dirs | Jameson Graef Rollins | |
2009-02-01 | some small tweaks, and one tiny syntax bug fix, to ma/setup, and some | Jameson Graef Rollins | |
small formating and comment changes to test/basic | |||
2009-02-01 | trying to improve m-a setup; still not successfully tested. | Daniel Kahn Gillmor | |
2009-02-01 | removed some unnecessary setup from the basic test, pulling the random ↵ | Daniel Kahn Gillmor | |
string from /dev/urandom; generating the authentication trust core key at 2048 bits | |||
2009-02-01 | add m-a setup implementation | Daniel Kahn Gillmor | |