summaryrefslogtreecommitdiff
path: root/src/share
AgeCommit message (Collapse)Author
2009-07-14make sure that revokehostname sees the pieces it needs to see in order to ↵Daniel Kahn Gillmor
create a useful revocation certificate.
2009-07-14ensure proper usage flags on new hostname selfsigsDaniel Kahn Gillmor
2009-07-14simplifying find_host_user_id function.Daniel Kahn Gillmor
2009-07-14fixing find_host_userid -- did this ever work?Daniel Kahn Gillmor
2009-07-14tests/basic now tests for adding and revoking hostnames.Daniel Kahn Gillmor
2009-07-14fixing typo and thinko in keytransDaniel Kahn Gillmor
2009-07-14monkeysphere-host add-hostname now uses perl backend.Daniel Kahn Gillmor
2009-07-14added tests to keytrans add and revoke user ID functionalityDaniel Kahn Gillmor
2009-07-13implemented adding user IDs as well.Daniel Kahn Gillmor
2009-07-13completed user ID revocation by emitting a bundle (key+uid+selfsig+revsig) ↵Daniel Kahn Gillmor
that gpg is willing to import.
2009-07-12functional user ID revocation at last!Daniel Kahn Gillmor
2009-07-12broke out gensig() to create individual self-sig packets of various types.Daniel Kahn Gillmor
2009-07-12committing some code related to walking the tree of openpgp signatures.Daniel Kahn Gillmor
2009-07-11rearchitect keytrans to isolate OpenPGP packet parsing routinesDaniel Kahn Gillmor
2009-07-11switching keyrtrans from Digest::SHA1 to Digest::SHADaniel Kahn Gillmor
2009-07-11improve marginal UI for cases when host key can't be retrievedJameson Graef Rollins
if ssh-keyscan can't retrieve the host key, then output all keys with matching user ID and validity marginal or better.
2009-07-11Merge commit 'mlcastle/master'Jameson Graef Rollins
2009-07-11improve function to get primary group to make it more portableJameson Graef Rollins
2009-07-11more replacement of read -p with printf; read (re #446)mike castleman
2009-07-11explicitly set MONKEYSPHERE_GROUPJameson Graef Rollins
The monkeysphere group is now determined from the system "groups" command, and then MONKEYSPHERE_GROUP is explicitly set from this, and then used when setting group ownership.
2009-06-29resolve symlinks when checking path permissionsJameson Graef Rollins
Thanks to Silvio Rhatto for the patch. This should close MS bug #917
2009-06-09added comments to keytransDaniel Kahn Gillmor
2009-05-25break out signature timestamp from key timestamp, allow them to be set ↵Daniel Kahn Gillmor
independently.
2009-05-21properly match fingerprints with leading 0 bytes ↵Daniel Kahn Gillmor
(https://labs.riseup.net/code/issues/show/831)
2009-05-12pem2openpgp now makes signatures over SHA256 instead of SHA1, due to ↵Daniel Kahn Gillmor
concerns about the growing weakness of SHA1.
2009-04-06add else failure to list_users functionJameson Graef Rollins
2009-04-06Add two new compatibility functions:Jameson Graef Rollins
- list_user to list all users on the system - get_homedir to return the path to a users home directory These functions should provide compatibility on linux, FreeBSD and Darwin systems.
2009-04-06remove -w from keytrans shebang line, since it's redundant with 'use warnings'Jameson Graef Rollins
2009-04-06replacing head -c with dd (for portability reasons, see #673)Daniel Kahn Gillmor
2009-04-06more portable perl-based simple_checksum; i think this is correct, but i ↵Daniel Kahn Gillmor
welcome any pointers about what i might be getting wrong.
2009-04-06actually check for md5 in the path within file_hash()Daniel Kahn Gillmor
2009-04-05fix typo in check_key_file_permissions functionJameson Graef Rollins
2009-04-05undo perl shebang line change i just made, since the '-w -T' options don't ↵Jameson Graef Rollins
seem to work with /usr/bin/env
2009-04-05use /usr/bin/env to call perl in keytrans shebang.Jameson Graef Rollins
2009-04-05some small compatibility changes:Jameson Graef Rollins
- fix file_hash function to use md5 or md5sum, for Darwin compatibility - use build-in 'type' instead of 'which', which for some reason doesn't behave on Darwin - clean up some redirection calls.
2009-03-27trying to make m gen-subkey more responsive in the face of errors, and ↵Daniel Kahn Gillmor
clearer to the user about what is going on.
2009-03-23add FIXME note about IPv6 addresses, and break out hostnames from the last ↵Daniel Kahn Gillmor
colon, not the first.
2009-03-23proposed patch for issue #660, to properly specify host and port number in ↵Jameson Graef Rollins
known_hosts lines.
2009-03-22some more pruning of unnecessary usage of cat for the gnupg scripts.Jameson Graef Rollins
2009-03-18remove some extraneous invocations of cat.Daniel Kahn Gillmor
2009-03-18modify the ssh_proxycommand marginal ui output so that it betterJameson Graef Rollins
handles the case where the host can not be contacted. the new system attempts to retrieve the host ssh key before any ui output is made. this should make things a little clearer in this corner case, and make things a little more flexible down the line.
2009-03-07fix the marginal ui output so that it's not prefixed by theJameson Graef Rollins
LOG_PREFIX. also make sure to always export the LOG_PREFIX, so that it gets passed to subprocces su_monkeysphere_user.
2009-03-03fix to logging to prefix all log output with log prefix, and allow changing ↵Jameson Graef Rollins
of log prefix.
2009-03-03quieted down m-a add_certifier: there is no reason why the admin should be ↵Daniel Kahn Gillmor
shown gpg noise.
2009-03-02quieting down the transition script (and m-a setup).Daniel Kahn Gillmor
2009-03-02added ability to specify subkeys to add to agent with ↵Jameson Graef Rollins
MONKEYSPHERE_SUBKEYS_FOR_AGENT variable.
2009-03-02fix remove_monkeysphere_line function to properly handle empty files.Jameson Graef Rollins
2009-03-02get rid of FILE_OWNER variable, in favor of just using $(whoami) whenJameson Graef Rollins
running check_key_file_permissions in update_known_hosts, update_authorized_keys, and process_authorized_user_ids. this is fine, since the policy is just that a user is always updating their own files. closes monkeysphere bug #630.
2009-03-01proposed fix for issue 630; since m-a u operates on a saved copy of the ↵Daniel Kahn Gillmor
users authorized_user_ids file, we should only check filesystem permissions against the monkeysphere user, not the target user.
2009-03-01refer to the m-h set-expire instead of m-h extend-key in m-h diagnostics.Daniel Kahn Gillmor