Age | Commit message (Collapse) | Author | |
---|---|---|---|
2010-07-04 | fix debug message in checkperms | Jameson Rollins | |
2010-07-04 | add keys-for-user subcommand to monkeysphere-authentication | Jameson Rollins | |
This subcommand will output all valid key for a given user. The user's authorized_user_ids file will be read for OpenPGP user IDs, one per line. The ssh-formated RSA keys will be output to stdout. Also included is a simple script that takes the user as it's one argument and exec's this command. This is something that would be suitable for the proposed sshd AuthorizedKeysCommand. | |||
2010-05-06 | reporting new expiration date when key expiry is updated (closes MS #2291) | Daniel Kahn Gillmor | |
2010-05-06 | do not fail or bail when admin interactively declines to publish a key with m-h | Daniel Kahn Gillmor | |
2010-05-06 | support x509 anchors for monkeysphere-host, allow shared anchors between m-a ↵ | Daniel Kahn Gillmor | |
and mh (closes MS #2288) | |||
2010-04-17 | do not try to add to known_hosts if HASH_KNOWN_HOSTS is true but ssh-keygen ↵ | Daniel Kahn Gillmor | |
is not available (includes some comments about how to fix these corner cases). | |||
2010-04-17 | degrade gracefully in the absence of ssh | Daniel Kahn Gillmor | |
2010-04-17 | handling ssh fingerprinting internally with keytrans for sshfprs-for-userid | Daniel Kahn Gillmor | |
2010-04-17 | make comment more nit-pickingly accurate | Daniel Kahn Gillmor | |
2010-04-17 | keytrans openpgp2sshfpr now prints out the key size and type | Daniel Kahn Gillmor | |
2010-04-17 | added internal openpgp2sshfpr subcommand for keytrans | Daniel Kahn Gillmor | |
2010-03-14 | warn if keyserver query fails (Closes: MS #1750) | Daniel Kahn Gillmor | |
2010-03-14 | enable use of hkps (closes: MS #1749) | Daniel Kahn Gillmor | |
2010-03-08 | fix my email address | Jameson Rollins | |
2010-02-18 | enforce --no-armor when exporting to openpgp2ssh in case weird gpg.conf ↵ | Daniel Kahn Gillmor | |
options (see bug 1625) | |||
2010-01-19 | re-work monkeysphere-host diagnostics with an eye toward multiple host keys | Daniel Kahn Gillmor | |
2010-01-19 | dump gpg --import error spew to /dev/null during hackish uses of gpg | Daniel Kahn Gillmor | |
2010-01-19 | ignoring time conflict when extracting info in a hacky way from gpg. ↵ | Daniel Kahn Gillmor | |
warnings still come out to stderr | |||
2010-01-19 | add get_cert_info() to common | Daniel Kahn Gillmor | |
2010-01-18 | flesh out check for reasonable-looking service names | Daniel Kahn Gillmor | |
2010-01-18 | canonicalize prompting to prompt if MONKEYSPHERE_PROMPT != 'false' | Jameson Rollins | |
2010-01-18 | add prompt if a service name is already being used then importing a key or ↵ | Jameson Rollins | |
adding a name. This can be overridden with the MONKEYSPHERE_PROMPT var. | |||
2010-01-18 | renaming m-h update_gpg_pub_file to update_pgp_pub_file | Daniel Kahn Gillmor | |
2010-01-18 | add check that service name isn't already in use in import_key | Jameson Rollins | |
2010-01-18 | fix stupid think-o that caused keytrans adduserid to misbehave if another ↵ | Daniel Kahn Gillmor | |
key came in the input stream after the desired key was already found | |||
2010-01-18 | added non-public "keytrans listfprs" subcommand | Daniel Kahn Gillmor | |
2010-01-15 | Major rework of monkeysphere-host to handle multiple host keys. | Jameson Rollins | |
This rework removes any assumption that monkeysphere-host is just managing a single host key, or that the keys are used specifically for ssh. The UI is exactly backwards compatible except that hostnames ('example.com') must be replaced by full service names ('ssh://example.com'). This incarnation passes the old tests with those changes only. There are a couple of things that still need to be done: - need to see if a transition script is needed (some local file names have changed) - need to fill in check_service_name function to verify that a specified service name fits the expected format. - update diagnostics appropriately | |||
2010-01-15 | add trap to remove temp dir in list_primary_fingerprints function | Jameson Rollins | |
2010-01-11 | rename keys-from-userid command to more accurate keys-for-userid | Jameson Rollins | |
leave the old command for now, but warn as deprecated. | |||
2010-01-10 | Fix patch for gen_key to test gpg version. | Jameson Rollins | |
This patch checks the version of gpg (for v1 and v2) and sets the key type command for the gen_subkey gpg edit-key script appropriately. | |||
2010-01-10 | added notes about what version needs what keyType | Daniel Kahn Gillmor | |
2010-01-10 | Add new keys-from-userid subcommand to monkeysphere UI. | Jameson Rollins | |
This new subcommand calls a new function, keys_from_userid, that outputs to stdout all acceptable keys for a given user ID literal. | |||
2010-01-10 | Clean up REQUIRED_KEY_CAPABILITY option passing to process_user_id. | Jameson Rollins | |
Get rid of 'MODE' stuff, since it was not very clear and wasn't really being used. | |||
2009-12-20 | fix ms Issue #1536 for gpg edit/addkey UI change | Jameson Graef Rollins | |
gnupg apparently changed their edit-key/addkey function ordering such that the monkeysphere gen-subkey subcommand was creating DSA authentication subkeys instead of RSA subkeys. DSA subkeys are not supported by the ms key translation utilities, so this is a big problem. This patch fixes the problem, but it means that we have require gnupg >=1.4.10 from now on, or at least until gnupg changes their UI again for no good reason. | |||
2009-12-12 | hush up m-a setup because the dd was making noise | Daniel Kahn Gillmor | |
2009-09-24 | avoid noisy warning message when ssh-askpass not available | Daniel Kahn Gillmor | |
2009-08-01 | cleaning up log function in checkperms for future expandability. | Daniel Kahn Gillmor | |
2009-08-01 | swap order of bitwise and to avoid confusion in perl < 5.10 | Daniel Kahn Gillmor | |
2009-08-01 | removing duplicate check that snuck in somehow | Daniel Kahn Gillmor | |
2009-08-01 | attempting to resolve MS #675 | Daniel Kahn Gillmor | |
2009-08-01 | switch to using new checkperms script. | Daniel Kahn Gillmor | |
2009-08-01 | whitespace fixing and using environment variables exported from monkeysphere ↵ | Daniel Kahn Gillmor | |
for checkperms. | |||
2009-08-01 | added new perl script to check permissions. | Daniel Kahn Gillmor | |
2009-07-26 | ensuring that STRICT_MODES gets passed through to the monkeysphere subshell ↵ | Daniel Kahn Gillmor | |
properly, and that we set it to a literal "false" in the tests. This should resolve the FTBFS associated with MS #659 | |||
2009-07-26 | added MONKEYSPHERE_STRICT_MODES environment option to disable permissions ↵ | Daniel Kahn Gillmor | |
checking. | |||
2009-07-24 | small bug fix, and readbility improvements | Jameson Graef Rollins | |
2009-07-24 | Merge commit 'dkg/master' | Jameson Graef Rollins | |
2009-07-24 | shoring up known_hosts creation with proper umask and with multi-level ↵ | Daniel Kahn Gillmor | |
directory creation. | |||
2009-07-24 | make sure we check for the host key existence in the correct known_hosts file. | Daniel Kahn Gillmor | |
do not look for a host key in a non-existant file. (should close MS 1147) | |||
2009-07-24 | make failures with unwritable known_hosts slightly less cryptic. | Daniel Kahn Gillmor | |