summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)Author
2008-11-17HA! I figured out how to get ssh-keygen to read stdin by using theJameson Graef Rollins
bash "Here Strings" redirection. No more stupid tempfiles to get ssh key fingerprints.
2008-11-17More work on the marginal case output for the ssh-proxycommand. For aJameson Graef Rollins
key matching that offered by the host, now outputs just the information (including sigs) of the relevant user ID. There is some other useful output for other cases as well. I also added a couple of FIXMEs for some other cases that I think we should think about and maybe tweak behavior for.
2008-11-16really fix the ssh_host_rsa_key.pub.gpg output.Jameson Graef Rollins
2008-11-16fix quoting in output of ssh_host_rsa_key.pub.gpg. remember, at theJameson Graef Rollins
moment the gpg_authentication function can only accept a single argument, so the entire gpg command string needs to be in a single quoted string.
2008-11-16add some more informative debug output to key processing.Jameson Graef Rollins
2008-11-16Merge commit 'dkg/master'Jameson Graef Rollins
Conflicts: packaging/debian/changelog
2008-11-16added some useful output to the ssh-proxycommand for "marginal" casesJameson Graef Rollins
where keys are found for host but do not have full validity. this uses ssh-keyscan to pull the key for the host in question, check this key against the keys against those found via gpg, and output some useful information about the one that matches.
2008-11-16exporting SSH host public key (two variants: one traditional ssh, the other ↵Daniel Kahn Gillmor
OpenPGP) during m-s gen-key
2008-11-16m-s s: avoid failures when $TMPDIR has a space in it. (output might still be ↵Daniel Kahn Gillmor
a bit garbled)
2008-11-15Added info log output when a new key is added to known_hosts file.Jameson Graef Rollins
2008-11-15change from using a filename that is a just a space to an actual temporary fileMicah Anderson
2008-10-30do more testing to make sure that mktemp calls do not fail.Daniel Kahn Gillmor
2008-10-29set DISPLAY in test suite so that passphrase prompting falls through.Jameson Graef Rollins
2008-10-28move to using 'none' for the RAW_AUTHORIZED_KEY value to use for *not*Jameson Graef Rollins
including a user-controlled authorized_keys file. more fixes on test suite.
2008-10-28touch known_hosts file in monkeysphere so that permission checkingJameson Graef Rollins
down't fail. remove spurios directory in monkeysphere.dirs. more work on test suite.
2008-10-28enforce error checking when transferring the authorized keys file. If the ↵Daniel Kahn Gillmor
transfer fails, remove any existing target file so that we fail closed.
2008-10-28chown authorized_keys files as jrollins, and add monkeysphere tmpdir in ↵Jameson Graef Rollins
SYSDATADIR, for atomic moves of authorized_keys.
2008-10-28add more debugging output.Jameson Graef Rollins
2008-10-28fix bugs in authorized_* file permission checking.Jameson Graef Rollins
2008-10-27Move to using empty string for not using a user-controlledJameson Graef Rollins
authorized_keys file in RAW_AUTHORIZED_KEYS variable. Fix spelling mistakes and wording in config files.
2008-10-26Merge commit 'dkg/master'Jameson Graef Rollins
2008-10-26Changes to fix bug in authorized_keys file generation inJameson Graef Rollins
monkeysphere-server update-users.
2008-10-26Removed the gnutls component from our APT repo, since gnutls 2.6 is now in ↵Daniel Kahn Gillmor
debian/unstable. Documented the changes, and changed the warning message that monkeysphere emits too.
2008-10-25add check to su_monkeysphere_user to not use su if the user is theJameson Graef Rollins
monkeysphere user.
2008-10-25switch default keyservers to be pool.sks-keyservers.net, since that pool ↵Daniel Kahn Gillmor
seems to be well-monitored and updated.
2008-10-25add another FIXME for m-s dDaniel Kahn Gillmor
2008-10-11working on improving log outputJameson Graef Rollins
2008-10-11fix the *inst scripts to properly handle linking in the gpg.conf files.Jameson Graef Rollins
2008-10-11Generalize filesystem location variables (closes ↵Jameson Graef Rollins
http://web.monkeysphere.info/bugs/genericize-filesystem-locations-for-testsuite/). Add comments to gpg.conf files.
2008-10-11some preparatory changes in preparation for a test suite: not tested!Daniel Kahn Gillmor
2008-09-14The monkeysphere system user must have bash as its shell for the simple su ↵Daniel Kahn Gillmor
invocation to work. Do not try to explicitly preserve the environment across an su, as this is the default, and -m implies using the login shell of the superuser under FreeBSD.
2008-09-14adding another FIXME of things worth adding to monkeysphere-server diagnostics.Daniel Kahn Gillmor
2008-09-14allow monkeysphere-server c+ to read from the filesystem. Fix mistaken use ↵Daniel Kahn Gillmor
of $TMPDIR, which was causing weird recursion problems with portable invocations of mktemp.
2008-09-13fixing bugs in monkeysphere-server diagnostics.Daniel Kahn Gillmor
2008-09-13counting problems in monkeysphere-server diagnosticsDaniel Kahn Gillmor
2008-09-13replace stat with ls (sigh) and make su more portable.Daniel Kahn Gillmor
2008-09-12make sure that the FreeBSD package is using GNU-style getopt calls.Daniel Kahn Gillmor
2008-09-12make calls to hostname portable; more tweaks to FreeBSD packaging.Daniel Kahn Gillmor
2008-09-12more portability fixes: GNU date and BSD date prognosticate differently.Daniel Kahn Gillmor
2008-09-12making invocations of mktemp portable (FreeBSD does not have a default value ↵Daniel Kahn Gillmor
for the [template] arg
2008-09-12further lockfile debugging.Daniel Kahn Gillmor
2008-09-11fixing the shebang line for portability.Daniel Kahn Gillmor
2008-09-05dkg gets all of the credit for us finally being able to put to deathJameson Graef Rollins
seckey2sshagent. If we need it, we know where it is. rip.
2008-09-05add curly brace end to lock function that was oddly removed at one point.Jameson Graef Rollins
2008-09-05fix lockfile wrapper; it was sloppily constructed.Daniel Kahn Gillmor
2008-09-05abstract lockfile functions to be able to Depend: lockfile-progs | lockfileDaniel Kahn Gillmor
2008-09-05more porting tweaks: do not rely on the -w arg to base64, so we can use ↵Daniel Kahn Gillmor
fourmilab instead of GNU
2008-09-04added new test for /var/lib/monkeysphere in m-s diagnostics.Daniel Kahn Gillmor
2008-09-04fixing comment about dates.Daniel Kahn Gillmor
2008-09-04removed use of sponge, got rid of dependency on moreutils.Daniel Kahn Gillmor