From 4793624c65673268128fb0146cd9bd1b3cfeb6c4 Mon Sep 17 00:00:00 2001 From: Jameson Graef Rollins Date: Tue, 10 Jun 2008 17:17:51 -0400 Subject: New client/server components: - broke out all common functions to "common" file - put all client commands into "monkeysphere" script - put all server commands into "monkeysphere-server" script - moved all code into src directory to clean things up a bit - this effectively makes obsolete rhesus and howler - added proposed monkeysphere-ssh-proxycommand script that can be called to update known_hosts from ssh ProxyCommand - updated monkeysphere.conf to work as global client config - added monkeysphere-server.conf for server config --- monkeysphere.conf | 37 +++++++++++++++++++------------------ 1 file changed, 19 insertions(+), 18 deletions(-) (limited to 'monkeysphere.conf') diff --git a/monkeysphere.conf b/monkeysphere.conf index 6401203..385165a 100644 --- a/monkeysphere.conf +++ b/monkeysphere.conf @@ -1,30 +1,31 @@ -# monkeysphere system configuration file +# MonkeySphere system-wide client configuration file. -# This is particular configuration is meant to be sourced by the -# rhesus shell script when run in administrative mode to maintain -# authorized_keys files for users. +# authorized_user_ids file +#AUTHORIZED_USER_IDS=~/.config/monkeysphere/authorized_user_ids -AUTHORIZED_USER_IDS=/etc/monkeysphere/authorized_user_ids/"$USER" +# GPG home directory +#GNUPGHOME=~/.gnupg -STAGING_AREA=/var/lib/monkeysphere/stage/"$USER" +# GPG keyserver to search for keys +#KEYSERVER=subkeys.pgp.net -# gpg home directory for server -GNUPGHOME=/etc/monkeysphere/gnupg - -# gpg keyserver to search for keys -KEYSERVER=subkeys.pgp.net - -# required capabilities of keys -# must be quoted, lowercase, space-seperated list of the following: +# Required key capabilities +# Must be quoted, lowercase, space-seperated list of the following: # e = encrypt # s = sign # c = certify # a = authentication -REQUIRED_KEY_CAPABILITY="e a" +#REQUIRED_KEY_CAPABILITY="e a" # Path to user-controlled authorized_keys file to add to # Monkeysphere-generated authorized_keys file. If empty, then no -# user-controlled file will be added. To specify the user's home -# directory, use the string "~${USER}" -USER_CONTROLLED_AUTHORIZED_KEYS="~${USER}/.ssh/authorized_keys" +# user-controlled file will be added. +#USER_CONTROLLED_AUTHORIZED_KEYS=~/.ssh/authorized_keys + +# User known_hosts file +#USER_KNOWN_HOSTS=~/.ssh/known_hosts + +# Whether or not to hash the generated known_hosts lines +# (empty mean "no"). +#HASH_KNOWN_HOSTS= -- cgit v1.2.3