From 0141efcc55977e8f61bc7ccb31539e99d3ba3d49 Mon Sep 17 00:00:00 2001
From: Jameson Graef Rollins <jrollins@phys.columbia.edu>
Date: Sun, 2 Nov 2008 19:47:09 -0500
Subject: work on website, cleaning up download page

---
 website/doc.mdwn               | 12 ++++--------
 website/download.mdwn          | 40 +++++++++++++++++++++++++++++-----------
 website/technical-details.mdwn |  5 +++++
 3 files changed, 38 insertions(+), 19 deletions(-)
 create mode 100644 website/technical-details.mdwn

(limited to 'website')

diff --git a/website/doc.mdwn b/website/doc.mdwn
index 56498e8..b60cf28 100644
--- a/website/doc.mdwn
+++ b/website/doc.mdwn
@@ -2,20 +2,16 @@
 
 # Documentation #
 
-## Dependencies ##
-
-Monkeysphere relies on:
-
- * [GnuTLS](http://gnutls.org/) version 2.4.0 or later
- * [OpenSSH](http://openssh.com/)
- * [GnuPG](http://gnupg.org/)
-
 ## Getting started ##
 
  * [Downloading and installing](/download)
  * Getting started as a [user](/getting-started-user)
  * Getting started as a [server admin](/getting-started-admin)
+
+## Under the hood ##
+
  * [Developing the monkeysphere](/community)
+ * [Technical details](/technical-details)
 
 ## References ##
 
diff --git a/website/download.mdwn b/website/download.mdwn
index 5551b52..384a03c 100644
--- a/website/download.mdwn
+++ b/website/download.mdwn
@@ -2,10 +2,25 @@
 
 # Downloading and Installing #
 
+Once you've installed the packages, please see the [documentation
+page](/doc) to read up on how to get started [as a regular
+user](/getting-started-user) or [as a systems
+administrator](/getting-started-admin).
+
+## Dependencies ##
+
+Monkeysphere relies on:
+
+ * [GnuTLS](http://gnutls.org/)
+  * version 2.4 or later for general use
+  * [version 2.6 or later](/news/gnutls-2.6-enables-monkeysphere) to use the `monkeysphere subkey-to-ssh-agent` subcommand.
+ * [OpenSSH](http://openssh.com/)
+ * [GnuPG](http://gnupg.org/)
+
 ## Debian ##
 
-If you are running a Debian system, you can install Monkeysphere
-by following these directions:
+If you are running a [Debian](http://www.debian.org/) system, you can
+install Monkeysphere by following these directions:
 
 You can add this repo to your system by putting the following lines in
 `/etc/apt/sources.list.d/monkeysphere.list`:
@@ -14,23 +29,20 @@ You can add this repo to your system by putting the following lines in
 	deb-src http://archive.monkeysphere.info/debian experimental monkeysphere
 
 The repository is currently signed by [The Monkeysphere archive
-signing key](/archive-key), key id EB8AF314 (fingerprint: `2E8D
-D26C 53F1 197D DF40 3E61 18E6 67F1 EB8A F314`).  To cryptographically
+signing key](/archive-key), key id EB8AF314 (fingerprint: `2E8D D26C
+53F1 197D DF40 3E61 18E6 67F1 EB8A F314`).  To cryptographically
 verify the packages, you'll want to [add this key to your apt
 configuration after verifying its
 integrity](http://wiki.debian.org/SecureApt).
 
 To use the `monkeysphere subkey-to-ssh-agent` subcommand, you will
-also need [version 2.6 of GnuTLS](/news/gnutls-2.6-enables-monkeysphere),
-which is available in Debian experimental.
-
-Once you've installed the packages, you might want to read up on how
-to get started [as a regular user](/getting-started-user) or [as a
-systems administrator](/getting-started-admin).
+also need [version 2.6 of
+GnuTLS](/news/gnutls-2.6-enables-monkeysphere), which is available in
+Debian experimental.
 
 ## FreeBSD ##
 
-There is [now a FreeBSD port available](/news/FreeBSD-port-available/)
+There is [now a FreeBSD port available](/news/FreeBSD-port-available)
 for the Monkeysphere.
 
 While the monkeysphere is not officially included in the ports tree
@@ -52,6 +64,12 @@ port with:
     cd /usr/ports/security/monkeysphere
     make && make install
 
+To use the `monkeysphere subkey-to-ssh-agent` subcommand, you will
+also need [version 2.6 of
+GnuTLS](/news/gnutls-2.6-enables-monkeysphere), which is [slated to be
+available after the 7.1 ports slush is
+over](http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/127330).
+
 ## Source ##
 
 For those that would like to download the source directly, [the source
diff --git a/website/technical-details.mdwn b/website/technical-details.mdwn
new file mode 100644
index 0000000..b4decce
--- /dev/null
+++ b/website/technical-details.mdwn
@@ -0,0 +1,5 @@
+[[meta title="Technical Details"]]
+
+# Technical Details #
+
+Under construction.
-- 
cgit v1.2.3


From 8ba61926bbe8609c4e5a9c9e5e0b12644880de92 Mon Sep 17 00:00:00 2001
From: Jameson Graef Rollins <jrollins@phys.columbia.edu>
Date: Mon, 3 Nov 2008 00:36:10 -0500
Subject: set the bash pipefail option in the test script to return the error
 code of the first failed function in a pipe. also add some new web pages that
 need to be filled out.

---
 tests/basic                    |  1 +
 website/features.mdwn          |  4 ++++
 website/technical-details.mdwn | 23 +++++++++++++++++++++++
 3 files changed, 28 insertions(+)
 create mode 100644 website/features.mdwn

(limited to 'website')

diff --git a/tests/basic b/tests/basic
index 289a1b7..d863886 100755
--- a/tests/basic
+++ b/tests/basic
@@ -13,6 +13,7 @@
 
 # all subcommands in this script should complete without failure:
 set -e
+set -o pipefail
 
 ## make sure that the right tools are installed to run the test.  the
 ## test has *more* requirements than plain ol' monkeysphere:
diff --git a/website/features.mdwn b/website/features.mdwn
new file mode 100644
index 0000000..1aabda1
--- /dev/null
+++ b/website/features.mdwn
@@ -0,0 +1,4 @@
+[[meta title="Features"]]
+
+# Features #
+
diff --git a/website/technical-details.mdwn b/website/technical-details.mdwn
index b4decce..902e356 100644
--- a/website/technical-details.mdwn
+++ b/website/technical-details.mdwn
@@ -3,3 +3,26 @@
 # Technical Details #
 
 Under construction.
+
+## Host key verification ##
+
+When an ssh connection is initiated, the ssh client checks that the
+host key presented by the server matches one found in the connecting
+user's `known_hosts` file.  If so, the ssh client allows the
+connection to continue.  If not, the client asks the user if they
+would like to accept the host key for future session by asking the
+user to verify the host key's fingerprint.
+
+### Adding a server to the monkeysphere ###
+
+Servers are "monkeysphere enabled" by generating an OpenPGP
+authentication key for the server, translating the key into on ssh
+key, and publishing the host key to the Web of Trust.
+
+### Verifying a host key ###
+
+## User authentication ##
+
+### Adding an individual to the monkeysphere ###
+
+### Verifying a user key ###
-- 
cgit v1.2.3


From 7833a5e9da4c6e15eea7edfc38ae122360b37f1f Mon Sep 17 00:00:00 2001
From: Micah Anderson <micah@riseup.net>
Date: Tue, 4 Nov 2008 16:09:47 -0500
Subject: create a new section of the getting started page that lets people
 know that they should install monkeysphere software at this point in their
 journey. It may be obvious, but I think in terms of providing a step-by-step
 howto get started guide, the least assumptions of obviousness we make, the
 better.

I also moved the information about making sure that you have the
gnutls requirements up to this install section.
---
 website/getting-started-user.mdwn | 14 ++++++++++----
 1 file changed, 10 insertions(+), 4 deletions(-)

(limited to 'website')

diff --git a/website/getting-started-user.mdwn b/website/getting-started-user.mdwn
index e0a2dab..66378dc 100644
--- a/website/getting-started-user.mdwn
+++ b/website/getting-started-user.mdwn
@@ -20,6 +20,16 @@ done with a simple cronjob.  An example of crontab line to do this is:
 
 This would refresh your keychain every day at noon.
 
+Install the monkeysphere software on your system
+------------------------------------------------
+
+If you haven't installed monkeysphere yet, you will need to [download
+and install] (/download) before continuing.
+
+Make sure that you have the GnuTLS library version 2.6 or later
+installed on your system. If you can't (or don't want to) upgrade to
+GnuTLS 2.6 or later, there are patches for GnuTLS 2.4 available in
+[the Monkeysphere git repo](/community).
 
 Keeping your `known_hosts` file in sync with your keyring
 -----------------------------------------------------------
@@ -93,10 +103,6 @@ you can feed your authentication subkey to your ssh agent by running:
 
 	$ monkeysphere subkey-to-ssh-agent
 
-If you can't (or don't want to) upgrade to GnuTLS 2.6 or later, there
-are patches for GnuTLS 2.4 available in [the Monkeysphere git
-repo](/community).
-
 FIXME: using the key with a single ssh connection?
 
 Establish trust
-- 
cgit v1.2.3


From f05d8f446617a5ee6438232ab16c4619c160ae0e Mon Sep 17 00:00:00 2001
From: Jameson Graef Rollins <jrollins@phys.columbia.edu>
Date: Wed, 5 Nov 2008 16:21:18 -0500
Subject: small fix to broken web link.

---
 website/getting-started-user.mdwn | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'website')

diff --git a/website/getting-started-user.mdwn b/website/getting-started-user.mdwn
index 66378dc..5dcb0d6 100644
--- a/website/getting-started-user.mdwn
+++ b/website/getting-started-user.mdwn
@@ -24,7 +24,7 @@ Install the monkeysphere software on your system
 ------------------------------------------------
 
 If you haven't installed monkeysphere yet, you will need to [download
-and install] (/download) before continuing.
+and install](/download) before continuing.
 
 Make sure that you have the GnuTLS library version 2.6 or later
 installed on your system. If you can't (or don't want to) upgrade to
-- 
cgit v1.2.3