From 14efcd4e9a12a0cde70596a32e2dd940e88d327c Mon Sep 17 00:00:00 2001 From: Jameson Graef Rollins Date: Fri, 12 Dec 2008 12:17:19 -0500 Subject: small tweak to debian news item --- website/news/Monkeysphere-in-Debian.mdwn | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) (limited to 'website') diff --git a/website/news/Monkeysphere-in-Debian.mdwn b/website/news/Monkeysphere-in-Debian.mdwn index acba904..edad432 100644 --- a/website/news/Monkeysphere-in-Debian.mdwn +++ b/website/news/Monkeysphere-in-Debian.mdwn @@ -3,9 +3,9 @@ [The Monkeysphere has made it into Debian!](http://packages.debian.org/sid/monkeysphere) -It is in Debian unstable (sid) now, which means it won't make it into -the next unstable release (lenny), but hopefully will be in the stable -release after that (squeeze). +It is in Debian unstable ("sid") now, which means it won't make it +into the next stable release ("lenny"), but hopefully will make it +into the stable release after that ("squeeze"). Congratulations to all the work by all the [monkeysphere developers](/community), and to Micah Anderson for being our Debian -- cgit v1.2.3 From 78261d94b9bbf55e6f5ace1be0774eb079ff46f2 Mon Sep 17 00:00:00 2001 From: Jameson Graef Rollins Date: Sat, 13 Dec 2008 17:54:10 -0500 Subject: link to new wiki/bugs --- website/sidebar.mdwn | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) (limited to 'website') diff --git a/website/sidebar.mdwn b/website/sidebar.mdwn index fe21fc5..fd24134 100644 --- a/website/sidebar.mdwn +++ b/website/sidebar.mdwn @@ -8,6 +8,7 @@ [[DOCUMENTATION|doc]] [[NEWS|news]] [[COMMUNITY|community]] -[[BUGS|bugs]] +WIKI +BUGS -- cgit v1.2.3 From cbe3a41096ce1a30e20c419df3bb565fe2e52fcb Mon Sep 17 00:00:00 2001 From: Daniel Kahn Gillmor Date: Mon, 15 Dec 2008 17:57:59 -0500 Subject: suggesting simpler approach to getopt. --- website/bugs/use_getopts_instead_of_getopt.mdwn | 9 +++++++++ 1 file changed, 9 insertions(+) (limited to 'website') diff --git a/website/bugs/use_getopts_instead_of_getopt.mdwn b/website/bugs/use_getopts_instead_of_getopt.mdwn index af4c17a..2ec68d6 100644 --- a/website/bugs/use_getopts_instead_of_getopt.mdwn +++ b/website/bugs/use_getopts_instead_of_getopt.mdwn @@ -8,3 +8,12 @@ better for portability. So it looks like the sh built-in getopts does not include long options (eg. "--expire"). Is it worth getting rid of the long options for this? + +--- + +Why not just get rid of getopts altogether and perform a simple +argument-processing loop with bash string tests? We're only invoking +getopt in three places, and each invocation is no more complex than +three arguments -- and most arguments take a separate parameter, which +means that handling tricky arg blobs like -aCxr are not gonna be +supported anyway. -- cgit v1.2.3 From 804f681741a868f6354823d04b8af71b050e5480 Mon Sep 17 00:00:00 2001 From: Jameson Graef Rollins Date: Tue, 23 Dec 2008 09:32:08 -0500 Subject: slightly modified header "sidebar". added pieces of logo broken into image and title. --- website/local.css | 20 ++++++++++---------- website/logo.simple.png | Bin 0 -> 5536 bytes website/logo.title.png | Bin 0 -> 4123 bytes website/sidebar.mdwn | 14 +++++++++----- 4 files changed, 19 insertions(+), 15 deletions(-) create mode 100644 website/logo.simple.png create mode 100644 website/logo.title.png (limited to 'website') diff --git a/website/local.css b/website/local.css index c4b59e9..de0f196 100644 --- a/website/local.css +++ b/website/local.css @@ -58,31 +58,31 @@ pre { overflow: auto; } -table.sitenav { +table.sitenav { border-bottom: 2px solid black; padding: 0px; width: 100%; font-size: larger; } -table.sitenav img.logo { - margin: 0px; - padding: 0px; +table.sitenav img.logo { + margin: 0em; + padding: 0px; vertical-align: bottom; } +table.sitenav img.title { + margin: 0px; + padding: 0px; + vertical-align: top; +} + table.sitenav a { font-weight: bold; margin-right: 1em; font-size: smaller; } -/* trying to align the sitenav links roughly with the text in the monkeysphere logo */ -td#sitenav { - vertical-align: bottom; - padding-bottom: 30px; -} - table.sitenav span.selflink { font-weight: bold; text-decoration: underline; diff --git a/website/logo.simple.png b/website/logo.simple.png new file mode 100644 index 0000000..5cc69eb Binary files /dev/null and b/website/logo.simple.png differ diff --git a/website/logo.title.png b/website/logo.title.png new file mode 100644 index 0000000..a203f8b Binary files /dev/null and b/website/logo.title.png differ diff --git a/website/sidebar.mdwn b/website/sidebar.mdwn index fd24134..6c8f414 100644 --- a/website/sidebar.mdwn +++ b/website/sidebar.mdwn @@ -1,8 +1,10 @@ -+ + + + + + +
- -
monkeysphere
[[WHY?|why]] [[DOWNLOAD|download]] [[DOCUMENTATION|doc]] @@ -10,5 +12,7 @@ [[COMMUNITY|community]] WIKI BUGS +
- -- cgit v1.2.3 From c567516499a1090dd330d2209a5064b9f0915c91 Mon Sep 17 00:00:00 2001 From: Jameson Graef Rollins Date: Wed, 24 Dec 2008 18:43:27 -0500 Subject: slight tweak to sidebar --- website/sidebar.mdwn | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'website') diff --git a/website/sidebar.mdwn b/website/sidebar.mdwn index 6c8f414..420cd7e 100644 --- a/website/sidebar.mdwn +++ b/website/sidebar.mdwn @@ -1,5 +1,5 @@ -+ -- cgit v1.2.3 From e94dfff2bd84bbf07b3314c9cfd082c4a62612e2 Mon Sep 17 00:00:00 2001 From: Jameson Graef Rollins Date: Thu, 15 Jan 2009 22:48:22 -0500 Subject: added new "vision" page where we can talk about monkeysphere 2.0. --- website/sidebar.mdwn | 1 + website/vision.mdwn | 14 ++++++++++++++ 2 files changed, 15 insertions(+) create mode 100644 website/vision.mdwn (limited to 'website') diff --git a/website/sidebar.mdwn b/website/sidebar.mdwn index 420cd7e..4783d2a 100644 --- a/website/sidebar.mdwn +++ b/website/sidebar.mdwn @@ -12,6 +12,7 @@ [[COMMUNITY|community]] WIKI BUGS +[[VISION|vision]]
monkeysphere
diff --git a/website/vision.mdwn b/website/vision.mdwn new file mode 100644 index 0000000..66b2aec --- /dev/null +++ b/website/vision.mdwn @@ -0,0 +1,14 @@ +[[meta title="Our vision for the future of the monkeysphere"]] + +## External Validation Agent ## + +This is probably at the crux of the Monkeysphere vision for the future: + +* [Simon Josefsson proposed out-of-process certificate verification model in gnutls-devel](http://news.gmane.org/find-root.php?group=gmane.comp.encryption.gpg.gnutls.devel&article=3231) +* [Werner Koch's dirmngr](http://www.gnupg.org/documentation/manuals/dirmngr/) +* [GnuTLS wiki external validation](http://redmine.josefsson.org/wiki/gnutls/GnuTLSExternalValidation) + +## Other discussions ## + +* [Wandering Thoughts blog discussion about Web of Trust flaws](http://utcc.utoronto.ca/~cks/space/blog/tech/WebOfTrustFlaws?showcomments) +* [Wandering Thoughts blog discussion about certificate authorities](http://utcc.utoronto.ca/~cks/space/blog/web/SSLCANeed?showcomments) -- cgit v1.2.3 From a6b8e39ccf17f2e3e2c8118875988476126c8a54 Mon Sep 17 00:00:00 2001 From: Daniel Kahn Gillmor Date: Thu, 15 Jan 2009 23:55:17 -0500 Subject: added firefox extensions to the monkeysphere future vision --- website/vision.mdwn | 19 ++++++++++++++++++- 1 file changed, 18 insertions(+), 1 deletion(-) (limited to 'website') diff --git a/website/vision.mdwn b/website/vision.mdwn index 66b2aec..281bc72 100644 --- a/website/vision.mdwn +++ b/website/vision.mdwn @@ -7,8 +7,25 @@ This is probably at the crux of the Monkeysphere vision for the future: * [Simon Josefsson proposed out-of-process certificate verification model in gnutls-devel](http://news.gmane.org/find-root.php?group=gmane.comp.encryption.gpg.gnutls.devel&article=3231) * [Werner Koch's dirmngr](http://www.gnupg.org/documentation/manuals/dirmngr/) * [GnuTLS wiki external validation](http://redmine.josefsson.org/wiki/gnutls/GnuTLSExternalValidation) +* [Pathfinder PKI validation](http://code.google.com/p/pathfinder-pki/) (includes validation plugins for OpenSSL and LibNSS). -## Other discussions ## +## TLS transition strategies ## + +While [RFC 5081](http://tools.ietf.org/html/rfc5081) is quite a while +off from widespread adoption, it would be good to have an interim +translation step. This is analogous to the SSH work we've done, where +the on-the-wire protocol remains the same, but the keys themselves are +looked up in the OpenPGP WoT. + +Firefox extensions that deal with certificate validation seem to be +the easiest path toward demonstrating this technique. We should look +at: + +* [SSL Blacklist](http://codefromthe70s.org/sslblacklist.aspx) +* [Perspectives](http://www.cs.cmu.edu/~perspectives/firefox.html) +* there is another firefox extension that basically disables all TLS certificate checking. The download page says things like "this is a bad idea" and "do not install this extension", but i'm unable to find it at the moment. + +## Related discussions ## * [Wandering Thoughts blog discussion about Web of Trust flaws](http://utcc.utoronto.ca/~cks/space/blog/tech/WebOfTrustFlaws?showcomments) * [Wandering Thoughts blog discussion about certificate authorities](http://utcc.utoronto.ca/~cks/space/blog/web/SSLCANeed?showcomments) -- cgit v1.2.3