Commit Graph

82 Commits

Author SHA1 Message Date
Jaromil
8ceeca8769
KDF support for argon2 memory intensive algorithm (#432)
* KDF support for argon2 memory intensive algorithm

following many requests, here is support for argon2 KDF to be switched
on using --kdftype argon2 (--kdf iterations --kdfmem memory)

effective memory required is 2^memory KiB, defaults to 18 (262 MiB)
number of iterations are still specified as --kdf argument

requires the argon2 reference C implementation from P-H-C
also requires tomb-kdb-pbkdf2-gensalt in extras/kdf-keys

example usage:
tomb forge -k argon.key --kdf 10 --kdftype argon2

* manual updates for argon2
2022-02-20 22:05:01 +01:00
Jaromil
84ef4bef4b remove pkexec autodetection 2021-10-21 11:49:54 +02:00
Jaromil
e0ba8c5f4d wider support for privilege escalation tools
now supporting also pkexec (polkit daemon), suckless' sup and
sud.dyne.org

pkexec is autodetected when polkit is running

manpage documents the --sudo flag which overrides any autodetection
2021-10-20 16:27:27 +02:00
Jaromil
fb3ffcec03 manpage mention of fallocate(1) for faster dig 2021-01-25 15:14:31 +01:00
Jaromil
f35ad11e3f updated documentation for release 2021-01-04 22:00:29 +01:00
Domenico Commisso
7da034c146 Fix Firefox example in linux manpage to avoid Firefox error at startup 2020-02-04 15:27:25 +01:00
Domenico Commisso
ac13adaa28 Update exec-hooks name in linux manpage 2020-02-04 15:07:08 +01:00
Jaromil
e9fd1a19e1 documentation fix for default xts cipher string 2019-11-18 10:17:38 +01:00
Erik Doffagne
7e82beaca6 Fixed documentation 2019-10-03 06:31:45 +02:00
Jaromil
d83e39f1ec fix spelling errors in manpage 2019-07-05 08:04:06 +02:00
Jaromil
e45c005c88 documentation updates for release
known bugs, changelog and manual for sphinx
2019-05-30 18:48:30 +02:00
Jaromil
ace80c87db switch default random source to /dev/urandom
there is no need to default to a blocking source of random,
since /dev/random doesn't improves the quality of randomness in Linux
2019-05-22 09:55:02 +02:00
Jaromil
a0c74985ca documentation updates on the new cloakify feature
also updated the list of code contributors
2019-02-22 09:50:04 +01:00
Jaromil
9299f3eecf mention need of using trusted gpg keys in manpage
documentation to address issue #340
2019-02-20 20:37:28 +01:00
Jaromil
d0805084a2 added doc to avoid logging of invokations in syslog
see issue #302 and thanks to @stevesbrain
2018-01-23 09:38:52 +01:00
Jaromil
70abf31bab documentation updates for a new release 2018-01-03 19:53:35 +01:00
Jaromil
ab3044c6f5 restored change of ownership on tomb's contents
this reverts commit 843b7fdfc4
and refers to various issues, among them #268

on the long term its easy to realise how this is a usability feature for most
users, so we just provide a new '-p' flag to preserve ownership on open.
2018-01-03 18:34:50 +01:00
Jaromil
c8616787f7 added a comment in manpage about resize fail and restore
documentation according to #269
2018-01-03 11:14:21 +01:00
Jaromil
f6457090af documentation of the new 'ps' command 2017-12-11 17:55:02 +01:00
Jaromil
127a8ed7ee exit code check on close
also removed pre-open and post-close as they don't really make sense
since all hooks are contained inside the Tomb. The post-close may be
implemented using a temp file, if a use case turns up for it.
2017-06-06 16:30:48 +02:00
Jaromil
056d0174f4 refactoring of exec-hooks
Renamed file from "post-hooks" to more appropriate "exec-hooks".
Implemented and documented a more consistent call system made of 4
different stages: pre-open, post-open, pre-close, post-close.
Addresses issue #265
2017-06-06 12:45:29 +02:00
Jaromil
5de9cb32b9 manual updated with actual gpg id usage information 2017-04-16 12:15:21 +02:00
Jaromil
6c2077fee1 make documentation less opinionated about the u/random issue
fix #253
2017-03-22 16:40:21 +01:00
Jaromil
0644ebe951 updated manual to reflect final stage of gpg asymmetric encryption 2017-02-21 15:39:54 +01:00
Jaromil
bea7fe3f7c Merge branch 'master' into gnupg-key-support 2017-02-20 20:47:06 +01:00
Narrat
b2ee2114cf Make lsof an optional dep
tomb doesn't need lsof for anything else, and can work regulary without it.
So make it an optional feature, which allows to slam a tomb if lsof is installed

Updates additionally the man page and generates a new pdf from it
2017-02-05 20:03:29 +01:00
Alexandre Pujol
bfe5bb9707 Update the man page with GPG key support 2017-02-03 23:57:52 +00:00
Jaromil
fa145074f8 documentation updates and reorganisation
Added two new sections to the manpage: deniability and password.
Small actualisation of the install instructions.
2017-01-02 12:02:23 +01:00
Jaromil
4b1afb4fab documentation on direct use of images as keys
as mentioned in #225 now the manual mentions using jpeg images
directly as arguments to -k on open commands.
2016-12-22 20:46:40 +01:00
Jaromil
fa44f46eba better documentation for kdf
also correctly use _failure on fatal error using --kdf
2016-11-18 13:56:44 +01:00
Jaromil
8f0b2943ce documentation improvements for kdf and dm-crypt cipher choice 2016-01-09 10:16:42 +01:00
Jaromil
97399f6b91 removed obsolete documentation about --sudo-pwd 2015-11-25 17:39:47 +01:00
Narrat
1257b71108 Man-Page: Small fixes
Mostly intended to fix the URLs at the end.
The original page for dm-crypt pointed to the google-code page of cryptsetup and the google-code page itself redirects the user to gitlab, where the project is now hosted.
So replaced the URLs with their gitlab counterpart.

Made a note about the mount behaviour which got enhanced by ca012e8

Additionally some smaller typos corrected
2015-07-08 21:34:50 +02:00
Jaromil
b8447dbf24 documentation update and small swish-e fix
The fix is due to the new naming scheme without .tomb extension recently
introduced for mountpoints. While testing this a problem arised with
swish-e related to compression of indexes, to be addressed.
2015-07-06 17:33:44 +02:00
Jaromil
bfa77cc593 updated manual for -k option 2015-06-24 23:34:00 +02:00
boyska
2194023287 FIX --kdf documentation 2015-02-20 19:03:21 +01:00
Jaromil
0d690bf142 documentation and makefile scripts updates for release 2014-11-26 20:28:28 +01:00
Jaromil
0e141abf57 manpage updates 2014-11-23 14:55:03 +01:00
Jaromil
0d485bf51d Documentation for -k cleartext and --unsafe 2014-11-21 22:50:45 +01:00
Jaromil
f4f4837ff4 updates to the manpage 2014-11-14 20:23:16 +01:00
Jaromil
49af92e1a8 added documentation about pinentry to manual, fix #115 2014-10-24 01:35:29 +02:00
Jaromil
f6885729ac documentation updates for release 2014-06-09 12:22:33 +02:00
Jaromil
325633d2fb correct documentation on -s option
somewhere mentioned as --size, but the option is really just -s
fixes #100
2014-01-12 23:40:45 +01:00
Jaromil
39bfce25f8 Change default cipher specification
new default is "aes-xts-plain64:sha256"
manpage now includes note on how to tune it
fixes #102
2014-01-12 23:32:23 +01:00
Jaromil
8e9cc7d5c2 more post-hooks documentation and second argument passed with mountpoint 2013-09-19 15:37:21 +02:00
Jaromil
914ac9594e last fixes and documentation for release
manual page updates and improvements to kdf argument handling
2013-06-20 12:46:20 +02:00
Jaromil
ed879974cd documentation updates for release 2013-06-12 14:33:53 +02:00
Jaromil
c16402b04b manpage updates 2013-06-12 14:10:27 +02:00
Jaromil
b08ada1d41 fix to documentation about KDF 2013-06-12 13:43:26 +02:00
Jaromil
568cc43ab6 Size unit is now MiB
More precise megabyte calculation as in IEC 2000 mebibyte
Cleans up use of dd/dcfldd
Solves issue #87
2013-05-27 21:24:17 +02:00