Jaromil
671350585e
Massive code cleanup
...
This commit doesn't changes anything substantial in the code,
but reorganizes it in foldable units (we use folding.el) and
fixes its markup for literate code documentation using our own
fork of shocco.
2013-05-28 11:57:58 +02:00
Jaromil
8a21eb6145
Literate code documentation
...
facilitates code audit
2013-05-28 00:25:27 +02:00
Jaromil
110ae83cd1
Relevant improvements to key password handling
...
now keys are verified in load_key() honoring commanline args
ask_key_password() will challenge user verifying using gnupg
drop_key() should be called after key has been used
this commit removes quite som duplicate code in password handling.
2013-05-27 22:49:44 +02:00
Jaromil
f37f7dd51d
Tomb size lower limit
...
Most filesystems can't deal with less than 10 MiB space
closes issue #68
2013-05-27 21:35:28 +02:00
Jaromil
568cc43ab6
Size unit is now MiB
...
More precise megabyte calculation as in IEC 2000 mebibyte
Cleans up use of dd/dcfldd
Solves issue #87
2013-05-27 21:24:17 +02:00
BoySka
4aa00fe5f6
Merge pull request #89 from HalosGhost/patch-1
...
Make: add DESTDIR variable for easy packaging
2013-05-26 13:41:54 -07:00
Sam Stuewe
300f041670
Make syntax more explicit and clean; Add DESTDIR variable for easy packaging
...
--TODO--
* Add kdf installation
* Add zsh completion installation
2013-05-26 16:09:21 -04:00
Jaromil
2bb6704190
added simple makefile for manpage install
2013-05-25 16:39:42 +02:00
Jaromil
ad59dec3da
documentation updates
2013-05-25 16:29:19 +02:00
Jaromil
c20ca3a920
whitespace cleanup
2013-05-25 15:05:21 +02:00
Jaromil
37792ffdc5
cleanup of the main script
...
improved binary check, made resize optional
and set aside old install command (was already unused)
2013-05-25 15:04:16 +02:00
Jaromil
5f5fb06d43
documentation updates
2013-05-20 13:19:51 +02:00
Jaromil
3eb93acc18
Directory reorganization
...
This commit re-organizes all the source distribution contents to
present users with the simple script, while moving the rest in extras.
Also autoconf/automake scripts were removed, back to minimalism.
The rationale of this change is that Tomb really only consists of a
script and users with no extra needs should just be presented with
it with no need for anything else. Any other thing on top of the Tomb
script is an extra and can be even distributed separately or integrated
in distributions.
2013-05-18 17:29:37 +02:00
Jaromil
f5ccff8027
new lookup for mounted tombs fully adopted
...
now tomb close looks up bind hooks correctly
this commit includes backward compatibility fix for Debian 6
2013-05-15 13:53:28 +02:00
Jaromil
148be7283b
fixed lookup for mounted tombs
...
better parsing of mount output when looking for mounted tombs and bind hooks
fixes parsing also for Debian 7 where somehow mount output has changed
2013-05-15 12:00:23 +02:00
Jaromil
85e36178df
flag .noindex for tombs to exclude from search index
...
better manpage documentation for the search index command
2013-04-23 15:45:31 +02:00
Jaromil
6bda7e914e
continuing manual documentation
2013-04-16 18:11:26 +02:00
Jaromil
d769a09d25
fix to tomb search
...
correctly searches across multiple mounted tombs
2013-04-16 13:40:25 +02:00
Jaromil
fc84c27a49
small fix in password processing
2013-03-31 10:25:57 +02:00
Jaromil
a5d09a0559
create command restored for backward compatibility
...
the new mechanism to create tombs is in place (dig/forge/lock), but we
still wrap it with a create command for backward compatibility.
2013-03-30 18:59:34 +01:00
Jaromil
825f7ed687
Security check for extra keyslots
...
when a tomb is opened we check if other slots besides the master (0)
are enabled and if so we warn the user that there can be a backdoor.
LUKS permits the presence of multiple keys that can open a single
volume, but this weakens the security of it and we are not really
interested in implementing it.
2013-03-30 18:44:05 +01:00
Jaromil
12a7760895
new index and search commands
...
now it is possible to index all filenames contained in tombs using
updatedb(8) and then automatically search for them using locate in all
open tombs. Documentation was updated accordingly.
2013-03-30 17:29:51 +01:00
Jaromil
2b6a38f1d7
more information on who opened the tomb last time and when
...
also cleanups in uid/git handling and new tty and host info
2013-03-29 12:51:43 +01:00
Jaromil
b042824263
more user manual documentation
2013-03-29 12:47:44 +01:00
Jaromil
266319eee8
documentation for the new mechanism
...
skeleton for the user manual
2013-03-25 12:02:56 +01:00
Jaromil
cc3cfccd21
fix to password check (return code of gpg parsed using --status-fd
2013-03-22 23:39:25 +01:00
Jaromil
32cf477b58
cleaned up old create_tomb and updated terminal help
2013-03-22 22:31:29 +01:00
Jaromil
342c121fa2
completed new create procedure
2013-03-22 22:22:55 +01:00
Jaromil
84d4385696
new creation system in 3 steps and some tips in documentation
2013-03-22 21:13:59 +01:00
boyska
b9b7927e81
Better debian packaging
2013-02-16 15:58:43 +01:00
boyska
235a93537c
--without-gtk supported
2013-02-16 15:58:43 +01:00
boyska
42f239a8d6
TEST: kdf=null, passwd added
...
some cleanup: first usage of try-always block, which makes cleanup actions
much cleaner
2013-02-16 15:58:43 +01:00
boyska
48f8bf28fc
KDF: now ./configure has --without-gcrypt
2013-02-16 15:58:42 +01:00
boyska
6003623fe5
KDF: modularize code to support kdf everywhere
2013-02-16 15:58:42 +01:00
boyska
25512c5864
chown of the tomb is done immediately
2013-02-16 15:58:42 +01:00
boyska
419ad9a2bc
Unit tests, through --unsecure-dev-mode
...
other similar options are introduced to make testing possible
2013-02-16 15:58:42 +01:00
boyska
2e6a3df756
Add KDF support #82
...
Include pbkdf2 tools inside tomb
It also supports parameters (itertime).
2013-02-16 15:55:25 +01:00
boyska
6bb655df0b
tomb-open fix awk for name containing paths
2013-02-16 15:55:25 +01:00
boyska
75497a2382
reintroduce --ignore-swap (-f is also supported)
2013-02-16 15:55:25 +01:00
boyska
d117fbd916
tomb-open: fix wrong functions and indentation
...
(I love vim = command)
2013-02-16 15:55:24 +01:00
boyska
199ce8008c
undertaker: fix tomb binary detection
2013-02-16 15:55:24 +01:00
Jaromil
df2348381e
global vars aren't needed: we use option_is_set in message functions
2013-02-16 11:39:16 +01:00
BoySka
7a16c7f187
Stupid fix: abort after 3 attempts missing
2013-02-16 11:19:30 +01:00
BoySka
18febabbe5
check_priv: 3 attempts, error if wrong password
2013-02-16 11:19:30 +01:00
Jaromil
957e820c29
fixed chown of user permissions on tombs and added optional cipher (xts-plain etc.)
2012-07-10 10:31:14 +02:00
Jaromil
c46596987c
fixes cryptsetup and gpg binary paths on debian
2012-06-14 12:45:27 +02:00
Jaromil
c188c47679
fix gpg check and update the verbose mode
2012-02-07 21:05:29 +01:00
boyska
634720b40c
Merge: changed legacy code, added modelines
2012-02-02 23:45:07 +01:00
boyska
d57994fcc3
FIX (tries) #77 : slam wasn't slamming
...
That's because fuser behaves differently on debian.
(Why, debian, why???)
2012-02-02 00:31:44 +01:00
boyska
86fc6e67a8
Python: building improvement & docs
2012-02-01 23:27:18 +01:00