Commit Graph

408 Commits

Author SHA1 Message Date
Jaromil
825f7ed687 Security check for extra keyslots
when a tomb is opened we check if other slots besides the master (0)
are enabled and if so we warn the user that there can be a backdoor.
LUKS permits the presence of multiple keys that can open a single
volume, but this weakens the security of it and we are not really
interested in implementing it.
2013-03-30 18:44:05 +01:00
Jaromil
12a7760895 new index and search commands
now it is possible to index all filenames contained in tombs using
updatedb(8) and then automatically search for them using locate in all
open tombs. Documentation was updated accordingly.
2013-03-30 17:29:51 +01:00
Jaromil
2b6a38f1d7 more information on who opened the tomb last time and when
also cleanups in uid/git handling and new tty and host info
2013-03-29 12:51:43 +01:00
Jaromil
b042824263 more user manual documentation 2013-03-29 12:47:44 +01:00
Jaromil
266319eee8 documentation for the new mechanism
skeleton for the user manual
2013-03-25 12:02:56 +01:00
Jaromil
cc3cfccd21 fix to password check (return code of gpg parsed using --status-fd 2013-03-22 23:39:25 +01:00
Jaromil
32cf477b58 cleaned up old create_tomb and updated terminal help 2013-03-22 22:31:29 +01:00
Jaromil
342c121fa2 completed new create procedure 2013-03-22 22:22:55 +01:00
Jaromil
84d4385696 new creation system in 3 steps and some tips in documentation 2013-03-22 21:13:59 +01:00
boyska
b9b7927e81 Better debian packaging 2013-02-16 15:58:43 +01:00
boyska
235a93537c --without-gtk supported 2013-02-16 15:58:43 +01:00
boyska
42f239a8d6 TEST: kdf=null, passwd added
some cleanup: first usage of try-always block, which makes cleanup actions
much cleaner
2013-02-16 15:58:43 +01:00
boyska
48f8bf28fc KDF: now ./configure has --without-gcrypt 2013-02-16 15:58:42 +01:00
boyska
6003623fe5 KDF: modularize code to support kdf everywhere 2013-02-16 15:58:42 +01:00
boyska
25512c5864 chown of the tomb is done immediately 2013-02-16 15:58:42 +01:00
boyska
419ad9a2bc Unit tests, through --unsecure-dev-mode
other similar options are introduced to make testing possible
2013-02-16 15:58:42 +01:00
boyska
2e6a3df756 Add KDF support #82
Include pbkdf2 tools inside tomb
It also supports parameters (itertime).
2013-02-16 15:55:25 +01:00
boyska
6bb655df0b tomb-open fix awk for name containing paths 2013-02-16 15:55:25 +01:00
boyska
75497a2382 reintroduce --ignore-swap (-f is also supported) 2013-02-16 15:55:25 +01:00
boyska
d117fbd916 tomb-open: fix wrong functions and indentation
(I love vim = command)
2013-02-16 15:55:24 +01:00
boyska
199ce8008c undertaker: fix tomb binary detection 2013-02-16 15:55:24 +01:00
Jaromil
df2348381e global vars aren't needed: we use option_is_set in message functions 2013-02-16 11:39:16 +01:00
BoySka
7a16c7f187 Stupid fix: abort after 3 attempts missing 2013-02-16 11:19:30 +01:00
BoySka
18febabbe5 check_priv: 3 attempts, error if wrong password 2013-02-16 11:19:30 +01:00
Jaromil
957e820c29 fixed chown of user permissions on tombs and added optional cipher (xts-plain etc.) 2012-07-10 10:31:14 +02:00
Jaromil
c46596987c fixes cryptsetup and gpg binary paths on debian 2012-06-14 12:45:27 +02:00
Jaromil
c188c47679 fix gpg check and update the verbose mode 2012-02-07 21:05:29 +01:00
boyska
634720b40c Merge: changed legacy code, added modelines 2012-02-02 23:45:07 +01:00
boyska
d57994fcc3 FIX (tries) #77: slam wasn't slamming
That's because fuser behaves differently on debian.
(Why, debian, why???)
2012-02-02 00:31:44 +01:00
boyska
86fc6e67a8 Python: building improvement & docs 2012-02-01 23:27:18 +01:00
boyska
a6da0dbb93 Merge branch 'qtgui' basic ftrs for create/open
Create is quite good, but has no support for automatic-key-on-usb
Open is very raw, it only supports opening while explicitly choosing
where to get the key from

Python wrapper for tomb is in a distinct library, called "tomblib":
it currently supports tomb, basic undertaker, and parsing output
messages
2012-01-29 19:18:41 +01:00
boyska
7de7f85109 _msg resets colors after use 2012-01-29 16:25:16 +01:00
boyska
17c0478240 undertaker/python: ported to stderr messages 2012-01-29 16:16:06 +01:00
boyska
4d24e247aa Add undertaker to Makefile.am 2012-01-29 15:54:49 +01:00
boyska
261755b824 FIX setup.py for tomb-qt-open 2012-01-29 15:54:49 +01:00
boyska
a0eb6ba9c3 GUI: open functionality is barely functional
pytomb: adds undertaker, better parser (updated for new tomb messages)
undertaker: fix some things to make it work with new tomb
the rest is ui stuff :)

the ui does:
- allow auto-searching for the key near the tomb itself
- allow manually choosing a key location
- mount the tomb ;)
the ui DOESN'T:
- support usb nor anything else (shouldn't be that difficult)
- support periodical polling
- anything else
2012-01-29 15:54:48 +01:00
boyska
9318377aca Initial open support in pytomb/gui 2012-01-29 15:54:48 +01:00
boyska
72b44a84f6 --option-parsing: useful for completion 2012-01-29 15:54:48 +01:00
boyska
4a3d59c3a4 QT open: draft 2012-01-29 15:54:48 +01:00
boyska
fddddf9c6b FIX stupid things (test code removed) 2012-01-29 15:54:48 +01:00
boyska
ffbd019c4b QT packaging: seems to do the basic work 2012-01-29 15:54:47 +01:00
boyska
b6105ca5b6 QT: change dir layout, packaging begins 2012-01-29 15:54:47 +01:00
boyska
6aade0ffc8 GUI/PY: change dir layout; setup.py for tomblib
Now pytomb/ contains the python library, which will be available as tomblib
qt/ contains only the qt gui
They all are directly under src/
Also, tomblib has a setup.py to install/package/develop
2012-01-29 15:54:47 +01:00
boyska
13b66a40da Disable option to open the tomb; it's not ready yet 2012-01-29 15:54:47 +01:00
boyska
ab706fc639 Move parsing code from gui/qt to tomblib.parser 2012-01-29 15:54:47 +01:00
boyska
d2120486ca GUI/LIB: support for swap, check at beginning 2012-01-29 15:54:47 +01:00
boyska
1f290078bd Add subcommand 'check' and support in tomblib 2012-01-29 15:54:46 +01:00
boyska
2f4cf42e74 TOMBLIB: Support for --no-color, --ignore-swap 2012-01-29 15:54:46 +01:00
BoySka
bbe25d0f85 GUI: progressbar monitor tomb output
Warning: sudo behave strangely when watching both stdout and stderr
It seems to be solved watching only stderr, which is where 99% of tomb
output goes, but this is quite an hack
2012-01-29 15:54:46 +01:00
BoySka
51b5394bbc GUI handles errors;progresschecked by isComplete 2012-01-29 15:54:46 +01:00