Difference between revisions of "Mandos"
(Created page with "{{Entry |Name=Mandos |Short description=allows remote and/or unattended password protected server reboots. |Full description=The Mandos system allows computers to have encrypted ...") |
(New version) |
||
| Line 3: | Line 3: | ||
|Short description=allows remote and/or unattended password protected server reboots. | |Short description=allows remote and/or unattended password protected server reboots. | ||
|Full description=The Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote and/or unattended reboots. Wouldnââ¬â¢t it be great if you could have the security of encrypted root file systems and still have servers that could boot up automatically if there was a short power outage while you were asleep? That you could reboot at will, without having someone run over to the server to type in the password? Well, with Mandos, you (almost) can! The gain in convenience will only be offset by a small loss in security. The setup is as follows: The server will still have its encrypted root file system. The password to this file system will be stored on another computer (henceforth known as the Mandos server) on the same local network. The password will *not* be stored in plaintext, but encrypted with OpenPGP. To decrypt this password, a key is needed. This key (the Mandos client key) will not be stored there, but back on the original server (henceforth known as the Mandos client) in the initial RAM disk image. Oh, and all network Mandos client/server communications will be encrypted, using TLS (SSL). | |Full description=The Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote and/or unattended reboots. Wouldnââ¬â¢t it be great if you could have the security of encrypted root file systems and still have servers that could boot up automatically if there was a short power outage while you were asleep? That you could reboot at will, without having someone run over to the server to type in the password? Well, with Mandos, you (almost) can! The gain in convenience will only be offset by a small loss in security. The setup is as follows: The server will still have its encrypted root file system. The password to this file system will be stored on another computer (henceforth known as the Mandos server) on the same local network. The password will *not* be stored in plaintext, but encrypted with OpenPGP. To decrypt this password, a key is needed. This key (the Mandos client key) will not be stored there, but back on the original server (henceforth known as the Mandos client) in the initial RAM disk image. Oh, and all network Mandos client/server communications will be encrypted, using TLS (SSL). | ||
| + | |Homepage URL=http://www.fukt.bsnet.se/mandos | ||
|User level=intermediate | |User level=intermediate | ||
| − | |||
| − | |||
| − | |||
|VCS checkout command=bzr checkout ftp://anonymous@ftp.fukt.bsnet.se/pub/mandos/trunk mandos | |VCS checkout command=bzr checkout ftp://anonymous@ftp.fukt.bsnet.se/pub/mandos/trunk mandos | ||
|Computer languages=C,XML | |Computer languages=C,XML | ||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
|Keywords=server,network,encryption,tls. OpenSSL,boot,pgp,TLS,PGP/GPG | |Keywords=server,network,encryption,tls. OpenSSL,boot,pgp,TLS,PGP/GPG | ||
| − | | | + | |Version identifier=1.7.15 |
| − | |Last review by= | + | |Version date=2017/02/23 |
| − | |Last review date= | + | |Version status=stable |
| + | |Version download=http://ftp.fukt.bsnet.se/pub/mandos/mandos_1.7.15.orig.tar.gz | ||
| + | |Last review by=Alejandroindependiente | ||
| + | |Last review date=2017/03/01 | ||
|Submitted by=Database conversion | |Submitted by=Database conversion | ||
|Submitted date=2011-04-01 | |Submitted date=2011-04-01 | ||
| − | | | + | |Status= |
| − | | | + | |Is GNU=No |
| − | | | + | |License verified date=2008-10-31 |
| − | | | + | }} |
| + | {{Project license | ||
| + | |License=GPLv3orlater | ||
| + | |License verified by=Kelly Hopkins | ||
|License verified date=2008-10-31 | |License verified date=2008-10-31 | ||
| − | |||
}} | }} | ||
{{Person | {{Person | ||
| + | |Real name=Björn Påhlsson | ||
|Role=Maintainer | |Role=Maintainer | ||
| − | |||
|Email=belorn@fukt.bsnet.se | |Email=belorn@fukt.bsnet.se | ||
|Resource URL= | |Resource URL= | ||
}} | }} | ||
{{Person | {{Person | ||
| + | |Real name=Teddy Hogeborn | ||
|Role=Maintainer | |Role=Maintainer | ||
| − | |||
|Email=teddy@fukt.bsnet.se | |Email=teddy@fukt.bsnet.se | ||
|Resource URL= | |Resource URL= | ||
| Line 57: | Line 54: | ||
{{Software category | {{Software category | ||
|Database=server | |Database=server | ||
| − | |Interface=console,daemon | + | |Interface=console, daemon |
|Internet-application=server | |Internet-application=server | ||
|Security=system | |Security=system | ||
| − | |Use=internet-application,security,web-authoring | + | |Use=internet-application, security, web-authoring |
|Web-authoring=server | |Web-authoring=server | ||
|Works-with=database | |Works-with=database | ||
}} | }} | ||
| − | {{ | + | {{Featured}} |
| − | |||
| − | |||
| − | |||
| − | }} | ||
Revision as of 12:23, 1 March 2017
Mandos
http://www.fukt.bsnet.se/mandos
allows remote and/or unattended password protected server reboots.
The Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote and/or unattended reboots. Wouldnââ¬â¢t it be great if you could have the security of encrypted root file systems and still have servers that could boot up automatically if there was a short power outage while you were asleep? That you could reboot at will, without having someone run over to the server to type in the password? Well, with Mandos, you (almost) can! The gain in convenience will only be offset by a small loss in security. The setup is as follows: The server will still have its encrypted root file system. The password to this file system will be stored on another computer (henceforth known as the Mandos server) on the same local network. The password will *not* be stored in plaintext, but encrypted with OpenPGP. To decrypt this password, a key is needed. This key (the Mandos client key) will not be stored there, but back on the original server (henceforth known as the Mandos client) in the initial RAM disk image. Oh, and all network Mandos client/server communications will be encrypted, using TLS (SSL).
Licensing
License
Verified by
Verified on
Notes
Leaders and contributors
| Contact(s) | Role |
|---|---|
| Björn Påhlsson | Maintainer |
| Teddy Hogeborn | Maintainer |
Resources and communication
| Audience | Resource type | URI |
|---|---|---|
| Help | Mailing List Info/Archive | http://mail.fukt.bsnet.se/pipermail/mandos-dev/ |
| Debian (Ref) | https://tracker.debian.org/pkg/mandos | |
| Developer | Changelog | http://bzr.fukt.bsnet.se/loggerhead/mandos/trunk/changes |
| Developer | VCS Repository Webview | http://bzr.fukt.bsnet.se/loggerhead/mandos/trunk/files |
Software prerequisites
Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.3 or any later version published by the Free Software Foundation; with no Invariant Sections, no Front-Cover Texts, and no Back-Cover Texts. A copy of the license is included in the page “GNU Free Documentation License”.
The copyright and license notices on this page only apply to the text on this page. Any software or copyright-licenses or other similar notices described in this text has its own copyright notice and license, which can usually be found in the distribution or license text itself.