From: Daniel Kahn Gillmor Date: Thu, 19 Jun 2008 03:42:41 +0000 (-0400) Subject: Merge commit 'micah/master' X-Git-Tag: monkeysphere_0.1-1~17 X-Git-Url: https://codewiz.org/gitweb?a=commitdiff_plain;h=18c15c1adf65d47df5b3753c99f06092d81906d0;hp=2286a5520d8c5a39370350c2a45f9dd32870c0bc;p=monkeysphere.git Merge commit 'micah/master' --- diff --git a/doc/TODO b/doc/TODO index 905d198..bf51ae0 100644 --- a/doc/TODO +++ b/doc/TODO @@ -1,6 +1,13 @@ Next-Steps Monkeysphere Projects: --------------------------------- +Detail advantages of monkeysphere: detail the race conditions in ssh, + and how the monkeysphere can help you reduce these threat vectors: + threat model reduction diagrams + +Determine how openssh handles multiple processes writing to + known_hosts file (atomic appends?) + Handle unknown hosts in such a way that they're not always removed from known_hosts file. Ask user to lsign the host key? diff --git a/doc/george/changelog b/doc/george/changelog new file mode 100644 index 0000000..2442061 --- /dev/null +++ b/doc/george/changelog @@ -0,0 +1,19 @@ +****************************************************************************** +* * +* george system log * +* * +****************************************************************************** +* Please add new entries in reverse chronological order whenever you make * +* changes to this system * +****************************************************************************** + + +2008-06-18 - micah + * debootstrap'd debian etch install + * installed /etc/apt/sources.list with local proxy sources for etch, + testing, unstable, backports and volatile + * configured /etc/apt/preferences and apt.conf.d/local-conf to + pin etch, but make testing, sid and backports available + * added backports.org apt-key + * installed openssh-server and openssh-client packages + * added dkg, jrollins, mjgoins ssh public_keys to /root/.ssh/authorized_keys