xs-activation updates

Martin Langhoff martin.langhoff at gmail.com
Wed Jun 24 14:24:14 EDT 2009


I just published a new xs-activation rpm that wraps up all the recent
work for around antitheft. A nice wikipage is in the works, but for
now a quick summary will do:

 - serves over port 191, and http (using the OAT protocol)

 - serves "root" leases, and also serves delegated leases, created on
the fly with a configurable length of validity (within the bounds of
the delegation, naturally

 - over OAT, it signs its messages with a delegated OAT key

 - it serves more complete messages

 - can serve "stolen" messages over both protocols (the laptop can be
marked as stolen from Moodle)

 - knows how to import leases, lease delegations, oat delegations and
"server keys" from appropriately prepared USB disks

 - has a modest privilege separation scheme where the private key is
only root readable, and the signing process is abstracted from the
actual server daemons

 - works well with the oat client code.

 - low-level logging goes to user.log, "high level" logging goes to
Moodle's logging facility.

 - keeps data on "last seen" times for each client

hth,


martin
-- 
 martin.langhoff at gmail.com
 martin at laptop.org -- School Server Architect
 - ask interesting questions
 - don't get distracted with shiny stuff  - working code first
 - http://wiki.laptop.org/go/User:Martinlanghoff



More information about the Devel mailing list