Created tag for Live CD/Live USB release v0.3.5 build config

This commit is contained in:
frisco 2010-08-09 07:16:42 +00:00
parent 783824bad9
commit bd96dede76
101 changed files with 9510 additions and 0 deletions

View file

@ -0,0 +1,35 @@
/* Debian language css file for english - en */
/* please do not touch for now! - Jutta Wrage 2005 */
html[lang|=en] #serverselect {
width: 13em;
}
html[lang|=en] #maincol {
margin-left: 10em;
}
html[lang|=en] #leftcol ul.cdmenu {
width: 10em;
}
q { font-style: italic; }
/* quotes */
html[lang|=en] q:before { content: "\201C"; }
html[lang|=en] q:after { content: "\201D"; }
html[lang|=en] q q:before { content: "\2018"; }
html[lang|=en] q q:after { content: "\2019"; }
/* html[lang|=en] blockquote p:first-child:before { content: "\201C"; }
html[lang|=en] blockquote p.notlast:after { content: ""; }
html[lang|=en] blockquote p:after { content: "\201D"; }
html[lang|=en] blockquote.question p:before { content: ""; }
html[lang|=en] blockquote.question p:after, blockquote.documentquote p:after{ content: ""; }
html[lang|=en] blockquote { font-style: italic; }
*/
/*
html[lang=en] .en2 q:before { content: "\2018"; }
html[lang=en] .en2 q:after { content: "\2019"; }
html[lang=en] .en2 q q:before { content: "\201C"; }
html[lang=en] .en2 q q:after { content: "\201D"; }
*/

View file

@ -0,0 +1,703 @@
/* css file for debian web site - Jutta Wrage 2004 */
/* please see README_CSS.txt for more information */
html, body {
color: #000000;
background-color: #FFFFFF;
margin: 0 4px 0 4px;
padding: 0;
text-align: left;
}
img { border: 0; }
h1 { text-align: center; }
acronym {
border-bottom: 1px dotted #000000;
}
hr.hidecss {
border: 0;
}
hr {
border-bottom: 0;
border-top: 1px solid #BFC3DC;
}
samp {
display: block;
margin-left: 2em;
}
div.sampleblock {
width: 80%;
margin: auto;
font-family:courier, serif;
font-size: 90%;
}
.centerblock {
width: 90%;
margin-left: auto;
margin-right: auto;
}
div.quoteblock {
width: 75%;
margin: auto;
font-size: 90%;
text-align: justify;
}
.quoteblock div.preimg {
float: left;
margin-top: 0.2em;
}
.quoteblock cite {
display: block;
text-align: right;
}
blockquote.question {
font-style: italic;
}
blockquote.question p span {
font-style: normal;
width: 10%;
}
#pagewidth {
width: 100%;
text-align: left;
}
/* now the header*/
#header {
margin-left: -3px;
width: 100%;
height: auto;
}
/* upper nested header box*/
#upperheader {
width: 100%;
margin-top: 11px;
height: auto;
background: #FFFFFF;
}
#logo {
float: left;
margin-left: 6px;
background: #FFFFFF;
}
#serverselect {
float: right;
display: block;
padding-top: 1px;
margin-right: 6px;
margin-left: auto;
text-align: right;
top: 0;
right: 0;
}
#serverselect p {
color: #990000;
font-size: 0.8em;
font-weight: normal;
}
#serverselect p select {
font-size: 88%;
}
#serverselect p input {
font-size: 88%;
}
.centerlogo {
margin-left: 260px;
margin-right: auto;
width: 125px;
text-align: center;
vertical-align: bottom;
}
#cdlogo {
}
#hpacketsearch {
display: block;
padding-top: 1px;
padding-left: 5px;
margin-right: 0.2em;
margin-left: auto;
text-align: left;
width: 25em;
top: 0em;
right: 0em;
}
#hpacketsearch p small {
color: #990000;
font-size: 0.8em;
font-weight: normal;
}
#hpacketsearch p select {
font-size: 88%;
}
#hpacketsearch p input {
font-size: 88%;
}
#navbar {
/* margin-top: 1em; */
clear: both;
padding-left: 0px;
/* margin-top: 5px; */
padding-top: 6px;
padding-bottom: 4px;
width: 100%;
height: auto;
text-align: center;
background: #BF1238;
}
#navbar ul {
display: inline;
list-style-type: none;
padding-left: 0px;
line-height: 1.5em;
}
#navbar ul li {
display: inline;
margin: 0;
white-space: nowrap;
}
#navbar a {
color: #FFFFFF;
text-decoration: none;
padding: 0.2em 0.4em 0.2em 0.4em;
background-color: #000084;
border: 1px solid #000084;
font-family: Arial, Helvetica, sans-serif;
font-weight: bold;
font-size: 0.9em;
}
#navbar a:hover {
background: #0000CC;
}
#navbar .hidecss, .hidecss {
display: none;
}
/* the rest of page out of two nested boxes around */
#outer {
background-color: #FFFFFF;
width: auto;
/* border:solid white 2px; */
}
#inner {
margin: -2px;
margin-top: 0;
width: 100%;
background: #FFFFFF;
/* overflow: auto; */
}
#leftcol {
float: left;
margin: 0em 0.4em 0 0;
padding-left: 0;
padding-bottom: 1em;
width: auto;
background: #BBDDFF;
font-size: 0.9em;
font-family: Arial, Helvetica, sans-serif;
border: 1px solid #BBDDFF;
/* overflow: auto; */
}
#leftcol a:link, #leftcol a:visited {
display: block;
}
#leftcol a:hover {
background-color: #DDEEFF;
/* background-color: #FFFFFF; */
}
#leftcol ul {
margin: 2px;
padding: 0;
list-style-type: none;
font-weight: bold;
}
#leftcol ul.votemenu {
width: 11em;
}
#leftcol ul.cdmenu {
width: 12em;
}
#leftcol ul.votemenu ul li, #leftcol ul.cdmenu ul li {
padding-bottom: 0.4em;
}
#leftcol li ul {
display: inline;
}
#leftcol ul li {
padding: 0.2em 0;
}
#leftcol ul ul {
font-size: 0.9em;
margin: 0;
}
#leftcol ul li a {
line-height: 1.2em;
padding-right: 0.5em;
/* padding: 0.2em 0 0.3em 0em; */
}
#leftcol ul ul li a {
font-weight: normal;
padding: 0.1em 0.5em;
line-height: 1.1em;
}
#leftcol ul ul li {
padding-top: 0;
}
#leftcol p {
margin-left: 2px;
margin-right: 2px;
}
#leftcol p a {
display: block;
margin: 0;
}
#leftcol p img {
margin-left: 1em;
}
#leftcol .menuselected {
color: #BF1238;
}
#leftcol ul ul .menuselected {
text-indent: 0.5em;
}
#maincol {
background: #FFFFFF;
margin-left: 12em;
margin-right: 0.5em;
margin-bottom: 1em;
}
#lefthalfcol {
float: left;
margin-left: 0em;
width: 49%;
}
#lefthalfcol h4, #lefthalfcol h3 , #righthalfcol h4, #righthalfcol h3 {
margin: 0em;
}
#lefthalfcol dl {
margin-top: 0em;
}
#righthalfcol {
margin-left: 50%;
width: 49%;
}
#righthalfcol dl {
margin-right: 0.2em;
}
#footer {
clear: both;
width: 100%;
padding-top: 3px;
bottom: 0;
text-align: center;
margin: 0px;
}
#fineprint {
margin-top: 0.2em;
padding-top: 3px;
text-align: center;
font-size: 0.85em;
}
#outer>#inner { border-bottom: 1px solid #BFC3DC; }
.bordertop { border-top: 1px solid #BFC3DC; }
dl.gloss dt {
font-weight: bold;
}
#footer ul {
display: inline;
list-style-type: none;
}
#footer ul li {
display: inline;
}
#footer ul li a, table.y2k td {
white-space: nowrap;
}
#footer p {
margin: 0px;
}
#main {
background: #bbddff;
padding: 1em 0; /* have some padding to get rid of collapsed margins */
}
/* classes for cards */
.cardleft {
margin: 0 0 1em;
float: left;
width: 49%;
}
.cardright {
margin-left: 50%
/*margin: 0 1% 2em 50%; */
}
.card {
clear: left;
margin: 0 0 1em;
}
.cardleft h2, .cardright h2, .card h2 {
font-size: 120%;
background: #000000;
color: #FFD400;
display: inline;
padding: 0.2em 0.4em;
margin: 0 10px;
font-family: Arial, Helvetica, sans-serif;
letter-spacing: 0.2em;
}
.cardleft dl dd, .cardright dl dd , .card dl dd {
padding-bottom: 0.5em;
}
.cardleft div, .cardright div, .card div {
border: 2px solid #000000;
background: #FFFFFF;
padding: 0.5em;
margin: 2px 10px;
/* the next two lines xpand the div to heigth of left inner div */
overflow: auto;
}
div.lefthalf {
float: left;
width: 49%;
border: 0;
margin: 0;
padding: 0;
}
div.righthalf {
border: 0;
margin: 0;
padding: 0;
}
/* classes and div names for package pages */
#pdesc, #pdeps, #pdownload, #pmoreinfo {
margin-left: 1em;
margin-right: 1em;
}
#pdesc p {
text-align: justify;
}
.pdescshort {
text-align: left;
font-size: large;
font-weight: bold;
}
#pdeps table tr td {
font-size: 0.9em;
}
#pdeps ul {
list-style-type: none;
padding-left: 2em;
}
#pdeps li {
text-indent: -2em;
}
#pdeps ul.uldep, #pdeps ul.uladep {
list-style-type: disc;
list-style-image: url(http://packages.debian.org/Pics/dep.gif);
}
#pdeps ul.ulrec, #pdeps ul.ulidep {
list-style-type: disc;
list-style-image: url(http://packages.debian.org/Pics/rec.gif);
}
#pdeps ul.ulsug {
list-style-type: disc;
list-style-image: url(http://packages.debian.org/Pics/sug.gif);
}
#pdeps ul.uldep li, #pdeps ul.ulrec li, #pdeps ul.ulsug li, #pdeps ul.uladep li, #pdeps ul.ulidep li {
padding-left: 2em;
}
#pdeps dl {
margin: 0;
}
#pdownload p, #pdownload form, #pdownload submit {
display: inline;
}
#pdownload td {
font-size: 0.85em;
text-align: center;
}
#pmoreinfo p {
font-size: 0.85em;
}
/* colors for packages, warnings and news in ports */
.pred, .warning, dt.new, .no {
color: red; /* FF0000 */
}
.psmallcenter, .psmalltrademark {
clear: both;
font-size: 0.85em;
text-align: center;
}
.psmalltrademark {
color: green;
}
#pdownload table, table.ridgetable, table.reltable {
border-width: 4px;
border-color: gray;
margin: 0 1em 1em 1em;
border-style: ridge;
border-collapse: collapse;
}
table.vote {
margin: 0 auto;
border-width: 3px;
border-color: gray;
border-style: ridge;
border-collapse: collapse;
}
#pdownload th, #pdownload td, table.ridgetable th, table.ridgetable td,
table.reltable td, table.reltable th {
border: 2px gray;
border-style: ridge;
padding: 0.1em;
}
table.reltable th {
background-color: #44CCCC;
}
table.vote th {
border: 1px solid gray;
background-color: #DDDDDD;
}
table.vote td {
border: 1px solid gray;
padding: 4px;
}
table.reltable tr.odd {
background-color: #FFFFFF;
}
table.reltable tr.even {
background-color: #DDDDDD;
}
table.stattrans {
margin: 0 auto;
width: 95%;
border: 1px solid black;
background-color: #cdc9c9;
}
table.stattrans th {
text-align: center;
padding: 2px;
}
table.stattrans td {
text-align: right;
padding: 2px;
}
table.stattrans tbody th {
text-align: left;
font-weight: normal;
}
table.volatile {
border-collapse: collapse;
}
.volatile th, .volatile td {
text-align: left;
border: 1px solid black;
padding: 0.2em;
}
.volatile thead {
background-color: silver;
color: #000000;
}
table.volatile tr.country {
color: #ffffff;
background-color: #df0451;
}
/* partners */
.partnertype {
background-color: #DD0000;
padding: 0.2em 0 0.2em 1em;
color: #FFFFFF;
}
div.partnerlogo {
display: table-cell;
vertical-align: middle;
text-align: center;
width: 30%;
}
div.partnerdesc {
display: table-cell;
font-size: 85%;
}
div.cdflash {
background-color: #E09E86;
width: 80%;
margin: auto;
text-align: center;
}
.cdrsync {
color: #6B1300;
}
/* debian installer */
.dierror {
background-color: #FF6060;
}
.dibad {
background-color: #F7FF60;
}
.digood {
background-color: #7AFF71;
}
/* useful classes */
th.eventheader {
background-color: #BBDDFF;
}
.center {
text-align: center;
}
.right {
text-align: right;
}
ul.circlelist {
list-style-type: circle;
}
.centerdiv table {
margin-left: auto;
margin-right: auto;
}
ul.discless {
list-style-type: none;
}
.top, img.ico {
vertical-align: top;
}
img.ico {
float: left;
margin: 0 0.2em 0 0;
}
img.rightico {
float: right;
vertical-align: top;
margin: 0 0 0 0.2em;
}
img.cve {
vertical-align: -25px;
}
.y2kok, .yes {
color: #00BB00;
}
.y2kok2 {
color: #00BBBB;
}
.bluehead {
color: #0000FF !important;
}
span.halfsize {
font-size: 80%;
}
span.ddpbooktitle, span.merchtitle {
font-size: larger;
}
a:link { color: #0000FF; }
a:visited { color: #800080; }
a:hover { color: #F000FF; }
a:active { color: #FF0000; }
.navpara a, col.y2k {
white-space: nowrap;
/* this is to keep from breaking at whitespace in anchors */
}
.underline { text-decoration: underline; }
.clr { clear:both; }
/*.content{padding:5px;} */ /*padding for content */
/* #header .content{padding-bottom:0;} */ /*padding bottom 0 to remove space in IE5 Mac*/
/* for l10n-arabic */
.bidi {
direction: rtl;
text-align: right;
}
#leftcol, #navbar, #navbar a {
-moz-border-radius: 15px;
/* this goes to the end as the css validator does not like it
will be replaced by border-radius with css3 */
}
/* /CD/vendors/ */
table.vendors {
width: 100%;
border-collapse: collapse;
border: 1px solid #AAAAAA;
}
table.vendors th {
background: #BBDDFF;
font-size: 0.9em;
font-family: Arial, Helvetica, sans-serif;
color: #3e4955;
padding: 0.2em;
border: 1px solid #AAAAAA;
border-bottom: none;
text-align: left;
}
table.vendors tr.b td {
background-color: #EEEEEE;
}
table.vendors td {
padding: 0.2em;
vertical-align: top;
}

Binary file not shown.

After

Width:  |  Height:  |  Size: 3.8 KiB

File diff suppressed because it is too large Load diff

Binary file not shown.

After

Width:  |  Height:  |  Size: 759 B

View file

@ -0,0 +1,3 @@
User-agent: *
Disallow: /security/
Disallow:

View file

@ -0,0 +1,40 @@
This is the version of CryptoNAS for Debian Live!
Read http://devel.cryptobox.org/wiki/DebianLiveBuild before
you do anything else.
It is recommended that you run "./rm-tmps.sh" after making configuration
changes using an editor but before starting a new build.
For the convenience of other developers, the debian-patched
live-helper scripts being used are located in
the "tools" folder. The version of live-helper distributed
with Ubuntu "Gutsy Gibbon" does NOT work for CryptoNAS.
You may want to add the following line to apt-cacher's source list
(for example, /etc/apt/sources.list) and run "aptitude update":
deb http://systemausfall.org/toolforge/debian unstable main
config/chroot_local-includes/usr/lib/cryptobox-cd/etc.d/modules and
config/chroot_local-includes/usr/lib/cryptobox-cd/etc.d/network/interfaces
will now be used at boot time if they exist. The developer can specify
alternative files using the $CNAS_KMODULES and $CNAS_INTERFACES
variables.
Source Code Info
----------------
The $LH_SOURCE feature of "live-helper" is not currently working with
CryptoNAS. Instead, for source code, do:
"svn checkout https://svn.systemausfall.org/svn/cryptobox"
The other source code used for CryptoNAS Live is located in the "Etch"
Debian release. A list of mirror sites (created using
"wget --no-host-directories --cut-dirs=1 --convert-links --page-requisites
http://www.debian.org/mirror/list") is included in the
CryptoNAS subversion repository in the "deb-live/Debian-Mirrors" folder.
A current list of mirrors is also located at
"http://www.debian.org/mirror/list".

View file

@ -0,0 +1,153 @@
# config/binary - options for live-helper(7), binary stage
# $LH_BINARY_FILESYSTEM: set image filesystem
# (Default: fat16)
LH_BINARY_FILESYSTEM="fat16"
# $LH_BINARY_IMAGES: set image type
# (Default: usb-hdd)
# Set to "iso" for CD-ROM builds or "usb-hdd" for other block devices
LH_BINARY_IMAGES="usb-hdd"
# $LH_BINARY_INDICES: set apt/aptitude generic indices
# (Default: enabled)
LH_BINARY_INDICES="disabled"
# $LH_BOOTAPPEND_LIVE: set boot parameters
# (Default: empty)
LH_BOOTAPPEND_LIVE="autologin=false"
# $LH_BOOTAPPEND_INSTALL: set boot parameters
# (Default: empty)
LH_BOOTAPPEND_INSTALL="-- ${LH_BOOTAPPEND_LIVE}"
# $LH_BOOTLOADER: set bootloader
# (Default: grub)
LH_BOOTLOADER="syslinux"
# $LH_CHECKSUMS: set checksums
# (Default: enabled)
LH_CHECKSUMS="enabled"
# ${LH_CHROOT_BUILD: control if we build binary images chrooted
# (Default: enabled)
# DO NEVER, *NEVER*, *N*E*V*E*R* SET THIS OPTION to disabled.
LH_CHROOT_BUILD="enabled"
# $LH_DEBIAN_INSTALLER: set debian-installer
# (Default: disabled)
LH_DEBIAN_INSTALLER="disabled"
# $LH_DEBIAN_INSTALLER_DAILY: set daily images
# (Default: disabled)
LH_DEBIAN_INSTALLER_DAILY="disabled"
# $LH_ENCRYPTION: set encrytion
# (Default: disabled)
LH_ENCRYPTION="disabled"
# $LH_GRUB_SPLASH: set custom grub splash
# (Default: empty)
LH_GRUB_SPLASH=""
# $LH_HOSTNAME: set hostname
# (Default: cryptonas)
LH_HOSTNAME="cryptonas"
# $LH_ISO_APPLICATION: set iso author
# (Default: Debian Live)
LH_ISO_APPLICATION="Debian Live"
# $LH_ISO_PREPARER: set iso preparer
# (Default: live-helper 1.0~a46; http://packages.qa.debian.org/live-helper)
LH_ISO_PREPARER="live-helper 1.0~a46; http://packages.qa.debian.org/live-helper"
# $LH_ISO_PUBLISHER: set iso publisher
# (Default: Debian Live project; http://debian-live.alioth.debian.org/; debian-live-devel@lists.alioth.debian.org)
LH_ISO_PUBLISHER="Debian Live project; http://debian-live.alioth.debian.org/; debian-live-devel@lists.alioth.debian.org"
# $LH_ISO_VOLUME: set iso volume (max 32 chars)
# (Default: Debian Live $(date +%Y%m%d-%H:%M))
LH_ISO_VOLUME="Debian Live $(date +%Y%m%d-%H:%M)"
# $LH_JFFS2_ERASEBLOCK: set jffs2 eraseblock size
# (Default: unset)
LH_JFFS2_ERASEBLOCK=""
# $LH_MEMTEST: set memtest
# (Default: memtest86+)
LH_MEMTEST="memtest86+"
# $LH_NET_ROOT_FILESYSTEM: set netboot filesystem
# (Default: nfs)
LH_NET_ROOT_FILESYSTEM="nfs"
# $LH_NET_ROOT_MOUNTOPTIONS: set nfsopts
# (Default: empty)
LH_NET_ROOT_MOUNTOPTIONS=""
# $LH_NET_ROOT_PATH: set netboot server directory
# (Default: /srv/debian-live)
LH_NET_ROOT_PATH="/srv/debian-live"
# $LH_NET_ROOT_SERVER: set netboot server address
# (Default: 192.168.1.1)
LH_NET_ROOT_SERVER="192.168.1.1"
# $LH_NET_COW_FILESYSTEM: set net client cow filesystem
# (Default: nfs)
LH_NET_COW_FILESYSTEM="nfs"
# $LH_NET_COW_MOUNTOPTIONS: set cow mount options
# (Default: empty)
LH_NET_COW_MOUNTOPTIONS=""
# $LH_NET_COW_PATH: set cow directory
# (Default: )
LH_NET_COW_PATH=""
# $LH_NET_COW_SERVER: set cow server
# (Default: )
LH_NET_COW_SERVER=""
# $LH_NET_TARBALL: set net tarball
# (Default: gzip)
LH_NET_TARBALL="gzip"
# $LH_SYSLINUX_SPLASH: set custom syslinux splash
# (Default: empty)
LH_SYSLINUX_SPLASH=""
# $LH_SYSLINUX_TIMEOUT: set custom syslinux timeout in seconds
# (Default: 0)
# "0" apparently means "wait forever"
LH_SYSLINUX_TIMEOUT="10"
# $LH_SYSLINUX_CFG: set custom syslinux configuration file
# (Default: empty)
LH_SYSLINUX_CFG=""
# $LH_SYSLINUX_MENU: set syslinux menu
# (Default: disabled)
LH_SYSLINUX_MENU="disabled"
# $LH_SYSLINUX_MENU_LIVE_ENTRY: set text to be used on the menu for live entries
# (Default: Start Debian Live)
LH_SYSLINUX_MENU_LIVE_ENTRY="Start Debian Live"
# $LH_SYSLINUX_MENU_LIVE_FAILSAFE_ENTRY: set text to be used on the menu for live entries (failsafe ones)
# (Default: )
LH_SYSLINUX_MENU_LIVE_FAILSAFE_ENTRY=""
# $LH_SYSLINUX_MENU_MEMTEST_ENTRY: set text to be used on the menu for memtest entry
# (Default: Memory test)
LH_SYSLINUX_MENU_MEMTEST_ENTRY="Memory test"
# $LH_USERNAME: set username
# (Default: user)
LH_USERNAME="user"
#Load CryptoNAS and user-customized settings
. config/cnas-active-settings

Binary file not shown.

View file

@ -0,0 +1,60 @@
# config/bootstrap - options for live-helper(7), bootstrap stage
# $LH_ARCHITECTURE: select chroot architecture
# (Default: autodetected)
# Note: Debian Live is also designed to work on AMD64 and PowerPC
LH_ARCHITECTURE="i386"
# $LH_BOOTSTRAP_CONFIG: set distribution config directory
# (Default: empty)
LH_BOOTSTRAP_CONFIG=""
# $LH_BOOTSTRAP_INCLUDE: include packages on base
# (Default: empty)
LH_BOOTSTRAP_INCLUDE=""
# $LH_BOOTSTRAP_EXCLUDE: exclude packages on base
# (Default: empty)
LH_BOOTSTRAP_EXCLUDE=""
# $LH_BOOTSTRAP_FLAVOUR: select flavour to use
# (Default: standard)
# FIXME: Set to "minimal" for CryptoNAS releases
LH_BOOTSTRAP_FLAVOUR="standard"
# $LH_BOOTSTRAP_KEYRING: set distribution keyring
# (Default: empty)
LH_BOOTSTRAP_KEYRING=""
# $LH_DISTRIBUTION: select distribution to use
# (Default: lenny)
LH_DISTRIBUTION="etch"
# $LH_MIRROR_BOOTSTRAP: set mirror to bootstrap from
# (Default: http://ftp.us.debian.org/debian/)
LH_MIRROR_BOOTSTRAP="http://ftp.us.debian.org/debian/"
# $LH_MIRROR_CHROOT: set mirror to fetch packages from
# (Default: http://ftp.us.debian.org/debian/)
LH_MIRROR_CHROOT=$LH_MIRROR_BOOTSTRAP
# $LH_MIRROR_CHROOT_SECURITY: set security mirror to fetch packages from
# (Default: http://security.debian.org/)
LH_MIRROR_CHROOT_SECURITY="http://security.debian.org/"
# $LH_MIRROR_BINARY: set mirror which ends up in the image
# (Default: http://ftp.us.debian.org/debian/)
LH_MIRROR_BINARY="http://ftp.us.debian.org/debian/"
# $LH_MIRROR_BINARY_SECURITY: set security mirror which ends up in the image
# (Default: http://security.debian.org/)
LH_MIRROR_BINARY_SECURITY="http://security.debian.org/"
# $LH_SECTIONS: select section(s) to use
# (Default: main)
LH_SECTIONS="main"
#Load CryptoNAS and user-customized settings
. config/cnas-active-settings

View file

@ -0,0 +1,68 @@
# config/chroot - options for live-helper(7), chroot stage
# $LH_CHROOT_FILESYSTEM: set chroot filesystem
# (Default: squashfs)
LH_CHROOT_FILESYSTEM="squashfs"
# $LH_UNION_FILESYSTEM: set union filesystem
# (Default: aufs)
# Default aufs not available in Etch
LH_UNION_FILESYSTEM="unionfs"
# $LH_EXPOSED_ROOT: expose root as read only
# (Default: disabled)
LH_EXPOSED_ROOT="disabled"
# $LH_HOOKS: set hook commands
# (Default: empty)
LH_HOOKS=""
# $LH_INTERACTIVE: set interactive build
# (Default: disabled)
LH_INTERACTIVE="disabled"
# $LH_KEYRING_PACKAGES: set keyring packages
# (Default: empty)
LH_KEYRING_PACKAGES=""
# $LH_LANGUAGE: set language to use
# (Default: empty)
LH_LANGUAGE="en"
# $LH_LINUX_FLAVOURS: set kernel flavour to use
# (Default: autodetected)
#LH_LINUX_FLAVOURS="486 686"
# $LH_LINUX_PACKAGES: set kernel packages to use
# (Default: autodetected)
LH_LINUX_PACKAGES="linux-image-2.6 ${LH_UNION_FILESYSTEM}-modules-2.6 squashfs-modules-2.6"
#LH_LINUX_PACKAGES=""
# $LH_PACKAGES: set packages to install
# (Default: empty)
LH_PACKAGES=""
# $LH_PACKAGES_LISTS: set package list to install
# (Default: standard)
LH_PACKAGES_LISTS="standard"
# $LH_TASKS: set tasks to install
# (Default: empty)
LH_TASKS=""
# $LH_SECURITY: enable security updates
# (Default: enabled)
LH_SECURITY="enabled"
# $LH_SYMLINKS: enable symlink convertion
# (Default: disabled)
LH_SYMLINKS="disabled"
# $LH_SYSVINIT: enable sysvinit
# (Default: disabled)
LH_SYSVINIT="disabled"
#Load CryptoNAS and user-customized settings
. config/cnas-active-settings

View file

@ -0,0 +1,25 @@
#!/bin/sh
#
# License: This script is distributed under the terms of version 2
# of the GNU GPL. See the LICENSE file included with the package.
#
# $Id: $
#
# this script is part of the build process of CryptoNAS
#
# 2008-11-27 James Crofts backported workaround from CherryPy src repository.
# See http://www.cherrypy.org/ticket/686 and
# http://devel.cryptobox.org/ticket/216.
#
## Stop the build process if any of the following steps fail
set -e
##Hack to prevent intermittent cherrypy crashes at startup
DIFF="/usr/share/cryptonas-live/_cpwsgiserver.py.diff"
##These two files are identical before the patch and must be identical
##afterward as well:
patch /var/lib/python-support/python2.4/cherrypy/_cpwsgiserver.py < ${DIFF}
patch /usr/share/python-support/python-cherrypy/cherrypy/_cpwsgiserver.py < ${DIFF}
##Remove the now-obsolete "compiled" Python file.
rm -f /var/lib/python-support/python2.4/cherrypy/_cpwsgiserver.pyc

View file

@ -0,0 +1,217 @@
#!/bin/sh
#
# Copyright (c) 02005 sense.lab <senselab@systemausfall.org>
#
# License: This script is distributed under the terms of version 2
# of the GNU GPL. See the LICENSE file included with the package.
#
# $Id$
#
# this script is part of the building process of the cryptobox
# the "normal" action is necessary for every cryptobox (development & release)
# the "secure" action is mandatory for every release CD
#
# 2008-06-21 Adapted by James Crofts for use with "live-helper"
#
set -eu
#this script runs in chroot, so RUNTIMEDIR is the null string
RUNTIMEDIR=""
TUNDEV=$RUNTIMEDIR/dev/net/tun
REMOVE_PACKAGES="strace
nvi nano vim vim-common vim-tiny
unzip zip locate
ssh elinks curl netkit-inetd telnet
exim4-daemon-light exim4-config exim4-base
ppp pppconfig pppoe pppoeconf
subversion w3m wget lynx less screen
info man-db manpages
openssh-server openssh-client"
# Removing these packages would be better for security, but
# breaks the build:
#aptitude tasksel wget iptables
#TODO: evaluate whether to remove other packages under Debian Live
# remove rc symlinks for these services
SERVICES_OFF="ssh setserial nviboot mountnfs ntpdate"
#We run in a chroot environment, so source files accordingly.
. /usr/share/cryptonas-live/etc-scoreboard
function configure_normal()
# the usual stuff - not optimized for security
{
##### cryptobox settings ######
# start during bootup
sed -i 's/^NO_START=.*$/NO_START=0/' /etc/default/cryptobox-server
# listen to port 80 by default
sed -i 's/^PORT=.*$/PORT=80/' /etc/default/cryptobox-server
# use a separate configuration partition
sed -i 's/^UseConfigPartition.*$/UseConfigPartition = 1/' /etc/cryptobox-server/cryptobox.conf
# all plugins are enabled (especially: "encrypted_webinterface")
sed -i 's#^DisabledPlugins.*$#DisabledPlugins = #' /etc/cryptobox-server/cryptobox.conf
# change the selection of devices, that can be used as the crypto harddisk
sed -i 's#^AllowedDevices.*$#AllowedDevices = /dev/#' /etc/cryptobox-server/cryptobox.conf
############ samba ############
# enable samba startup (disabled before via cbox-build.sh)
echo 'RUN_MODE="daemons"' >/etc/default/samba
# install the samba hook script
cp /usr/share/doc/cryptobox-server/event-scripts/samba /etc/cryptobox-server/events.d/samba
chmod +x /etc/cryptobox-server/events.d/samba
############ dir perms ########
# For security reasons, many CryptoNAS scripts will refuse
# to run if their parent directories have unsafe permissions.
# The files in config/chroot_local-includes are, by default,
# owned by the user who did the SVN checkout. Therefore
# reset the important directories there to being owned by root.
# Debian Policy specifies that local users and package-created
# users have different uid ranges, so the set of files with
# unrecognized uid's should be the same as the set of files added
# by "config/chroot_local-includes/".
# Note that we are doing this at build time, not run time!
# Only fix files that are neither setuid nor setgid:
find / -xdev -nouser ! -perm -4000 ! -perm -2000 -execdir chown root:root '{}' \+
############ webdav ############
#TODO: FIXME: configure port; add webdav link in web frontend
#this mkdir may be redundant with the DAV event script (TODO)
mkdir -p /var/cache/cryptobox-server/settings/misc/apache2_dav.conf.d
sed -i 's/^NO_START=.*$/NO_START=0/' /etc/default/apache2
cp /usr/share/doc/cryptobox-server/event-scripts/apache2_dav /etc/cryptobox-server/events.d/apache2_dav
chmod +x /etc/cryptobox-server/events.d/apache2_dav
# CryptoNAS's apache2_dav.conf should already be in /etc/apache2/conf.d
# in SVN.
#Tell apache2 NOT to listen on non-DAV ports
echo "#Leave 80 and 443 open for CryptoNAS's use" > /etc/apache2/ports.conf
echo "Listen 8080" >> /etc/apache2/ports.conf
########### boot up ###########
# turn off creation of "/etc/nologin" (read-only fs)
sed -i '/^DELAYLOGIN=/s/^DELAYLOGIN=.*$/DELAYLOGIN=no/' /etc/default/rcS
# turn off modifying /etc/motd (read-only fs)
sed -i '/^EDITMOTD=/s/^EDITMOTD=.*$/EDITMOTD=no/' /etc/default/rcS
######### shutdown #########
# Remove the prompt to eject CD
rm -f /etc/rc0.d/*casper
rm -f /etc/rc6.d/*casper
######### devices ##########
# create tun device for running under qemu
if [ ! -e "$TUNDEV" ]
then mkdir -p `dirname "$TUNDEV"`
mknod "$TUNDEV" c 10 200
fi
########## sshd ############
if [ -e "/etc/ssh" ]; then
# allow empty passwords for ssh
# the daemon is NOT started automatically, so you have to start it
# manually in case of need - as the root pw is empty and passwd is ro, you
# have to allow empty passwords for this rare case
sed -i 's/^PermitEmptyPass.*$/PermitEmptyPasswords yes/' /etc/ssh/sshd_config
# turn off PAM for ssh, as it prevents the use of empty passwords (stange behaviour)
sed -i 's/^UsePAM.*$/UsePAM no/' /etc/ssh/sshd_config
# allow input of password
sed -i 's/^PasswordAuthentication.*$/PasswordAuthentication yes/' /etc/ssh/sshd_config
fi
# remove symlinks for unwanted services
for a in $SERVICES_OFF; do
# echo "Turning off service $a ..."
find /etc/rc?.d/ -type l -name "[SK][0-9][0-9]$a" | while read b
do rm "$b"
done
done
return 0
}
function configure_secure()
# remove everything that could weaken security
# configure_normal should be called too!
{
# disable keyboard login
sed -i '/getty/d' /etc/inittab
# remove unnecessary packages
dpkg --force-all -P $REMOVE_PACKAGES 2>&1 | grep -v "which isn't installed." || true
# maybe an authorized_keys file was created - but it is not dangerous,
# as the openssh package was removed anyway
[ -d /root/.ssh ] && rm -rf /root/.ssh
# disable root account
passwd -l root
############## clean up ################
# remove deb-files, that were left by dfsbuild
# remove packages and package lists
# remove locale files
# remove doc files
# remove man pages
# some vim files stay behind?
# Need to keep these files for live-helper to complete successfully
# rm -rf /var/cache/apt /var/lib/apt /var/cache/debconf /opt/packages
rm -rf /var/cache/bootstrap /var/cache/locate
rm -rf /usr/share/man /usr/share/vim /var/cache/man
# remove docs except for the cryptobox's
ls /usr/share/doc | while read dname
do test "$dname" == "cryptobox-server" || rm -rf "/usr/share/doc/$dname"
done
# remove all locale files and symlinks except for the cryptobox's
(find /usr/share/locale -type f; find /usr/share/locale -type l) | grep -v "cryptobox-server" | while read fname
do rm "$fname"
done
# remove all empty locale directories
find /usr/share/locale -type d | while read dname
do test -d "$dname" && rmdir --ignore-fail-on-non-empty --parents "$dname"
done
# change some dir permissions
chmod 770 /var/cache/cryptobox-server/settings/
# remove developer-specific script(s)
rm -f /usr/share/cryptonas-live/devel-features.sh
rm -f /etc/init.d/*devel-features
rm -f /etc/rcS.d/*devel-features
rm -f /etc/rc3.d/*devel-features
return 0
}
################ main ####################
# Allow this script to be run either manually by the
# developer using live-helper's "interactive chroot"
# mode or automatically by "lh_build".
ACTION="$CNAS_HARDNESS"
[ $# -gt 0 ] && ACTION=$1
case "$ACTION" in
normal|devel)
configure_normal
;;
secure|hard)
configure_normal
configure_secure
;;
* )
echo "`basename $0`:warning: CryptoNAS security level\
not specified; defaulting to \"secure\""
configure_normal
configure_secure
;;
esac
#FIXME: Not ideal to unconditionally return "SUCCESS"
exit 0

View file

@ -0,0 +1,79 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>CryptoBox</title>
<meta content="text/html; charset=iso-8859-1" http-equiv="Content-Type" />
<meta content="" name="keywords" />
<meta name="description" content="a secure fileserver, live-CD, web front-end" />
<link rel="stylesheet" type="text/css" href="main.css" />
</head>
<body>
<div class="container">
<div id="header"><!-- just the logo --></div>
<div class="navbar">
<p>
<a href="index.html">Home</a> |
<a href="news.html">News</a> |
<a href="downlo0.html">Download</a> |
<a href="support.html">Support</a> |
<a href="develo0.html">Development</a>
</p>
</div>
<!-- content starts here -->
<div class="centercontent">
<div><h1 id="UserDocumentation">User Documentation</h1>
<p>
The following pages are describing the basic usage of the CryptoBox live-CD.
</p>
<p>
The online version of this manual is a wiki, which means you can help improving the pages. If you have a question regarding the documentation, please post it on the bottom of the relevant page. The developers will answer your questions and update the manual as fast as possible.
</p>
<h2 id="Documentationforxreleases">Documentation for 0.3.x releases</h2>
<ol><li><a href="doc_0.0.html">CryptoBoxUserGettingStarted</a> -- first steps to get the Cryptobox up and running
</li><li><a href="doc_0.1.html">CryptoBoxUserDailyUse</a> -- how to access your encrypted data
</li></ol>
<p>
At the moment there is no automatic way of using an encrypted disk of the 0.2 series in a !Cryptobox running the 0.3 series. That's because we did a major redesign of the CryptoBox functionality within the last year. We're sorry for the unconveniance!
</p>
<h2 id="FrequentlyAskedQuestions">Frequently Asked Questions</h2>
<ul><li><a href="faq.html">FAQ</a>
</li></ul></div>
</div>
</div>
<!-- content ends here -->
<div id="footer">
<p>-- a <a href="http://senselab.org">Sense.Lab</a> project -- <a href="http://senselab.org/component/option,com_dfcontact/Itemid,29/">Impressum</a> --</p>
</div>
</div>
<!-- /Creative Commons License -->
<!--
<rdf:RDF xmlns="http://web.resource.org/cc/"
xmlns:dc="http://purl.org/dc/elements/1.1/"
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#">
<Work rdf:about="">
<dc:type rdf:resource="http://purl.org/dc/dcmitype/Text" />
<license rdf:resource="http://creativecommons.org/licenses/by-sa/2.5/de/" />
</Work>
<License rdf:about="http://creativecommons.org/licenses/by-sa/2.5/de/">
<permits rdf:resource="http://web.resource.org/cc/Reproduction" />
<permits rdf:resource="http://web.resource.org/cc/Distribution" />
<requires rdf:resource="http://web.resource.org/cc/Notice" />
<requires rdf:resource="http://web.resource.org/cc/Attribution" />
<permits rdf:resource="http://web.resource.org/cc/DerivativeWorks" />
<requires rdf:resource="http://web.resource.org/cc/ShareAlike" />
</License>
</rdf:RDF>
-->
</body>
</html>

Binary file not shown.

After

Width:  |  Height:  |  Size: 84 KiB

View file

@ -0,0 +1,93 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>CryptoBox</title>
<meta content="text/html; charset=iso-8859-1" http-equiv="Content-Type" />
<meta content="" name="keywords" />
<meta name="description" content="a secure fileserver, live-CD, web front-end" />
<link rel="stylesheet" type="text/css" href="main.css" />
</head>
<body>
<div class="container">
<div id="header"><!-- just the logo --></div>
<div class="navbar">
<p>
<a href="index.html">Home</a> |
<a href="news.html">News</a> |
<a href="downlo0.html">Download</a> |
<a href="support.html">Support</a> |
<a href="develo0.html">Development</a>
</p>
</div>
<!-- content starts here -->
<div class="centercontent">
<h2>What does the CryptoBox do?</h2>
<p>Usually all your files like phone numbers, love letters, bank
account data etc. are stored in plaintext on your computer's
harddisk.
All the data is accessible for everyone who has access to the harddisk.
This is very bad in case someone you don't trust gets your harddisk.
E.g. a thief that steals your notebook, or breaks into your house or company.
If the thief has your disk he/she can also read all the files that
where saved on it, no matter whether you have a login password or not -
the files are always stored in plaintext.
</p>
<p>The <b>CryptoBox</b> brings easy-to-use data encryption to your
computer. This works out of the box and does not need complicated
configuration steps.</p>
<p>Here comes a small usage example for the CryptoBox with an obsolete
PC as a fileserver:</p>
<p>Boot up the old PC with the CryptoBox live-CD.
Now you can access it with your browser via the network.
Then you partition and reformat the harddisk of the old
PC with encryption support. Therefore you provide a passphrase.
This is all done through the user friendly webinterface.
You can also plug in an external harddisk and use this to store
your encrypted data.
Afterwards you copy your sensitive data over the local
network to the CryptoBox.
It is stored on its harddisk in a secure way.
Nobody can access your data without the right passphrase.
</p>
</div>
<!-- content ends here -->
<div id="footer">
<p>-- a <a href="http://senselab.org">Sense.Lab</a> project -- <a href="http://senselab.org/component/option,com_dfcontact/Itemid,29/">Impressum</a> --</p>
</div>
</div>
<!-- /Creative Commons License -->
<!--
<rdf:RDF xmlns="http://web.resource.org/cc/"
xmlns:dc="http://purl.org/dc/elements/1.1/"
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#">
<Work rdf:about="">
<dc:type rdf:resource="http://purl.org/dc/dcmitype/Text" />
<license rdf:resource="http://creativecommons.org/licenses/by-sa/2.5/de/" />
</Work>
<License rdf:about="http://creativecommons.org/licenses/by-sa/2.5/de/">
<permits rdf:resource="http://web.resource.org/cc/Reproduction" />
<permits rdf:resource="http://web.resource.org/cc/Distribution" />
<requires rdf:resource="http://web.resource.org/cc/Notice" />
<requires rdf:resource="http://web.resource.org/cc/Attribution" />
<permits rdf:resource="http://web.resource.org/cc/DerivativeWorks" />
<requires rdf:resource="http://web.resource.org/cc/ShareAlike" />
</License>
</rdf:RDF>
-->
</body>
</html>

View file

@ -0,0 +1,135 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>CryptoBox</title>
<meta content="text/html; charset=iso-8859-1" http-equiv="Content-Type" />
<meta content="" name="keywords" />
<meta name="description" content="a secure fileserver, live-CD, web front-end" />
<link rel="stylesheet" type="text/css" href="main.css" />
</head>
<body>
<div class="container">
<div id="header"><!-- just the logo --></div>
<div class="navbar">
<p>
<a href="index.html">Home</a> |
<a href="news.html">News</a> |
<a href="downlo0.html">Download</a> |
<a href="support.html">Support</a> |
<a href="develo0.html">Development</a>
</p>
</div>
<!-- content starts here -->
<div class="left">
<div class="leftcontent">
<h2>You are server admin?</h2>
<p>Take a look at the <a
href="http://devel.cryptobox.org/file/trunk/README">README
file</a>. There you find more detailed information about the
installation and configuration of the CryptoBox-Server
package.</p>
</div>
</div>
<div class="content">
<h2>Requirements for the CryptoBox live-CD</h2>
<p>The <i>CryptoBox live-CD</i> runs on any x86 compatible PC with:</p>
<ul>
<li>CPU: min. 200MHz</li>
<li>RAM: 64 MB</li>
<li>CD-ROM drive</li>
<li>a network connection</li>
<li>a harddisk for your data</li>
</ul>
<p>The harddisk does not need to inside the of CryptoBox computer. You
can also use external devices like USB-drives.
All drives supported by the Linux kernel (2.6.20) can be used: IDE,
SCSI, USB, FireWire, SATA, RAID, ...</p>
<p>Because of the high number of different supported storage media
we call an encrypted disk a <i>volume</i>.
This includes (e.g.): USB-sticks, firewire-disks, flash-drives, digital cameras,
MP3-player, MMC/SD-cards.</p>
</div>
<div class="content">
<h2>Requirements of the CryptoBox-Server</h2>
<p>The <i>CryptoBox-Server</i> package can be installed on any system with at least:</p>
<ul>
<li>Linux kernel 2.6</li>
<li>cryptsetup with LUKS support</li>
<li>kernel support for the <i>crypt</i> target of the <i>device mapper</i></li>
<li>Python 2.4</li>
</ul>
<p>In general a server package should run on any Linux
distribution, but we only provide Debian packages. So you have to
install the necessary files on your own to the right places if
you are using a different linux distribution.</p>
</div>
<div class="content">
<h2>File access</h2>
<p>Once you openend an encrypted volume through the web frontend of
the <i>CryptoBox</i> you can access the volume's data within your local
network via:</p>
<ul>
<li>Samba shares (also known as: <i>windows network share</i>)</li>
<!-- <li>WebDAV (aka: <i>web folder</i>)</li>
<li>nfs (*nix file sharing)</li> -->
</ul>
<p>The <i>CryptoBox-Server</i> package will smoothly integrate into your existing
fileserver. It provides mount points which can be shared via your
favourite protocols (e.g.: WebDAV or NFS).</p>
</div>
<div class="content">
<h2>Encryption</h2>
<p>The encrypted disk partitions are <a href="http://luks.endorphin.org/">LUKS</a>
volumes. This makes it also possible to access your data directly with
every modern linux system or via <a href="http://freeotfe.org/">FreeOTFE</a>
(for Microsoft products).</p>
<p>You can select your favourite encryption algorithm from all
ciphers supported by the linux kernel. The default is
<i>aes-cbc-essiv:sha256</i> (AES in CBC mode with ESSIV based on
SHA256).</p>
</div>
<!-- content ends here -->
<div id="footer">
<p>-- a <a href="http://senselab.org">Sense.Lab</a> project -- <a href="http://senselab.org/component/option,com_dfcontact/Itemid,29/">Impressum</a> --</p>
</div>
</div>
<!-- /Creative Commons License -->
<!--
<rdf:RDF xmlns="http://web.resource.org/cc/"
xmlns:dc="http://purl.org/dc/elements/1.1/"
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#">
<Work rdf:about="">
<dc:type rdf:resource="http://purl.org/dc/dcmitype/Text" />
<license rdf:resource="http://creativecommons.org/licenses/by-sa/2.5/de/" />
</Work>
<License rdf:about="http://creativecommons.org/licenses/by-sa/2.5/de/">
<permits rdf:resource="http://web.resource.org/cc/Reproduction" />
<permits rdf:resource="http://web.resource.org/cc/Distribution" />
<requires rdf:resource="http://web.resource.org/cc/Notice" />
<requires rdf:resource="http://web.resource.org/cc/Attribution" />
<permits rdf:resource="http://web.resource.org/cc/DerivativeWorks" />
<requires rdf:resource="http://web.resource.org/cc/ShareAlike" />
</License>
</rdf:RDF>
-->
</body>
</html>

View file

@ -0,0 +1,173 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>CryptoBox</title>
<meta content="text/html; charset=iso-8859-1" http-equiv="Content-Type" />
<meta content="" name="keywords" />
<meta name="description" content="a secure fileserver, live-CD, web front-end" />
<link rel="stylesheet" type="text/css" href="main.css" />
</head>
<body>
<div class="container">
<div id="header"><!-- just the logo --></div>
<div class="navbar">
<p>
<a href="index.html">Home</a> |
<a href="news.html">News</a> |
<a href="downlo0.html">Download</a> |
<a href="support.html">Support</a> |
<a href="develo0.html">Development</a>
</p>
</div>
<!-- content starts here -->
<div class="centercontent">
<h2>Contribute</h2>
<p>You are not just a consumer. At least not in the Open Source world.</p>
<p>There are various ways to take part in improving the CryptoBox
for all of us ...</p>
</div>
<div class="left">
<div class="leftcontent">
<h2>Overview</h2>
<ul>
<li><a href="http://translate.cryptobox.org/projects/cryptobox/">Translation</a></li>
<li><a href="http://devel.cryptobox.org/newticket">Bug Reports</a></li>
<li><a href="Crypto0.html"">User Documentation</a></li>
<li><a href="http://devel.cryptobox.org/">Development corner</a></li>
<li><a href="https://systemausfall.org/mail-archive/?0">Mailing list archive</a>
<li><a href="http://devel.cryptobox.org/file/trunk/README">README</a></li>
</ul>
</div>
<div class="leftcontent">
<h2>Recent changes</h2>
<ul class="recent_changes">
<li><p class="date">Thu, 22 Feb 2007 12:10:04 GMT</p><a href="http://devel.cryptobox.org/changeset/858">Changeset [858] by lars</a><p>
added configobj to "acknowledgements" (they linked us, too)
</p></li>
<li><p class="date">Thu, 22 Feb 2007 10:57:16 GMT</p><a href="http://devel.cryptobox.org/changeset/857">Changeset [857] by pootle-translation</a><p>
Commit from Thorax Translation Center by user fabrizio. 24 of 24 messages translated (0 fuzzy).
</p></li>
<li><p class="date">Thu, 22 Feb 2007 10:54:29 GMT</p><a href="http://devel.cryptobox.org/changeset/856">Changeset [856] by pootle-translation</a><p>
Commit from Thorax Translation Center by user fabrizio. 2 of 2 messages translated (0 fuzzy).
</p></li>
<li><p class="date">Thu, 22 Feb 2007 05:30:56 GMT</p><a href="http://devel.cryptobox.org/ticket/45">Ticket #45 resolved: not clear if it works - but there is at least some documentation about how ...</a><p>
not clear if it works - but there is at least some documentation about how to find it manually (since [<a title="updated offline documentation ..." href="http://devel.cryptobox.org/changeset/855">855</a>])
</p></li>
<li><p class="date">Thu, 22 Feb 2007 05:16:45 GMT</p><a href="http://devel.cryptobox.org/changeset/855">Changeset [855] by lars</a><p>
updated offline documentation
moved offline documentation to a higher directory
updated autorun links
added mirror script to integrate offline documentation into the current website layout
</p></li></ul>
</div>
</div>
<div class="content">
<h2>Translation center</h2>
<p>We want <i>you</i> to translate the CryptoBox!</p>
<p>This way you can help others to access the CryptoBox in their native language.
The <a href="http://translate.cryptobox.org/projects/cryptobox/">translation center</a> serves
this purpose. Just register and use the webinterface for translations.
It features a nice, motivating progress bar.</p>
<p>For any questions send a mail to <a
href="mailt&#x006F;:info&#x0040;&#x0063;ryptobox.org">info&#x0040;&#x0063;ryptobox.org</a>.</p>
</div>
<div class="content">
<h2>Development</h2>
<p>If you are interested in what happens under the hood, visit the <a
href="http://devel.cryptobox.org">development corner</a>. You can also report
bugs there.</p>
<p>The <a href="http://devel.cryptobox.org/roadmap">roadmap</a> shows our goals
for the next release and the estimated release date.</p>
<p><a href="mailto:cryptobox-dev-subscribe@lists.systemausfall.org">Join
the development mailing list</a> or participate via <a
href="http://dir.gmane.org/gmane.comp.encryption.cryptobox.devel">gmane</a>.</p>
<p>You can also just browse the <a
href="https://systemausfall.org/mail-archive/?0">mailing list archive</a>.</p>
</div>
<div class="content">
<h2>Bleeding edge source code</h2>
<p>The current source code of the <i>CryptoBox-Server</i> package is always
available via our <a href="https://svn.systemausfall.org/svn/cryptobox/"
title="browse subversion repository">Subversion repository</a>.</p>
<p><a href="SvnNotes.html"">Read more ...</a></p>
</div>
<div class="content">
<h2>Thank you!</h2>
<p>The whole is nothing without its parts. We would like to thank
all the people for their help (in order of appearance). So, thank you!
:)</p>
<ul>
<li><a href="http://codecoop.org">codecoop.org</a> - webspace</li>
<li>Clavdia Horvat, Tadej Brce &amp; Dusan Rebolj - slovenian translation</li>
<li>Rike - french translation</li>
</ul>
</div>
<div class="content">
<h2>Acknowledgements</h2>
<p>The CryptoBox project heavily depends on the following Free Software
projects. Thanks for your hard work!</p>
<ul>
<li><a href="http://kernel.org">Linux kernel</a></li>
<li><a href="http://debian.org">Debian GNU/Linux</a></li>
<li><a href="http://python.org">Python</a></li>
<li><a href="http://cherrypy.org">CherryPy</a></li>
<li><a href="http://clearsilver.net">ClearSilver</a></li>
<li><a href="http://www.saout.de/misc/dm-crypt">DM-crypt</a></li>
<li><a href="http://luks.endorphin.org">CryptSetup LUKS</a></li>
<li><a href="http://www.voidspace.org.uk/python/configobj.html">ConfigObj</a></li>
<li>...</li>
</ul>
<p>This list is by far incomplete - so: thanks to everyone involved in
improving Free Software!</p>
</div>
</div>
<!-- content ends here -->
<div id="footer">
<p>-- a <a href="http://senselab.org">Sense.Lab</a> project -- <a href="http://senselab.org/component/option,com_dfcontact/Itemid,29/">Impressum</a> --</p>
</div>
</div>
<!-- /Creative Commons License -->
<!--
<rdf:RDF xmlns="http://web.resource.org/cc/"
xmlns:dc="http://purl.org/dc/elements/1.1/"
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#">
<Work rdf:about="">
<dc:type rdf:resource="http://purl.org/dc/dcmitype/Text" />
<license rdf:resource="http://creativecommons.org/licenses/by-sa/2.5/de/" />
</Work>
<License rdf:about="http://creativecommons.org/licenses/by-sa/2.5/de/">
<permits rdf:resource="http://web.resource.org/cc/Reproduction" />
<permits rdf:resource="http://web.resource.org/cc/Distribution" />
<requires rdf:resource="http://web.resource.org/cc/Notice" />
<requires rdf:resource="http://web.resource.org/cc/Attribution" />
<permits rdf:resource="http://web.resource.org/cc/DerivativeWorks" />
<requires rdf:resource="http://web.resource.org/cc/ShareAlike" />
</License>
</rdf:RDF>
-->
</body>
</html>

Binary file not shown.

After

Width:  |  Height:  |  Size: 19 KiB

View file

@ -0,0 +1,116 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>CryptoBox</title>
<meta content="text/html; charset=iso-8859-1" http-equiv="Content-Type" />
<meta content="" name="keywords" />
<meta name="description" content="a secure fileserver, live-CD, web front-end" />
<link rel="stylesheet" type="text/css" href="main.css" />
</head>
<body>
<div class="container">
<div id="header"><!-- just the logo --></div>
<div class="navbar">
<p>
<a href="index.html">Home</a> |
<a href="news.html">News</a> |
<a href="downlo0.html">Download</a> |
<a href="support.html">Support</a> |
<a href="develo0.html">Development</a>
</p>
</div>
<!-- content starts here -->
<div class="centercontent">
<div><h1 id="Gettingstarted">Getting started</h1>
<p>
Read the following and you'll be able to set up your own CryptoBox within half an hour.
</p>
<p>
It's pretty straight forward as we're always trying to make things as easy as possible for you.
</p>
<h2 id="StepbyStep">Step by Step</h2>
<ol><li>You need:
<ul><li>an old computer (remove the dust first)
</li><li>this PC needs a network card and a CD drive
</li><li>a medium to store your files on (e.g. a harddisk)
</li><li>we will call this PC from now on CryptoBox-PC
</li></ul></li><li>You don't need:
<ul><li>a monitor, keyboard and mouse (with one exception, see below).
</li><li>deeper knowledge of cryptography or server administration
</li></ul></li><li>Download the latest version of the CryptoBox live-CD from CodeCoop. It's an ~100MB iso-image.
<ul><li><a class="ext-link" title="http://codecoop.org/projects/cryptobox/" href="http://codecoop.org/projects/cryptobox/">http://codecoop.org/projects/cryptobox/</a>
</li></ul></li><li>Burn the iso-image onto a CD.
</li><li>Connect the CryptoBox-PC to your local area network.
</li><li>Configure the CryptoBox-PC, so that it can boot the live-CD. Therefore you may have to enter the BIOS and configure the CD-ROM as boot device.
</li><li>Put the burned CryptoBox live-CD into the CD drive and start the CryptoBox-PC.
</li><li>Now go to your current desktop computer which must be connected to the same network as the CryptoBox-PC is and point your browser to <i>http://192.168.0.23</i>.
</li></ol>
<p>
Now, if you see a website similar to the screenshots you're ready. :) Congratulations!
Otherwise check the last steps again and take a look in the <i>caveats</i> section below.
</p>
<p>
Follow this link for <a href="doc_0.1.html">further user documentation</a>. There you'll find a detailed desription, how to work with the CryptoBox.
</p>
<p>
Some sites of your brand new CryptoBox require an administrative password. The default is <i>admin</i> as username _and_ as password. For your own sake change this as soon as possible (under &#34;Preferences&#34; -&gt; &#34;Users&#34;).
</p>
<h2 id="Hints">Hints</h2>
<ul><li>The CryptoBox has an integrated help system. Enable it by clicking on the top-right help icon. It displays some useful tips. You can disable it again, as soon as you know how things work.
</li><li>The CryptoBox-PC should at least have a 200MHz CPU and 64MB RAM (rule of thumb: bought after 1997)
</li><li>Every modern PC system should work as a CryptoBox-PC. Try to get one with low energy consumption, there is not much CPU performance necessary.
</li><li>The data storage media can be an internal harddisk or any external drive.
</li><li>You can change external drives while the !CryptoBox-PC is running or even leave it running without a connected drive at all.
</li><li>The &#34;drive&#34; may also be a USB-stick, firewire-disk, flash-drive, MMC/SD-card, MP3-player or a digital camera.
</li><li>If you are going to buy a new harddisk and are using a very, very old PC as CryptoBox, please keep in mind that it probably cannot handle current disk sizes!
</li></ul><h2 id="Caveats">Caveats</h2>
<ul><li>Some old PCs are not able to boot from CD drives. In this case you cannot use it as CryptoBox.
</li><li>If you want to change the default boot device but don't know what a BIOS is, ask somebody for help! It doesn't hurt. ;)
</li><li>To configure the BIOS, you need a keyboard and a monitor. But this has to be done only once.
</li><li>Don't forget to connect your PC to your local area network! Also don't forget to connect your desktop computer to the same network, if it isn't yet.
</li><li>Make sure your desktop computer has a <i>192.168.0.x</i> IP address (at least for the first configuration). If this says nothing to you, again ask somebody for help!
</li><li>If you're unsure about the network, you can also try to connect the CryptoBox-PC and your desktop computer directly with a crossover network cable.
</li></ul><hr />
<p>
Move on to <a href="doc_0.1.html">further user documentation</a>.
</p>
<p>
Or go back to <a href="Crypto0.html">user documentation overview</a>.
</p>
</div>
<!-- content ends here -->
<div id="footer">
<p>-- a <a href="http://senselab.org">Sense.Lab</a> project -- <a href="http://senselab.org/component/option,com_dfcontact/Itemid,29/">Impressum</a> --</p>
</div>
</div>
<!-- /Creative Commons License -->
<!--
<rdf:RDF xmlns="http://web.resource.org/cc/"
xmlns:dc="http://purl.org/dc/elements/1.1/"
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#">
<Work rdf:about="">
<dc:type rdf:resource="http://purl.org/dc/dcmitype/Text" />
<license rdf:resource="http://creativecommons.org/licenses/by-sa/2.5/de/" />
</Work>
<License rdf:about="http://creativecommons.org/licenses/by-sa/2.5/de/">
<permits rdf:resource="http://web.resource.org/cc/Reproduction" />
<permits rdf:resource="http://web.resource.org/cc/Distribution" />
<requires rdf:resource="http://web.resource.org/cc/Notice" />
<requires rdf:resource="http://web.resource.org/cc/Attribution" />
<permits rdf:resource="http://web.resource.org/cc/DerivativeWorks" />
<requires rdf:resource="http://web.resource.org/cc/ShareAlike" />
</License>
</rdf:RDF>
-->
</body>
</html>

View file

@ -0,0 +1,204 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>CryptoBox</title>
<meta content="text/html; charset=iso-8859-1" http-equiv="Content-Type" />
<meta content="" name="keywords" />
<meta name="description" content="a secure fileserver, live-CD, web front-end" />
<link rel="stylesheet" type="text/css" href="main.css" />
</head>
<body>
<div class="container">
<div id="header"><!-- just the logo --></div>
<div class="navbar">
<p>
<a href="index.html">Home</a> |
<a href="news.html">News</a> |
<a href="downlo0.html">Download</a> |
<a href="support.html">Support</a> |
<a href="develo0.html">Development</a>
</p>
</div>
<!-- content starts here -->
<div class="centercontent">
<div><h1 id="HowtousetheCryptoBox">How to use the CryptoBox</h1>
<p>
<h4 id="TableofContents">Table of Contents</h4>
<ol>
<li><a href="doc_0.1.html#Basicsofthewebinterface">Basics of the web interface</a></li>
<ol><li><a href="doc_0.1.html#OnlineHelp">Online Help</a></li>
<li><a href="doc_0.1.html#Navigation">Navigation</a></li>
<li><a href="doc_0.1.html#Configuration">Configuration</a></li>
<li><a href="doc_0.1.html#Shutdown">Shutdown</a></li>
</ol>
<li><a href="doc_0.1.html#PreparingVolumes">Preparing Volumes</a></li>
<li><a href="doc_0.1.html#AccessingData">Accessing Data</a></li>
<li><a href="doc_0.1.html#UsingyourHarddiskswithoutreformatting">Using your Harddisks without reformatting</a></li>
</ol>
</p>
<hr />
<h2 id="Basicsofthewebinterface">Basics of the web interface</h2>
<p>
Here comes a detailed description of the web interface. We usually just call it <i>CryptoBox</i> as it is the part you'll have most contact with. It's basically the website you're browsing through after you typed <i>http://192.168.0.23</i> into your browser.
</p>
<h3 id="OnlineHelp">Online Help</h3>
<p>
The new (0.3) version of the CryptoBox is self explaining. Just follow the menu and click through the pages.
</p>
<p>
The integrated help system may support you while using the CryptoBox. It displays some useful tips (e.g. what a single form is for). Enable it by clicking on the top-right help icon. You can disable it again, as soon as you know how things work.
</p>
<ul><li>help system is disabled by default:
</li></ul><blockquote>
<p>
<img src="help_d0.jpg"format=raw" alt="website/screenshots/doc-0.3.x/help_d0.jpg" />
</p>
</blockquote>
<ul><li>looks like this, when enabled:
</li></ul><blockquote>
<p>
<img src="help_e0.jpg"format=raw" alt="website/screenshots/doc-0.3.x/help_e0.jpg" />
</p>
</blockquote>
<h3 id="Navigation">Navigation</h3>
<p>
The central place of the CryptoBox is the &#34;Disks&#34; section, where you manage all your encrypted and unencrypted volumes. Every single storage medium is called a <i>volume</i>.
</p>
<p>
You are able to use whole disks, partitions, usb-storage devices like (usb-sticks, flash-media etc.), firewire-storage devices, logical partitions and a lot more as a volume. There is a simple rule for the devices: everything that is supported by a recent Linux kernel, is also supported by the CryptoBox.
</p>
<ul><li>disk overview with one volume:
</li></ul><blockquote>
<p>
<img src="disks_0.jpg"format=raw" alt="website/screenshots/doc-0.3.x/disks_0.jpg" />
</p>
</blockquote>
<p>
Each disk-symbol is representing a volume with its name underlaying. Small icons on the disk-symbol give you some more information about the volume. A red cross means, that the volume currently is not activated. A lock symbolzises an encrypted partition. If the lock is closed the volume is not activated. If an encryted volume is activated there shows up an open lock and the CryptoBox Logo in the top-right corner opens itself, too.
</p>
<h3 id="Configuration">Configuration</h3>
<p>
In the &#34;Preferences&#34; section you can adapt the CryptoBox to your personal needs. You may set the date/time of the CryptoBox there, as well as its network address and so on. You also find the log messages there - this is very helpful in case something unexpected happened.
</p>
<ul><li>preferences overview:
</li></ul><blockquote>
<p>
<img src="prefer0.jpg"format=raw" alt="website/screenshots/doc-0.3.x/prefer0.jpg" />
</p>
</blockquote>
<h3 id="Shutdown">Shutdown</h3>
<p>
Follow the link to the &#34;Shutdown&#34; section and you can reboot the CryptoBox or just turn it off.
</p>
<hr />
<h2 id="PreparingVolumes">Preparing Volumes</h2>
<p>
Every drive you connect to the CryptoBox will be shown as one or more volumes. If the device was previously formatted with a rather exotic filesystem, then you may have to format it, before you can use it via the CryptoBox. BEWARE: all data of a volume will be deleted while formatting.
</p>
<p>
If you want to store encrypted data on a volume (you should, as this is the key feature of the CryptoBox :) ), you also have to format it initially, too.
</p>
<ul><li>initialization of a disk:
</li></ul><blockquote>
<p>
<img src="prepar0.jpg"format=raw" alt="website/screenshots/doc-0.3.x/prepar0.jpg" />
</p>
</blockquote>
<p>
If you format a volume with encryption support, you have to provide a good passphrase (requiered in the next step). This passphrase protects your files from curious or evil eyes.
</p>
<p>
It is good practice to give every volume a unique name (e.g.: &#34;photo collection&#34; or &#34;my important files&#34;), depending on what you're using it for. So you won't have trouble if you later connect more than one drive to the CryptoBox.
</p>
<p>
If you don't like the aotumatic formattign modus, you can divide one disk into more than one volume by partitioning it. Keep in mind that all existing data on a volume or disk will be deleted if you format or repartition it!
</p>
<hr />
<h2 id="AccessingData">Accessing Data</h2>
<p>
Now you know how to set up a CryptoBox and how to prepare volumes. So you finally can put some data on your configured volume. Click in the web frontend on &#34;Open this volume&#34; and give the correct passphrase.
</p>
<p>
If you want to open or save files on the volumes of the CryptoBox, you just use its available network shares: click on <i>network neighbourhood</i> (or similar - depending on your operating system) and choose the <i>cryptobox</i> computer. Only currently open volumes are visible there.
</p>
<p>
In case the <i>cryptobox</i> computer is not visible in your network overview, you may have to search for the hostname <i>cryptobox</i> or its configured IP address. Maybe it can also be necessary to reboot the CryptoBox after you changed its network settings.
</p>
<p>
The following screenshots may help you to find the <i>cryptobox</i> in your network on different desktop systems:
</p>
<ul><li>Gnome:
</li></ul><blockquote>
<p>
<img src="search0.png"format=raw" alt="website/screenshots/doc-0.3.x/search0.png" />
</p>
</blockquote>
<ul><li>KDE:
</li></ul><blockquote>
<p>
<img src="search1.png"format=raw" alt="website/screenshots/doc-0.3.x/search1.png" />
</p>
</blockquote>
<ul><li>Windows:
</li></ul><blockquote>
<p>
<img src="search2.png"format=raw" alt="website/screenshots/doc-0.3.x/search2.png" />
</p>
</blockquote>
<p>
Do not forget to close the volume again via the web frontend, as soon as you do not need the encrypted files any more.
</p>
<hr />
<h2 id="UsingyourHarddiskswithoutreformatting">Using your Harddisks without reformatting</h2>
<p>
In some cases, a disk can be used in the CryptoBox without reformatting it. This depends on the filesystem of your disk. If it is a plain (unencrypted) one and supported by the linux kernel you will not have any problems. Encrypted disks are supported only if they use a cryptsetup-luks format. Other types of disk encryption will not be accessible.
</p>
<p>
On the downside you won't be able to store your CryptoBox settings (e.g. volume name, network address) on this disk. Therefore you would need a small config partition, which is being created automatically when you partition a disk. A warning message appears if you are working without a writeable config partition.
</p>
<hr />
<p>
Go back to <a href="Crypto0.html">user documentation overview</a>.
</p>
</div>
</div>
</div>
<!-- content ends here -->
<div id="footer">
<p>-- a <a href="http://senselab.org">Sense.Lab</a> project -- <a href="http://senselab.org/component/option,com_dfcontact/Itemid,29/">Impressum</a> --</p>
</div>
</div>
<!-- /Creative Commons License -->
<!--
<rdf:RDF xmlns="http://web.resource.org/cc/"
xmlns:dc="http://purl.org/dc/elements/1.1/"
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#">
<Work rdf:about="">
<dc:type rdf:resource="http://purl.org/dc/dcmitype/Text" />
<license rdf:resource="http://creativecommons.org/licenses/by-sa/2.5/de/" />
</Work>
<License rdf:about="http://creativecommons.org/licenses/by-sa/2.5/de/">
<permits rdf:resource="http://web.resource.org/cc/Reproduction" />
<permits rdf:resource="http://web.resource.org/cc/Distribution" />
<requires rdf:resource="http://web.resource.org/cc/Notice" />
<requires rdf:resource="http://web.resource.org/cc/Attribution" />
<permits rdf:resource="http://web.resource.org/cc/DerivativeWorks" />
<requires rdf:resource="http://web.resource.org/cc/ShareAlike" />
</License>
</rdf:RDF>
-->
</body>
</html>

View file

@ -0,0 +1,119 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>CryptoBox</title>
<meta content="text/html; charset=iso-8859-1" http-equiv="Content-Type" />
<meta content="" name="keywords" />
<meta name="description" content="a secure fileserver, live-CD, web front-end" />
<link rel="stylesheet" type="text/css" href="main.css" />
</head>
<body>
<div class="container">
<div id="header"><!-- just the logo --></div>
<div class="navbar">
<p>
<a href="index.html">Home</a> |
<a href="news.html">News</a> |
<a href="downlo0.html">Download</a> |
<a href="support.html">Support</a> |
<a href="develo0.html">Development</a>
</p>
</div>
<!-- content starts here -->
<div class="left">
<div class="leftcontent">
<h2>Latest releases</h2>
<p>CryptoBox-CD: <a
href="http://codecoop.org/frs/?group_id=60&release_id=33">0.2.1</a></p>
<p>CryptoBox-Server: <a
href="http://codecoop.org/frs/?group_id=60&release_id=63">0.3.4</a></p>
</div>
<div class="leftcontent">
<h2>Planned major releases:</h2>
<p>CryptoBox-CD:</p>
<ul><li>v0.3.x <span class="date">02/15/02007</span></li></ul>
<p>CryptoBox-Server:</p>
<ul><li>v0.4 <span class="date">06/01/02007</span></li></ul>
<p>Read the <a href="http://devel.cryptobox.org/roadmap">development roadmap</a>
for more details.</p>
</div>
<div class="leftcontent">
<h2>License</h2>
<p>All code is licensed under the <a href="http://www.fsf.org/licensing/licenses/gpl.html">GPL</a>.</p>
<p>The documentation, the graphics and this website are licensed under a <a href="http://creativecommons.org/licenses/by-sa/2.5/">Creative Commons License</a>.</p>
</div>
</div>
<div class="content">
<h2>CryptoBox live-CD</h2>
<p>Get the latest <i>CryptoBox live-CD</i> image and burn it on CD.</p>
<p><a href="http://codecoop.org/frs/?group_id=60&release_id=33">CryptoBox live-CD download</a></p>
<p><br />We would like to thank <a href="http://codecoop.org">codecoop.org</a> for
providing the necessary bandwidth.</p>
<p>Alternatively you can buy a live-CD at <a href="http://www.opensoft.nl/cdshop/product_info.php/manufacturers_id/28/products_id/71">OpenSoft.nl</a>
for 5.95 european bugs. Note: this is an unpaid advertisement link.
So if you ask us kindly, we might send you a CD for a better price. ;)</p>
</div>
<div class="content">
<h2>CryptoBox-Server Debian package</h2>
<p>Use the <i>CryptoBox-Server</i> package in your Debian/Ubuntu Linux distribution.</p>
<p><a href="http://codecoop.org/frs/?group_id=60&release_id=63">CryptoBox-Server debian package
download</a><br /></p>
<p><br />Install it with: <tt>dpkg -i cryptobox-server.deb</tt></p>
<p>We strongly recommend to use the server package of our
(inofficial) debian package repository, which is easier to
maintain. How to do that ist written in the <a
href="faq.html#"HowdoIusetheserverpackagefromtheDebianrepository">FAQ</a>.</p>
</div>
<div class="content">
<h2>CryptoBox-Server source files</h2>
<p>Users of a non-debian-based Linux distributions are a bit
out of luck. You may try to install the source package, but you
have to adapt some paths manually.</p>
<p><a href="http://codecoop.org/frs/?group_id=60&release_id=63">cryptobox-server source
archive download</a></p>
</div>
<!-- content ends here -->
<div id="footer">
<p>-- a <a href="http://senselab.org">Sense.Lab</a> project -- <a href="http://senselab.org/component/option,com_dfcontact/Itemid,29/">Impressum</a> --</p>
</div>
</div>
<!-- /Creative Commons License -->
<!--
<rdf:RDF xmlns="http://web.resource.org/cc/"
xmlns:dc="http://purl.org/dc/elements/1.1/"
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#">
<Work rdf:about="">
<dc:type rdf:resource="http://purl.org/dc/dcmitype/Text" />
<license rdf:resource="http://creativecommons.org/licenses/by-sa/2.5/de/" />
</Work>
<License rdf:about="http://creativecommons.org/licenses/by-sa/2.5/de/">
<permits rdf:resource="http://web.resource.org/cc/Reproduction" />
<permits rdf:resource="http://web.resource.org/cc/Distribution" />
<requires rdf:resource="http://web.resource.org/cc/Notice" />
<requires rdf:resource="http://web.resource.org/cc/Attribution" />
<permits rdf:resource="http://web.resource.org/cc/DerivativeWorks" />
<requires rdf:resource="http://web.resource.org/cc/ShareAlike" />
</License>
</rdf:RDF>
-->
</body>
</html>

Binary file not shown.

After

Width:  |  Height:  |  Size: 83 KiB

Binary file not shown.

After

Width:  |  Height:  |  Size: 70 KiB

View file

@ -0,0 +1,114 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>CryptoBox</title>
<meta content="text/html; charset=iso-8859-1" http-equiv="Content-Type" />
<meta content="" name="keywords" />
<meta name="description" content="a secure fileserver, live-CD, web front-end" />
<link rel="stylesheet" type="text/css" href="main.css" />
</head>
<body>
<div class="container">
<div id="header"><!-- just the logo --></div>
<div class="navbar">
<p>
<a href="index.html">Home</a> |
<a href="news.html">News</a> |
<a href="downlo0.html">Download</a> |
<a href="support.html">Support</a> |
<a href="develo0.html">Development</a>
</p>
</div>
<!-- content starts here -->
<div class="centercontent">
<div><h1 id="FrequentlyAskedQuestions">Frequently Asked Questions</h1>
<p>
We answer some common questions her. Add a comment or mail us if you have questions, that might be interesting for others, too.
</p>
<p>
<ol>
<li><a href="faq.html#IsuccessfullyopenedavolumeHowcanIaccessthedatanow">I successfully opened a volume. How can I access the data now?</a></li>
<li><a href="faq.html#RecentlyIpartitionedmyharddiskNowIcanopenthevolumewithoutapasswordIsntitencryptedanymore">Recently I partitioned my harddisk. Now I can open the volume without a password. Isn't it encrypted any more?</a></li>
<li><a href="faq.html#HowcanIrestrictaccesstocertaindata">How can I restrict access to certain data?</a></li>
<li><a href="faq.html#ThereisausermanageravailableinthepreferencessectionWhatisitgoodfor">There is a user manager available in the preferences section. What is it good for?</a></li>
<li><a href="faq.html#HowdoIusetheserverpackagefromtheDebianrepository">How do I use the server package from the Debian repository?</a></li>
</ol>
</p>
<hr />
<h2 id="IsuccessfullyopenedavolumeHowcanIaccessthedatanow">I successfully opened a volume. How can I access the data now?</h2>
<ul><li>CryptoBox live-CD: browse the network neighborhood for the CryptoBox (in M$ Windows), scan the network (with KDE or Gnome). If you like terminals use <i>smbmount</i> or <i>mount -t smbfs</i> to access the network share.
</li></ul><ul><li>CryptoBox-Server: you should ask your administrator, which way is the best to access the mounted volume. In case you are the administrator, then you should take a look at the configuration file for the <i>!MountDir</i> setting. Publish this directory via your favourite fileserver (e.g. samba, webdav, nfs, ftp, ...) and tell your users how to reach it.
</li></ul><h2 id="RecentlyIpartitionedmyharddiskNowIcanopenthevolumewithoutapasswordIsntitencryptedanymore">Recently I partitioned my harddisk. Now I can open the volume without a password. Isn't it encrypted any more?</h2>
<p>
The partition manager creates non-encrypted volumes by default. If you want to enable encryption for a volume, then you have to format it. Be aware that this will erase all data of the volume.
</p>
<h2 id="HowcanIrestrictaccesstocertaindata">How can I restrict access to certain data?</h2>
<p>
The CryptoBox does not support user and access management for now. Everyone in your local network can access all open volumes for reading and writing. This behavior is based on the assumption, that there are no evil guys in your local network. Please take care for this!
</p>
<p>
For the next major release (v0.4) we plan to implement user and access management.
</p>
<h2 id="ThereisausermanageravailableinthepreferencessectionWhatisitgoodfor">There is a user manager available in the preferences section. What is it good for?</h2>
<p>
It's aimed for administrative tasks of the CryptoBox. Administrators can disable functions of the CryptoBox for other users (e.g. disabling the shutdown function). This way the webinterface can be customized to the needs of the users. The default admin password is <i>admin</i>, change that immediately!
</p>
<p>
Users who just want to open and close volumes do not need an administrative account.
</p>
<h2 id="HowdoIusetheserverpackagefromtheDebianrepository">How do I use the server package from the Debian repository?</h2>
<p>
The CryptoBox server package is not part of the official Debian repository (at least for now). But you can use our systemasufall.org repository for installation.
</p>
<ol><li>Add the following to your &#34;/etc/apt/sources.list&#34;:
<pre class="wiki">deb http://systemausfall.org/toolforge/debian unstable main
</pre></li><li>Run:
<pre class="wiki">apt-get update &amp;&amp; apt-get install cryptobox-server
</pre></li></ol>
<hr />
<p>
Go back to <a href="Crypto0.html">user documentation overview</a> or to the <a class="ext-link" title="http://cryptobox.org" href="http://cryptobox.org">CryptoBox Homepage</a>.
</p>
<hr />
</div>
</div>
</div>
<!-- content ends here -->
<div id="footer">
<p>-- a <a href="http://senselab.org">Sense.Lab</a> project -- <a href="http://senselab.org/component/option,com_dfcontact/Itemid,29/">Impressum</a> --</p>
</div>
</div>
<!-- /Creative Commons License -->
<!--
<rdf:RDF xmlns="http://web.resource.org/cc/"
xmlns:dc="http://purl.org/dc/elements/1.1/"
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#">
<Work rdf:about="">
<dc:type rdf:resource="http://purl.org/dc/dcmitype/Text" />
<license rdf:resource="http://creativecommons.org/licenses/by-sa/2.5/de/" />
</Work>
<License rdf:about="http://creativecommons.org/licenses/by-sa/2.5/de/">
<permits rdf:resource="http://web.resource.org/cc/Reproduction" />
<permits rdf:resource="http://web.resource.org/cc/Distribution" />
<requires rdf:resource="http://web.resource.org/cc/Notice" />
<requires rdf:resource="http://web.resource.org/cc/Attribution" />
<permits rdf:resource="http://web.resource.org/cc/DerivativeWorks" />
<requires rdf:resource="http://web.resource.org/cc/ShareAlike" />
</License>
</rdf:RDF>
-->
</body>
</html>

Binary file not shown.

After

Width:  |  Height:  |  Size: 16 KiB

Binary file not shown.

After

Width:  |  Height:  |  Size: 23 KiB

Binary file not shown.

After

Width:  |  Height:  |  Size: 29 KiB

View file

@ -0,0 +1,108 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>CryptoBox</title>
<meta content="text/html; charset=iso-8859-1" http-equiv="Content-Type" />
<meta content="" name="keywords" />
<meta name="description" content="a secure fileserver, live-CD, web front-end" />
<link rel="stylesheet" type="text/css" href="main.css" />
</head>
<body>
<div class="container">
<div id="header"><!-- just the logo --></div>
<div class="navbar">
<p>
<a href="index.html">Home</a> |
<a href="news.html">News</a> |
<a href="downlo0.html">Download</a> |
<a href="support.html">Support</a> |
<a href="develo0.html">Development</a>
</p>
</div>
<!-- content starts here -->
<div class="centercontent">
<h2>What is it about?</h2>
<p>The CryptoBox project aims to bring data encryption to the masses.</p>
<p>Therefore we develop two Free Software packages:</p>
<ul>
<li>The <b>CryptoBox live-CD</b> is targetted at users who want to set up an
encrypting fileserver without bothering about complicated
administration issues. A computer which runs the
CryptoBox-CD works as a network-attached storage (NAS),
with the ability to encrypt all stored data.</li><br />
<li>The <b>CryptoBox-Server package</b> adds a user friendly,
web-based frontend for harddisk encryption to a fileserver.</li>
</ul>
<p>Take a look at the <a href="cartoon.html">CryptoBox usage example</a>!<br />
It may give you a better understanding of what the CryptoBox does and how it
works. </p>
</div>
<div class="left">
<div class="leftcontent">
<h2>Demo</h2>
<p>See the CryptoBox <a href="http://demo.cryptobox.org">in action</a>.</p>
<ul>
<li>user: admin</li>
<li>password: admin</li>
</ul>
</div>
<div class="leftcontent">
<h2>Documentation</h2>
<p>Browse through the online <a
href="Crypto0.html"">user
documentation</a> site</a>.</p>
</div>
<div class="leftcontent">
<h2>Details</h2>
<p>Read what's <a href="details.html">under the hood</a>.</p>
</div>
</div>
<div class="content">
<h2>Screenshots</h2>
<p>Everybody wants some <a href="screen0.html">screenshots</a>.
Here we go:</p>
<p><a href="screen0.html"><img border="0" src="mini_s0.jpg"></a></p>
</div>
<!-- content ends here -->
<div id="footer">
<p>-- a <a href="http://senselab.org">Sense.Lab</a> project -- <a href="http://senselab.org/component/option,com_dfcontact/Itemid,29/">Impressum</a> --</p>
</div>
</div>
<!-- /Creative Commons License -->
<!--
<rdf:RDF xmlns="http://web.resource.org/cc/"
xmlns:dc="http://purl.org/dc/elements/1.1/"
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#">
<Work rdf:about="">
<dc:type rdf:resource="http://purl.org/dc/dcmitype/Text" />
<license rdf:resource="http://creativecommons.org/licenses/by-sa/2.5/de/" />
</Work>
<License rdf:about="http://creativecommons.org/licenses/by-sa/2.5/de/">
<permits rdf:resource="http://web.resource.org/cc/Reproduction" />
<permits rdf:resource="http://web.resource.org/cc/Distribution" />
<requires rdf:resource="http://web.resource.org/cc/Notice" />
<requires rdf:resource="http://web.resource.org/cc/Attribution" />
<permits rdf:resource="http://web.resource.org/cc/DerivativeWorks" />
<requires rdf:resource="http://web.resource.org/cc/ShareAlike" />
</License>
</rdf:RDF>
-->
</body>
</html>

View file

@ -0,0 +1,230 @@
body {
margin: 0;
padding: 0;
font-family: Verdana, Arial, sans-serif;
font-size: 80%;
color: #545454;
background-color: #fff;
}
p {
margin: 0.1em 0 0.1em 0;
}
h1 {
margin: 0;
padding: 0;
font-size: 200%;
font-weight: normal;
color: #4169E1;
}
h2 {
margin: 0 0 5px 0;
padding: 0;
background-color: #8bbf75;
color: White;
font-size: 100%;
font-weight: normal;
text-align: left;
/* RFC: there is a font-weight above - which is valid? */
font-weight: 800;
}
div {
margin: 0;
padding: 0;
display: block;
}
tt {
padding: 0.1em 0.6em 0.1em 0.6em;
font-size: 120%;
background: #fffad0;
}
b {
font-size: 95%;
}
div.container {
background-color: #FFF;
margin: 0 auto 0 auto;
padding: 0;
width: 740px;
}
div.container a:link, div.container a:visited {
color: #366b30;
}
div.navbar a {
text-decoration: none;
}
div.container a:hover, div.container a:active {
color: #ff8a00;
}
div#header {
padding: 2em;
margin: 0;
background-image: url(header.jpg);
background-repeat: no-repeat;
background-position: center;
height: 78px;
}
div.centercontent {
padding: 0.3em 1ex 0.3em 1ex;
margin: 5px 5px 9px 5px;
border: 1px solid #e0e0e0;
}
div.centercontent h2 {
padding: 0.1em 0 0.1em 0.5em;
}
div.centercontent p {
padding: 0.1em 1.8em 0.5em 0.8em;
}
div.centercontent ul {
padding: 0.1em 1.8em 0.1em 2.8em;
}
ul {
margin-top: 0;
margin-bottom: 5px;
margin-left: 0;
padding-left: 2em;
}
div.navbar {
display: block;
font-weight: bold;
margin: 5px 0 5px 0;
padding: 10px 0 10px 0;
border-top: 1px solid #C4C4C4;
border-bottom: 1px solid #C4C4C4;
text-align:center;
}
div.left {
float: left;
width: 30%;
margin: 0 0 0 5px;
padding: 0;
text-align: center;
}
div.left h2 {
text-align: left;
color: #366b30;
background-color: #eeeeec;
padding: 0 0 0 0.5em;
margin-bottom: 0.3em;
}
div.leftcontent {
margin: 0.2em 0.4em 0.5em 0;
padding: 0.3em;
text-align: left;
border: 1px solid #e0e0e0;
}
div.leftcontent p {
padding: 0.1em 0 0.5em 0.5em;
}
div.content {
margin: 5px 5px 15px 31.5%;
}
div.onecolumn {
margin: 5px 5px 9px 5px;
}
div.content, div.onecolumn {
padding: 0.3em 1ex 0.3em 1ex;
border: 1px solid #e0e0e0;
}
div.content h2, div.onecolumn h2 {
/* these are 2 pixels higher then those on the left side */
/* RFC: what does that mean? Do we want this difference or not? [l] */
padding: 0.1em 0 0.1em 0.5em;
margin: 0.1em 0 0.1em 0;
}
div.content p, div.onecolumn p {
padding: 0.1em 0.8em 0.5em 0.8em;
}
div.onecolumn p {
margin-top: 10px;
margin-bottom: 25px;
text-align: center;
}
.date {
text-align: right;
font-style: italic;
font-size: 0.8em;
}
div#footer {
margin: 20px 0 5px 0;
padding: 5px 0 5px 0;
border-top: 1px solid #C4C4C4;
border-bottom: 1px solid #C4C4C4;
font-size: 80%;
text-align: center;
clear: both;
}
/* FAQ headers */
div.faq h3 {
margin: 0.5em;
font-size: 0.9em;
color: #8bbf75;
}
/* table of content for FAQ */
ol.toc {
padding-left: 2em;
}
ol.toc li {
margin-top: 0.5em;
margin-bottom: 0.5em;
}
ol.toc a {
text-decoration: none;
}
/* recent changes (rss feed) */
ul.recent_changes {
padding-left: 0;
list-style-type: none;
}
ul.recent_changes li {
}
ul.recent_changes li h3 {
font-size: 0.9em;
margin: 2px;
text-decoration: none;
}
ul.recent_changes li h3 a {
text-decoration: none;
}
ul.recent_changes li p.date {
padding: 2px 2px 0 2px;
font-size: 0.8em;
}

Binary file not shown.

After

Width:  |  Height:  |  Size: 9.7 KiB

View file

@ -0,0 +1,150 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>CryptoBox</title>
<meta content="text/html; charset=iso-8859-1" http-equiv="Content-Type" />
<meta content="" name="keywords" />
<meta name="description" content="a secure fileserver, live-CD, web front-end" />
<link rel="stylesheet" type="text/css" href="main.css" />
</head>
<body>
<div class="container">
<div id="header"><!-- just the logo --></div>
<div class="navbar">
<p>
<a href="index.html">Home</a> |
<a href="news.html">News</a> |
<a href="downlo0.html">Download</a> |
<a href="support.html">Support</a> |
<a href="develo0.html">Development</a>
</p>
</div>
<!-- content starts here -->
<div class="centercontent">
<h2>NEWS: <a href="http://codecoop.org/frs/?group_id=60&amp;release_id=63">CryptoBox-Server v0.3.4 released</a></h2>
<p class="date">19/02/02007</p>
<p>This is a bugfix release</p>
<p>The following bug was fixed:</p>
<ul>
<li>incorrect uid handling during bootup (Closes: <a
href="http://devel.cryptobox.org/ticket/139">#139</a>)</li>
</ul>
</div>
<div class="centercontent">
<h2>NEWS: <a href="http://codecoop.org/frs/?group_id=60&amp;release_id=62">CryptoBox-Server v0.3.3 released</a></h2>
<p class="date">10/02/02007</p>
<p>This release fixes some small bugs:</p>
<ul>
<li>group membership of the webserver</li>
<li>disc usage statistics</li>
</ul>
<p>Additionally the following features were added:</p>
<ul>
<li>embedded help</li>
<li>improved network plugin</li>
<li>...</li>
</ul>
<p>The Slovenian and German translations are complete.</p>
<p>This release is planned to be the base for the next live-cd, which will be
published within the next week.</p>
</div>
<div class="centercontent">
<h2>NEWS: <a href="http://codecoop.org/frs/?group_id=60&amp;release_id=61">CryptoBox-Server v0.3.2 released</a></h2>
<p class="date">08/01/02007</p>
<p>This release contains some important bugfixes:</p>
<ul>
<li>fixed bug causing lack of permissions</li>
<li>fixed bug in Plugin manager (breaks interface)</li>
<li>fixed setting committing delay of Plugin manager</li>
</ul>
</div>
<div class="centercontent">
<h2>NEWS: <a href="http://codecoop.org/frs/?group_id=60&amp;release_id=60">CryptoBox-Server v0.3.1 released</a></h2>
<p class="date">20/12/02006</p>
<p>This release contains some usability fixes for users of the Internet Explorer,
as well as some additional translations and more convenient default settings.</p>
</div>
<div class="centercontent">
<h2>NEWS: <a href="http://codecoop.org/frs/?group_id=60&amp;release_id=59">CryptoBox-Server v0.3.0 released</a></h2>
<p class="date">15/12/02006</p>
<p>Here it comes - the earliest x-mas present 02006: the
CryptoBox-Server 0.3.0 package. It is not a live-cd, but a software package
that you can just install on your favourite linux system.</p>
<p> Take a look at the <a href="screen0.html">screenshots</a>.</p>
<p>It was a long ride and this is the first milestone we reached. Be prepared
fo another 1000 miles of code.</p>
<p>The live-CD based on this new version will be released in February 02007.</p>
</div>
<div class="centercontent">
<h2>NEWS: Python rewrite progress</h2>
<p class="date">19/08/02006</p>
<p>Finally the cryptobox-python-rewrite-process is in progress.
From now on you can follow discussions and participate at the
<a href="http://blog.gmane.org/gmane.comp.encryption.cryptobox.devel">development mailinglist via gmane</a>.</p>
</div>
<div class="centercontent">
<h2>NEWS: Download interception</h2>
<p class="date">14/04/02006</p>
<p>Sorry folks, <i>codecoop.org</i> is temporarily down.</p>
<p>UPDATE: It is up and running again. Fetch the latest version <a href="http://codecoop.org/frs/?group_id=60&amp;release_id=33">here</a>.</p>
</div>
<div class="centercontent">
<h2>NEWS: CryptoBox code splitting</h2>
<p class="date">07/03/02006</p>
<p>We are currently splitting the CryptoBox into the
CryptoBox-Server and the Cryptobox-CD. This will let you use
the CryptoBox-Server in your favourite Linux installation.</p>
<p>Stay tuned ...</p>
</div>
<div class="centercontent">
<h2>NEWS: CryptoBox-CD v0.2.1 released</h2>
<p class="date">30/10/02005</p>
<p>The latest CryptoBox version 0.2.1 is available at
<a href="http://codecoop.org/frs/?group_id=60&amp;release_id=33">codecoop.org</a>!</p>
</div>
<!-- content ends here -->
<div id="footer">
<p>-- a <a href="http://senselab.org">Sense.Lab</a> project -- <a href="http://senselab.org/component/option,com_dfcontact/Itemid,29/">Impressum</a> --</p>
</div>
</div>
<!-- /Creative Commons License -->
<!--
<rdf:RDF xmlns="http://web.resource.org/cc/"
xmlns:dc="http://purl.org/dc/elements/1.1/"
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#">
<Work rdf:about="">
<dc:type rdf:resource="http://purl.org/dc/dcmitype/Text" />
<license rdf:resource="http://creativecommons.org/licenses/by-sa/2.5/de/" />
</Work>
<License rdf:about="http://creativecommons.org/licenses/by-sa/2.5/de/">
<permits rdf:resource="http://web.resource.org/cc/Reproduction" />
<permits rdf:resource="http://web.resource.org/cc/Distribution" />
<requires rdf:resource="http://web.resource.org/cc/Notice" />
<requires rdf:resource="http://web.resource.org/cc/Attribution" />
<permits rdf:resource="http://web.resource.org/cc/DerivativeWorks" />
<requires rdf:resource="http://web.resource.org/cc/ShareAlike" />
</License>
</rdf:RDF>
-->
</body>
</html>

Binary file not shown.

After

Width:  |  Height:  |  Size: 22 KiB

Binary file not shown.

After

Width:  |  Height:  |  Size: 30 KiB

View file

@ -0,0 +1,87 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>CryptoBox</title>
<meta content="text/html; charset=iso-8859-1" http-equiv="Content-Type" />
<meta content="" name="keywords" />
<meta name="description" content="a secure fileserver, live-CD, web front-end" />
<link rel="stylesheet" type="text/css" href="main.css" />
</head>
<body>
<div class="container">
<div id="header"><!-- just the logo --></div>
<div class="navbar">
<p>
<a href="index.html">Home</a> |
<a href="news.html">News</a> |
<a href="downlo0.html">Download</a> |
<a href="support.html">Support</a> |
<a href="develo0.html">Development</a>
</p>
</div>
<!-- content starts here -->
<div class="onecolumn">
<h2>Versions 0.3.x</h2>
<p>
<img src="activa0.png"
alt="screenshot v0.3: activation of encrypted filesystem" /><br />
activation of encrypted filesystem<br />
</p>
<p>
<img src="system0.png"
alt="screenshot v0.3: configuration" /><br />
configuration<br />
</p>
</div>
<div class="onecolumn">
<h2>Versions 0.2.x</h2>
<p>
<img src="en_mount.png"
alt="screenshot v0.2: activation of encrypted file system" /><br />
activation of encrypted file system<br />
</p>
<p>
<img src="en_con0.png"
alt="screenshot v0.2: configuration" /><br />
configuration<br />
</p>
</div>
<!-- content ends here -->
<div id="footer">
<p>-- a <a href="http://senselab.org">Sense.Lab</a> project -- <a href="http://senselab.org/component/option,com_dfcontact/Itemid,29/">Impressum</a> --</p>
</div>
</div>
<!-- /Creative Commons License -->
<!--
<rdf:RDF xmlns="http://web.resource.org/cc/"
xmlns:dc="http://purl.org/dc/elements/1.1/"
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#">
<Work rdf:about="">
<dc:type rdf:resource="http://purl.org/dc/dcmitype/Text" />
<license rdf:resource="http://creativecommons.org/licenses/by-sa/2.5/de/" />
</Work>
<License rdf:about="http://creativecommons.org/licenses/by-sa/2.5/de/">
<permits rdf:resource="http://web.resource.org/cc/Reproduction" />
<permits rdf:resource="http://web.resource.org/cc/Distribution" />
<requires rdf:resource="http://web.resource.org/cc/Notice" />
<requires rdf:resource="http://web.resource.org/cc/Attribution" />
<permits rdf:resource="http://web.resource.org/cc/DerivativeWorks" />
<requires rdf:resource="http://web.resource.org/cc/ShareAlike" />
</License>
</rdf:RDF>
-->
</body>
</html>

Binary file not shown.

After

Width:  |  Height:  |  Size: 52 KiB

Binary file not shown.

After

Width:  |  Height:  |  Size: 42 KiB

Binary file not shown.

After

Width:  |  Height:  |  Size: 44 KiB

View file

@ -0,0 +1,91 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<title>CryptoBox</title>
<meta content="text/html; charset=iso-8859-1" http-equiv="Content-Type" />
<meta content="" name="keywords" />
<meta name="description" content="a secure fileserver, live-CD, web front-end" />
<link rel="stylesheet" type="text/css" href="main.css" />
</head>
<body>
<div class="container">
<div id="header"><!-- just the logo --></div>
<div class="navbar">
<p>
<a href="index.html">Home</a> |
<a href="news.html">News</a> |
<a href="downlo0.html">Download</a> |
<a href="support.html">Support</a> |
<a href="develo0.html">Development</a>
</p>
</div>
<!-- content starts here -->
<div class="centercontent">
<h2>Any problems?</h2>
<ol>
<li>Please read the <a href="Crypto0.html"">user
documentation</a>.</li>
<li>Check if the <a href="faq.html"">FAQ</a> helps you to solve your problem.</li>
<li>Check if it is a <a
href="http://devel.cryptobox.org/report/2">known
issue</a>. If so, provide some detailed information
there.</li>
<li>Submit a new <a href="http://devel.cryptobox.org/newticket">bug report</a>.</li>
</ol>
</div>
<div class="left">
<div class="leftcontent">
<h2>Missing your language?</h2>
<p>The CryptoBox is easily extensible via plugins. It also has
support for multiple languages. You can help us with some
<a href="http://translate.cryptobox.org/projects/cryptobox/">translations</a>.</p>
</div>
</div>
<div class="content">
<h2>Further questions</h2>
<p>If you have more questions or if you want better answers, just send a mail
to <a href="mailt&#x006F;:info&#x0040;&#x0063;ryptobox.org">info&#x0040;&#x0063;ryptobox.org</a>. Thanks!</p>
<p>And no, we don't sit on any irc channel. There's a life to live. :)</p>
</div>
<!-- content ends here -->
<div id="footer">
<p>-- a <a href="http://senselab.org">Sense.Lab</a> project -- <a href="http://senselab.org/component/option,com_dfcontact/Itemid,29/">Impressum</a> --</p>
</div>
</div>
<!-- /Creative Commons License -->
<!--
<rdf:RDF xmlns="http://web.resource.org/cc/"
xmlns:dc="http://purl.org/dc/elements/1.1/"
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#">
<Work rdf:about="">
<dc:type rdf:resource="http://purl.org/dc/dcmitype/Text" />
<license rdf:resource="http://creativecommons.org/licenses/by-sa/2.5/de/" />
</Work>
<License rdf:about="http://creativecommons.org/licenses/by-sa/2.5/de/">
<permits rdf:resource="http://web.resource.org/cc/Reproduction" />
<permits rdf:resource="http://web.resource.org/cc/Distribution" />
<requires rdf:resource="http://web.resource.org/cc/Notice" />
<requires rdf:resource="http://web.resource.org/cc/Attribution" />
<permits rdf:resource="http://web.resource.org/cc/DerivativeWorks" />
<requires rdf:resource="http://web.resource.org/cc/ShareAlike" />
</License>
</rdf:RDF>
-->
</body>
</html>

Binary file not shown.

After

Width:  |  Height:  |  Size: 87 KiB

Binary file not shown.

After

Width:  |  Height:  |  Size: 3.6 KiB

View file

@ -0,0 +1,159 @@
// Used for dynamically updating the height of a textarea
function resizeTextArea(id, rows) {
var textarea = document.getElementById(id);
if (!textarea || (typeof(textarea.rows) == "undefined")) return;
textarea.rows = rows;
}
// A better way than for example hardcoding foo.onload
function addEvent(element, type, func){
if (element.addEventListener) {
element.addEventListener(type, func, false);
return true;
} else if (element.attachEvent) {
return element.attachEvent("on" + type, func);
}
return false;
}
// Adapted from http://www.kryogenix.org/code/browser/searchhi/
function searchHighlight() {
if (!document.createElement) return;
var div = document.getElementById("searchable");
if (!div) return;
function getSearchWords(url) {
if (url.indexOf('?') == -1) return [];
var queryString = url.substr(url.indexOf('?') + 1);
var params = queryString.split('&');
for (var p in params) {
var param = params[p].split('=');
if (param.length < 2) continue;
if (param[0] == 'q' || param[0] == 'p') { // q= for Google, p= for Yahoo
return unescape(param[1].replace(/\+/g, ' ')).split(/\s+/);
}
}
return [];
}
function highlightWord(node, word, searchwordindex) {
// If this node is a text node and contains the search word, highlight it by
// surrounding it with a span element
if (node.nodeType == 3) { // Node.TEXT_NODE
var pos = node.nodeValue.toLowerCase().indexOf(word.toLowerCase());
if (pos >= 0 && !/^searchword\d$/.test(node.parentNode.className)) {
var span = document.createElement("span");
span.className = "searchword" + (searchwordindex % 5);
span.appendChild(document.createTextNode(
node.nodeValue.substr(pos, word.length)));
var newNode = node.splitText(pos);
newNode.nodeValue = newNode.nodeValue.substr(word.length);
node.parentNode.insertBefore(span, newNode);
return true;
}
} else if (!node.nodeName.match(/button|select|textarea/i)) {
// Recurse into child nodes
for (var i = 0; i < node.childNodes.length; i++) {
if (highlightWord(node.childNodes[i], word, searchwordindex)) i++;
}
}
return false;
}
var words = getSearchWords(document.URL);
if (!words.length) words = getSearchWords(document.referrer);
if (words.length) {
for (var w in words) {
if (words[w].length) highlightWord(div, words[w], w);
}
}
}
function enableControl(id, enabled) {
if (typeof(enabled) == "undefined") enabled = true;
var control = document.getElementById(id);
if (!control) return;
control.disabled = !enabled;
var labels = document.getElementsByTagName("label");
for (var i = 0; i < labels.length; i++) {
if (labels[i].htmlFor == id) {
labels[i].className = enabled ? "enabled" : "disabled";
}
}
}
function addWikiFormattingToolbar(textarea) {
if ((typeof(document["selection"]) == "undefined")
&& (typeof(textarea["setSelectionRange"]) == "undefined")) {
return;
}
var toolbar = document.createElement("div");
toolbar.className = "wikitoolbar";
function addButton(id, title, fn) {
var a = document.createElement("a");
a.href = "#";
a.id = id;
a.title = title;
a.onclick = function() { try { fn() } catch (e) { } return false };
a.tabIndex = 400;
toolbar.appendChild(a);
}
function encloseSelection(prefix, suffix) {
textarea.focus();
var start, end, sel, scrollPos, subst;
if (typeof(document["selection"]) != "undefined") {
sel = document.selection.createRange().text;
} else if (typeof(textarea["setSelectionRange"]) != "undefined") {
start = textarea.selectionStart;
end = textarea.selectionEnd;
scrollPos = textarea.scrollTop;
sel = textarea.value.substring(start, end);
}
if (sel.match(/ $/)) { // exclude ending space char, if any
sel = sel.substring(0, sel.length - 1);
suffix = suffix + " ";
}
subst = prefix + sel + suffix;
if (typeof(document["selection"]) != "undefined") {
var range = document.selection.createRange().text = subst;
textarea.caretPos -= suffix.length;
} else if (typeof(textarea["setSelectionRange"]) != "undefined") {
textarea.value = textarea.value.substring(0, start) + subst +
textarea.value.substring(end);
if (sel) {
textarea.setSelectionRange(start + subst.length, start + subst.length);
} else {
textarea.setSelectionRange(start + prefix.length, start + prefix.length);
}
textarea.scrollTop = scrollPos;
}
}
addButton("strong", "Bold text: '''Example'''", function() {
encloseSelection("'''", "'''");
});
addButton("em", "Italic text: ''Example''", function() {
encloseSelection("''", "''");
});
addButton("heading", "Heading: == Example ==", function() {
encloseSelection("\n== ", " ==\n", "Heading");
});
addButton("link", "Link: [http://www.example.com/ Example]", function() {
encloseSelection("[", "]");
});
addButton("code", "Code block: {{{ example }}}", function() {
encloseSelection("\n{{{\n", "\n}}}\n");
});
addButton("hr", "Horizontal rule: ----", function() {
encloseSelection("\n----\n", "");
});
textarea.parentNode.insertBefore(toolbar, textarea);
var br = document.createElement("br");
br.style.clear = "left";
textarea.parentNode.insertBefore(br, textarea);
}

Binary file not shown.

After

Width:  |  Height:  |  Size: 4.4 KiB

Binary file not shown.

After

Width:  |  Height:  |  Size: 689 B

View file

@ -0,0 +1,2 @@
[autorun]
open=_offline\shellopn.exe _offline\doc\index.html

View file

@ -0,0 +1,13 @@
# this file is part of the CryptoBox
# put it into /etc/apache2/conf.d/
# you MUST create the directory given below - otherwise apache will not like it :(
# do not forget to chown the directory to the cryptobox user
<IfModule mod_dav_fs.c>
# include the dynamically managed configuration directory - IT MUST EXIST
Include /var/cache/cryptobox-server/settings/misc/apache2_dav.conf.d/
# lock database - should be writeable for www-data
DavLockDB /tmp/dav_lock.db
# a longer value than the default (120) help for high-latency networks
DavMinTimeout 600
</IfModule>

View file

@ -0,0 +1,32 @@
#!/bin/sh
# /etc/init.d/cnas-groups
# Add user cryptobox (cryptonas) to required groups for Live CD
# $Id: $
# Copyright 2005--2008 sense.lab <senselab@systemausfall.org>
#
# This file is part of CryptoNAS.
#
# CryptoNAS is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 2 of the License, or
# (at your option) any later version.
#
# CryptoNAS is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with CryptoNAS. If not, see <http://www.gnu.org/licenses/>.
#
# 2008-06-21 James Crofts adapted existing CryptoNAS code
# for Debian Live
#
ADD_GROUPS="floppy cdrom tape video plugdev"
# add the cryptobox user to some more groups
echo "Adding CryptoNAS user to required groups..."
for new_group in $ADD_GROUPS
do adduser cryptobox "$new_group"
done

View file

@ -0,0 +1,55 @@
#!/bin/sh
#
# this is the qemu-ifup script that should be run at qemu's boot
#
# determine the interface to the outside
IF_WORLD=`/sbin/route -n | grep " UG " | sed "s/ */ /g" | cut -d " " -f 8 | head -1`
# nothing found? - sorry!
[ -z "$IF_WORLD" ] && IF_WORLD=eth0
if [ "$UID" -ne 0 ]
then sudo $0 $*
exit 0
fi
echo "Laufe als root ..."
IPT=/sbin/iptables
[ ! -x $IPT ] && IPT=/usr/sbin/iptables
IPT_RULES=" FORWARD -i tun0 -o $IF_WORLD -j ACCEPT
FORWARD -i $IF_WORLD -o tun0 -m state --state ESTABLISHED,RELATED -j ACCEPT
POSTROUTING -t nat -o $IF_WORLD -j MASQUERADE
INPUT -i tun0 -j ACCEPT
OUTPUT -o tun0 -j ACCEPT"
aktiviere_forward()
{
echo "$IPT_RULES" | while read a
do $IPT -A $a
done
echo 1 >/proc/sys/net/ipv4/ip_forward
}
deaktiviere_forward()
{
echo "$IPT_RULES" | while read a
do $IPT -D $a
done
echo 0 >/proc/sys/net/ipv4/ip_forward
}
case "$1" in
stop )
deaktiviere_forward
#/etc/init.d/dhcp stop
;;
* )
/sbin/ifconfig $1 192.168.0.1
#/etc/init.d/dhcp start
aktiviere_forward
;;
esac

View file

@ -0,0 +1,7 @@
#!/bin/sh
echo -e "\n+----------------------------------------------------------------+"
echo -e "\n The CryptoNAS has started."
echo -e "\n You can access it now via a web browser at: http://192.168.0.23"
echo -e "\n Or try: http://cryptonas.local"
echo -e "\n Visit cryptonas.org for help and more information."
echo -e "\n+----------------------------------------------------------------+\n"

View file

@ -0,0 +1 @@
../init.d/cnas-groups

View file

@ -0,0 +1,35 @@
[global]
workgroup = workgroup
server string = cryptobox
# 'security' is necessary - otherwise windows clients will ask for a login and fail
security = share
dns proxy = no
log file = /var/log/samba/log.smbd
max log size = 500
syslog only = yes
syslog = 0
panic action = /usr/share/samba/panic-action %d
encrypt passwords = true
passdb backend = tdbsam
obey pam restrictions = yes
invalid users = root
passwd program = /usr/bin/passwd %u
passwd chat = *Enter\snew\sUNIX\spassword:* %n\n *Retype\snew\sUNIX\spassword:* %n\n *password\supdated\ssuccessfully* .
socket options = TCP_NODELAY
guest ok = yes
# the following lines should help to be visible in the network
# os level - higher than non-PDC (primary domain controller) but lower than PDC
os level = 17
# announce ourselves to other networks
remote announce = 192.168.0.255 192.168.255.255 172.16.255.255 10.255.255.255
# don't act as a wins server, but use wins
# if yes, don't set "wins server"
wins support = yes
# we don't want to confuse existing servers
local master = no
domain master = no
preferred master = no
include = /var/cache/cryptobox-server/settings/misc/samba-include.conf

View file

@ -0,0 +1,3 @@
##This file is for any special udev rules required for the CryptoNAS
##Debian Live system.

View file

@ -0,0 +1,11 @@
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html lang="en">
<head>
<meta http-equiv="refresh" content="0; URL=_offline/doc/index.html">
<title>The CryptoBox</title>
</head>
<body>
Automatic redirect to <a href="_offline/doc/index.html" title="Documentation">Documentation</a> ...
</body>
</html>

View file

@ -0,0 +1,20 @@
--- chroot/usr/share/python-support/python-cherrypy/cherrypy/_cpwsgiserver.py 2006-04-24 18:37:45.000000000 -0700
+++ chroot/usr/share/cryptonas-live/_cpwsgiserver-copy.py 2008-11-27 22:53:49.000000000 -0700
@@ -200,10 +200,17 @@
response = request.wsgi_app(request.environ,
request.start_response)
for line in response:
request.write(line)
except socket.error, e:
+ msg = e.args[1]
+ if msg == "Bad file descriptor":
+ # Our socket was closed
+ return
+ if msg == "Resource temporarily unavailable":
+ # Just try again. See http://www.cherrypy.org/ticket/479.
+ return
errno = e.args[0]
if errno not in socket_errors_to_ignore:
traceback.print_exc()
except (KeyboardInterrupt, SystemExit), exc:
self.server.interrupt = exc

View file

@ -0,0 +1,4 @@
##Support VIA ACE Padlock hardware crypto acceleration
padlock
##Support AMD Geode AES-128 hardware crypto acceleration
geode-aes

View file

@ -0,0 +1,12 @@
#CryptoNAS Live default /etc/network/interfaces
#Set $CNAS_INTERFACES in config/cnas-custom-settings to override
auto lo eth0
iface lo inet loopback
#iface eth0 inet dhcp
iface eth0 inet static
address 192.168.0.23
netmask 255.255.255.0

View file

@ -0,0 +1,120 @@
#! /bin/sh
#$BUILD_DIR/config/chroot_local-includes/usr/share/
# initramfs-tools/scripts/casper-bottom/90cnas_setup_etc
#
# Fix files in /etc clobbered by casper at boot time
#
# $Id: $
# Copyright 2005--2008 sense.lab <senselab@systemausfall.org>
#
# This file is part of CryptoNAS.
#
# CryptoNAS is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 2 of the License, or
# (at your option) any later version.
#
# CryptoNAS is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with CryptoNAS. If not, see <http://www.gnu.org/licenses/>.
#
# 2008-06-21 Adapted from CryptoNAS (dfsbuild) by James Crofts for
# use with initramfs-tools
# Scripts hooked into initramfs or casper must NOT have odd
# characters in them due to the way they are parsed.
# This includes the hyphen '-'. They break the boot system!
#We don't actually depend on these
#"prerequisites", but if they exist (they do) we must
#run after them.
PREREQ="23networking 25configure_init"
DESCRIPTION="Preconfiguring CryptoNAS Live System..."
#Location of "real" root as seen from initramfs
_CNAS_ROOT_DIR="/root"
. /scripts/casper-functions
prereqs()
{
echo "$PREREQ"
}
case $1 in
# get pre-requisites
prereqs)
prereqs
exit 0
;;
esac
log_begin_msg "$DESCRIPTION"
. ${_CNAS_ROOT_DIR}/usr/share/cryptonas-live/etc-scoreboard
# "/" must be writeable only by root, or else some CryptoNAS
# scripts will refuse to run for security reasons.
chmod go-w ${_CNAS_ROOT_DIR}
sed -i 's/^id:.*$/id:3:initdefault:/' ${_CNAS_ROOT_DIR}/etc/inittab
# add tmpfs entry for mount parent
# remove old line, if fstab exists
test -e ${_CNAS_ROOT_DIR}/etc/fstab && sed -i '#/var/cache/cryptobox-server/mnt#d' ${_CNAS_ROOT_DIR}/etc/fstab
# add new line
echo "tmpfs /var/cache/cryptobox-server/mnt tmpfs defaults 0 0" >> ${_CNAS_ROOT_DIR}/etc/fstab
#Set up /etc/modules with user-provided contents ('K' stands for "kernel")
_CNAS_KMODULES="$CNAS_SCOREBOARD_DIR/etc.d/modules"
# if $CNAS_KMODULES is not null then use that file as /etc/modules
if [ -n "$CNAS_KMODULES" ]
then
_CNAS_KMODULES="${CNAS_KMODULES}"
fi
#Add root directory prefix
_CNAS_KMODULES="${_CNAS_ROOT_DIR}${_CNAS_KMODULES}"
if [ -f "$_CNAS_KMODULES" ]
then
cp ${_CNAS_KMODULES} ${_CNAS_ROOT_DIR}/etc/modules
fi
#Set up /etc/network/interfaces with user-provided contents
_CNAS_INTERFACES="$CNAS_SCOREBOARD_DIR/etc.d/network/interfaces"
# if $CNAS_INTERFACES is not null then use that file as /etc/network/interfaces
if [ -n "$CNAS_INTERFACES" ]
then
_CNAS_INTERFACES="${CNAS_INTERFACES}"
fi
#Add root directory prefix
_CNAS_INTERFACES="${_CNAS_ROOT_DIR}${_CNAS_INTERFACES}"
if [ -f "$_CNAS_INTERFACES" ]
then
cp ${_CNAS_INTERFACES} ${_CNAS_ROOT_DIR}/etc/network/interfaces
fi
#"hard" and "secure" are synonyms, so test for both of them
if [ ${CNAS_HARDNESS} = "hard" -o ${CNAS_HARDNESS} = "secure" ]
then
#FIXME: Since we're now doing this important step at runtime,
# it would be a good idea to call the initramfs-tools
# function "panic" if the substitution failed. How
# can we check whether it succeeded?
# Alternatively, a known-good inittab could be copied
# from /usr/lib/cryptobox-cd or someplace similar...
# disable keyboard login
sed -i '/getty/d' /etc/inittab
fi
log_end_msg

View file

@ -0,0 +1,60 @@
## LH: cryptonas
util-linux
grub
parted
dmsetup
perl
tar
bash
coreutils
module-init-tools
ifupdown
busybox
usbutils
pciutils
discover
hdparm
binutils
debconf
sysutils
stunnel4
samba
#Apache was breaking the build before work started on the Debian Live changeover. FIXME: re-integrate
#apache2
hashalot
python-clearsilver
python-cherrypy
python-configobj
python-central
super
dosfstools
cryptsetup
python-m2crypto
## support for file systems
e2tools
e2fsprogs
xfsprogs
hfsutils
jfsutils
avahi-autoipd
avahi-daemon
## required for fix to Defect #216 "Intermittent Python crashes at startup":
patch
## For better version management and development flexibility, "cryptobox-server" is
## sometimes installed as a local package from "config/chroot_local-packages".
cryptobox-server
## ntfs-3g is not in etch
## The following have been manually adapted from the
## live-helper "minimal" list. This is to work around an
## odd behavior which breaks the "secure" build on Etch
## (ie when $LH_PACKAGES_LISTS="minimal cryptonas")
## "minimal" includes eject file sudo vim-tiny,
## but we don't need all of those
sudo file

View file

@ -0,0 +1,15 @@
## LH: cryptonas-devel
#include <cryptonas>
subversion
strace
ssh
vim
nano
less
lynx
sysklogd
w3m
screen
elinks
gettext

View file

@ -0,0 +1,12 @@
#Although `live-helper' claims to be able to install packages
#located in `config/chroot_local-packages', this doesn't appear
#to be working yet. As a workaround, download the cryptobox-server
#package from a repository or `apt-cacher' installation:
#Use apt-cacher to reduce load on the server. Be sure to add:
#
# deb http://systemausfall.org/toolforge/debian unstable main
#
#to /etc/apt/sources.list on the computer used for your build.
#deb http://127.0.0.1:3142/apt-cacher/systemausfall.org/toolforge/debian unstable main

View file

@ -0,0 +1,92 @@
#!/bin/sh
#CryptoNAS Live include file
#$BUILD_DIR/config/cnas-active-settings
#This file includes the config files in the correct order.
#It can be included by scripts both in the bootstrap and
#chroot environments. Variable assignments in later
#includes override earlier ones.
#This file also contains a hack to write the scoreboard
#file.
# Variable and function names starting with underscore
# are NOT intended to be used for user customization of builds.
# In addition, the names of variables to be included in the
# scoreboard file must begin with "CNAS_".
#This file is included by:
# config/common
# config/bootstrap
# config/chroot
# config/binary
# config/source
CNAS_CONFIG_DIR="config"
. ${CNAS_CONFIG_DIR}/cnas-default-settings
#Include files in "cnas-custom-settings.d" directory
if [ -d ${CNAS_CONFIG_DIR}/cnas-custom-settings.d ]
then
for include_file in `find ${CNAS_CONFIG_DIR}/cnas-custom-settings.d -maxdepth 1 -type f -print`
do
. "$include_file"
done
fi
#Include "cnas-custom-settings" IFF this file exists. Variables here can
#override those in "cnas-custom-settings.d" directory.
[ -f ${CNAS_CONFIG_DIR}/cnas-custom-settings ] && . ${CNAS_CONFIG_DIR}/cnas-custom-settings
#The stage file tracks when the scoreboard update code
#needs to run. The path is relative to the build dir.
_CNAS_STAGE_DIR=".stage/"
_CNAS_STAGE=".stage/chroot_cnas-scoreboard"
#Search in the top level of config for settings files CryptoNAS
#depends on. If any of them changed more recently than
#the settings scoreboard file, update it.
_CNAS_FIND="find config -regextype posix-extended -maxdepth 1 -type f -newer ${_CNAS_STAGE} -true "
_CNAS_SCOREBOARD="config/chroot_local-includes/usr/share/cryptonas-live/etc-scoreboard"
#supporting unnecessary synonyms complicates change control
if [ "$CNAS_HARDNESS" == "hard" ] || [ "$CNAS_HARDNESS" == "normal" ]
then
echo "warning: \$CNAS_HARDNESS settings `hard' and `normal' deprecated; use `secure' or `devel' instead"
fi
#Only run the scoreboard hack if the ".stage" directory exists
if [ -d ${_CNAS_STAGE_DIR} ]
then
#If the scoreboard file needs updating, update it:
#If the stage file does not exist or the "find" found something
if [ ! -f "${_CNAS_STAGE}" ] || [ -n "`${_CNAS_FIND}`" ]
then
#Add explanatory banner to scoreboard file
cat > ${_CNAS_SCOREBOARD} <<EOF
#/usr/share/cryptonas-live/etc-scoreboard
# This file is used by the CryptoNAS Live system to pass
# configuration settings within the build system and to
# the Debian Live runtime. It should NOT be checked in to
# the CryptoNAS project's SVN repository.
EOF
#Update the scoreboard file from the current shell vars
echo "CryptoNAS: updating scoreboard file..."
set | grep -e "^CNAS_" >> ${_CNAS_SCOREBOARD}
#If we updated the scoreboard, touch the .stage/...
#file we use for time stamping.
touch "${_CNAS_STAGE}"
fi
fi # .stage directory exists
#Unconditionally return success
/bin/true

View file

@ -0,0 +1,213 @@
#!/bin/sh
#cnas-default-settings
# Default settings file for CryptoNAS Live
#
# This file is a shell script included by the live-helper
# scripts. Settings in "cnas-custom-settings" override
# those here if that file exists.
# Therefore, if you want to make local customizations to
# your build settings, you should do:
# "cp cnas-default-settings cnas-custom-settings"
# and make changes to "cnas-custom-settings".
#
# Values in config/bootstrap, config/chroot, config/binary,
# etc. will be used if they are not redefined by
# cnas-custom-settings or cnas-default-settings.
#
# I've tried to include in this file the settings that
# are most likely to be changed by a developer or custom
# builder. If an option isn't here, you should look in
# config/bootstrap, config/chroot, config/binary,
# config/source, or config/common.
# An "effective inclusion" diagram in Open Office format
# will eventually be included in the repository for
# documentation.
# -----common-----
# Internal stuff (FIXME)
# The `--force-yes' option should be removed once `apt' is made to
# recognize and use all the relevant GPG keys. `--yes' can stay.
APT_OPTIONS="--yes"
# $LH_ARCHITECTURE: select chroot architecture
# (Default: autodetected)
# Note: Debian Live is also designed to work on AMD64 and PowerPC
LH_ARCHITECTURE="i386"
# $LH_APT_SECURE: set apt/aptitude security
# (Default: enabled)
# Setting $LH_APT_SECURE to "disabled" breaks cdebootstrap
# in the "bootstrap" build stage under Etch.
LH_APT_SECURE="enabled"
#-----bootstrap-----
# $LH_MIRROR_BOOTSTRAP: set mirror to bootstrap from
#
# (1) apt-cacher (default)
LH_MIRROR_BOOTSTRAP="http://127.0.0.1:3142/apt-cacher/ftp.debian.org/debian/"
# (2) apt-proxy
#LH_MIRROR_BOOTSTRAP="http://127.0.0.1:9999/debian"
# (3) no caching proxy for apt
#LH_MIRROR_BOOTSTRAP="http://ftp.us.debian.org/debian/"
# $LH_MIRROR_CHROOT: set mirror to fetch packages from
# (Default: http://ftp.us.debian.org/debian/)
LH_MIRROR_CHROOT=$LH_MIRROR_BOOTSTRAP
# $LH_MIRROR_CHROOT_SECURITY: set security mirror to fetch packages from
# (Default: http://security.debian.org/)
LH_MIRROR_CHROOT_SECURITY="http://127.0.0.1:3142/apt-cacher/security.debian.org/"
#-----chroot-----
# $LH_HOOKS: set hook commands
# (Default: empty)
LH_HOOKS=""
# $LH_INTERACTIVE: set interactive build
# (Default: disabled)
LH_INTERACTIVE="disabled"
# $LH_KEYRING_PACKAGES: set keyring packages
# (Default: empty)
LH_KEYRING_PACKAGES=""
# $LH_LANGUAGE: set language to use
# (Default: empty)
LH_LANGUAGE="en"
# $LH_LINUX_FLAVOURS: set kernel flavour to use
# (Default: autodetected)
# CryptoNAS will be VERY slow on anything less than a Pentium,
# but you can add other flavors here if you want to. Note that
# the first flavor in the list will be the default.
#LH_LINUX_FLAVOURS="486 686"
LH_LINUX_FLAVOURS="686"
# $LH_LINUX_PACKAGES: set kernel packages to use
# (Default: autodetected)
LH_LINUX_PACKAGES="linux-image-2.6 ${LH_UNION_FILESYSTEM}-modules-2.6 squashfs-modules-2.6"
#LH_LINUX_PACKAGES=""
# $LH_PACKAGES: set packages to install
# (Default: empty)
LH_PACKAGES=""
# $LH_PACKAGES_LISTS: set package list to install
# (Default: standard)
# Use "cryptonas" (etch) or "minimal cryptonas" (lenny)
# for CryptoNAS releases
# Use "standard cryptonas-devel" for development
LH_PACKAGES_LISTS="standard cryptonas-devel"
#-----binary-----
# $LH_BINARY_IMAGES: set image type
# (Default: usb-hdd)
# Valid choices are:
# "iso" for CD-ROM builds
# "usb-hdd" for other block devices
# "net" for netboot
# "tar" for ???
LH_BINARY_IMAGES="usb-hdd"
# $LH_SYSLINUX_SPLASH: set custom splash screen
LH_SYSLINUX_SPLASH="config/binary_syslinux/splash.rle"
# $LH_ENCRYPTION: set encrytion
# (Default: disabled)
LH_ENCRYPTION="disabled"
# $LH_HOSTNAME: set hostname
# (Default: cryptonas)
LH_HOSTNAME="cryptonas"
# $LH_ISO_PREPARER: set iso preparer
# (Default: live-helper 1.0~a48; http://packages.qa.debian.org/live-helper)
LH_ISO_PREPARER="live-helper 1.0~a48; http://packages.qa.debian.org/live-helper"
# $LH_ISO_PUBLISHER: set iso publisher
# (Default: Debian Live project; http://debian-live.alioth.debian.org/; debian-live-devel@lists.alioth.debian.org)
LH_ISO_PUBLISHER="CryptoNAS project; http://cryptonas.org; cryptobox-dev@lists.systemausfall.org"
# $LH_ISO_VOLUME: set iso volume (max 32 chars)
# (Default: Debian Live $(date +%Y%m%d-%H:%M))
LH_ISO_VOLUME="CryptoNAS Live $(date +%Y%m%d-%H:%M)"
#-----source-----
# $LH_SOURCE: set source option
# This is the easiest way to comply with the GNU GPL if you're
# redistributing CryptoNAS on a CD-ROM.
# (Default: disabled)
LH_SOURCE="disabled"
# It is recommended that CryptoNAS-specific variable
# definitions follow the CNAS_FOO or _CNAS_FOO conventions to
# avoid polluting the shared live-helper namespace. Additionally,
# only variables starting with "CNAS_" will be available at
# runtime via the scoreboard file.
###############################################################
#deletefiles (at build time, from old dfsbuild config)="/etc/rcS.d/*discover \
#/etc/rcS.d/*lvm \
#/var/log/dpkg.log \
#/var/log/bootstrap.log"
#CNAS_MAKEDIRS=""
CNAS_ROOT_FS="/root"
CNAS_HARDNESS="devel"
CNAS_SCOREBOARD_DIR="/usr/share/cryptonas-live"
# remove rc symlinks for these services
CNAS_SERVICES_OFF="ssh setserial nviboot mountnfs ntpdate"
# This part only applies if CNAS_HARDNESS is set to "secure":
#CNAS_REMOVE_PACKAGES="strace \
# nvi nano vim vim-common vim-tiny \
# unzip zip aptitude tasksel locate \
# ssh elinks curl wget netkit-inetd telnet \
# exim4-daemon-light exim4-config exim4-base \
# ppp pppconfig pppoe pppoeconf iptables \
# subversion w3m wget lynx less screen \
# info iptables man-db manpages \
# openssh-server openssh-client"
#CNAS_REMOVE_PACKAGES="strace nvi nano vim vim-common vim-tiny unzip zip aptitude tasksel locate ssh elinks curl wget netkit-inetd telnet exim4-daemon-light exim4-config exim4-base ppp pppconfig pppoe pppoeconf iptables subversion w3m wget lynx less screen info iptables man-db manpages openssh-server openssh-client"
# config/chroot_local-includes/usr/lib/cryptobox-cd/etc.d/modules and
# config/chroot_local-includes/usr/lib/cryptobox-cd/etc.d/network/interfaces
# will now be used at boot time if they exist. The developer can specify
# alternative files using the $CNAS_KMODULES and $CNAS_INTERFACES
# variables.
CNAS_INTERFACES="$CNAS_SCOREBOARD_DIR/etc.d/network/interfaces"
CNAS_KMODULES="$CNAS_SCOREBOARD_DIR/etc.d/modules"
# $LH_ENCRYPTION: set encryption type/key size
# Encryption of the Debian Live media is broken under Etch. It may
# work under Lenny. In particular, the loop-aes runtime is broken
# in casper or initramfs-tools.
#LH_ENCRYPTION="aes256"
# More stuff from dfsbuild live-cd implementation to figure out:
#/etc/profile = export TERM=vt100
#
#/etc/syslog.conf = *.* /dev/tty8
# *.info /dev/tty7
#/etc/kernel-img.conf = do_initrd = Yes

View file

@ -0,0 +1,130 @@
# config/common - common options for live-helper(7)
# $LH_APT: set package manager
# (Default: apt)
LH_APT="apt"
# $LH_APT_FTP_PROXY: set apt/aptitude ftp proxy
# (Default: autodetected or empty)
LH_APT_FTP_PROXY=""
# $LH_APT_HTTP_PROXY: set apt/aptitude http proxy
# (Default: autodetected or empty)
LH_APT_HTTP_PROXY=""
# $LH_APT_PDIFFS: set apt/aptitude pdiff indices
# (Default: enabled)
LH_APT_PDIFFS="enabled"
# $LH_APT_PIPELINE: set apt/aptitude pipeline depth
# (Default: )
LH_APT_PIPELINE=""
# $LH_APT_RECOMMENDS: set apt/aptitude recommends
# (Default: enabled)
LH_APT_RECOMMENDS="disabled"
# $LH_APT_SECURE: set apt/aptitude security
# (Default: enabled)
LH_APT_SECURE="enabled"
# $LH_BOOTSTRAP: set bootstrap program
# (Default: cdebootstrap)
#LH_BOOTSTRAP="cdebootstrap"
LH_BOOTSTRAP="cdebootstrap"
# $LH_CACHE: control cache
# (Default: enabled)
LH_CACHE="enabled"
# $LH_CACHE_INDICES: control if downloaded package indices should be cached
# (Default: disabled)
LH_CACHE_INDICES="disabled"
# $LH_CACHE_PACKAGES: control if downloaded packages files should be cached
# (Default: enabled)
LH_CACHE_PACKAGES="enabled"
# $LH_CACHE_STAGES: control if completed stages should be cached
# (Default: bootstrap)
LH_CACHE_STAGES="bootstrap"
# $LH_DEBCONF_FRONTEND: set debconf(1) frontend to use
# (Default: noninteractive)
LH_DEBCONF_FRONTEND="noninteractive"
# $LH_DEBCONF_NOWARNINGS: set debconf(1) warnings
# (Default: yes)
LH_DEBCONF_NOWARNINGS="yes"
# $LH_DEBCONF_PRIORITY: set debconf(1) priority to use
# (Default: critical)
LH_DEBCONF_PRIORITY="critical"
# $LH_INITRAMFS: set initramfs hook
# (Default: live-initramfs)
# Building under Debian `etch' requires this set to `casper'
LH_INITRAMFS="casper"
# $LH_FDISK: set fdisk program
# (Default: autodetected)
LH_FDISK="fdisk"
# $LH_LOSETUP: set losetup program
# (Default: autodetected)
LH_LOSETUP="losetup"
# $LH_MODE: set distribution mode
# (Default: debian)
# Valid values are "debian" or "ubuntu"
LH_MODE="debian"
# $LH_ROOT_COMMAND: use sudo or equivalent
# (Default: empty)
#LH_ROOT_COMMAND="sudo"
# $LH_USE_FAKEROOT: use fakeroot/fakechroot
# (Default: disabled)
LH_USE_FAKEROOT="disabled"
# $LH_TASKSEL: set tasksel program
# (Default: aptitude)
LH_TASKSEL="aptitude"
# $LH_INCLUDES: set includes
# (Default: /usr/share/live-helper/includes)
LH_INCLUDES="/usr/share/live-helper/includes"
# $LH_TEMPLATES: set templates
# (Default: /usr/share/live-helper/templates)
LH_TEMPLATES="/usr/share/live-helper/templates"
# Live-helper options
# $LH_BREAKPOINTS: enable breakpoints
# (Default: disabled)
#LH_BREAKPOINTS="disabled"
# $LH_DEBUG: enable debug
# (Default: disabled)
LH_DEBUG="enabled"
# $LH_FORCE: enable force
# (Default: disabled)
#LH_FORCE="disabled"
# $LH_QUIET: enable quiet
# (Default: disabled)
LH_QUIET="disabled"
# $LH_VERBOSE: enable verbose
# (Default: disabled)
#LH_VERBOSE="disabled"
# Internal stuff
APT_OPTIONS="--yes"
APTITUDE_OPTIONS="--assume-yes"
#Load CryptoNAS and user-customized settings
#. config/cnas-active-settings

View file

@ -0,0 +1,22 @@
##deb-live/config/cnas-custom-settings.d/release-settings
##Activate release-specific live-helper settings
##
##To build a "release" version, this file should
##be copied to the cnas-custom-settings.d
##directory, where it will be sourced by
##the live-helper scripts.
# $LH_PACKAGES_LISTS: set package list to install
# Use "cryptonas" for CryptoNAS releases
LH_PACKAGES_LISTS="cryptonas"
#LH_BINARY_IMAGES="iso"
#LH_BINARY_IMAGES="usb-hdd"
# $LH_SOURCE: Create a source code tarball?
LH_SOURCE="enabled"
LH_SOURCE_IMAGES="tar"
#Disable console login and enable other security measures
CNAS_HARDNESS="secure"

View file

@ -0,0 +1,14 @@
# config/source - options for live-helper(7), source stage
# $LH_SOURCE: set source option
# (Default: disabled)
LH_SOURCE="disabled"
# $LH_SOURCE_IMAGES: set image type
# (Default: tar)
LH_SOURCE_IMAGES="tar"
#Load CryptoNAS and user-customized settings
. config/cnas-active-settings

View file

@ -0,0 +1,20 @@
#Note: these files have NOT been tested with CryptoNAS 0.4 or later.
#They *may* work if added to config/chroot_local-includes/etc/init.d/
#and symbolic links created from /etc/rcS.d/*.
1) Overview
the files in this directory are examples for specific hook scripts
to change the configuration of the box
set_root_pw
- replace the disabled root password (the default) with
a choosen password
- useful if your development cryptobox:
- is located in an insecure environment
- or your development team is geographically distributed, so the
cryptobox for testing has to be publicly available
set_allowed_devices
- change the default selection of devices that can be used
as the crypto harddisk

View file

@ -0,0 +1,4 @@
# change the selection of devices, that can be used as the crypto harddisk
sed -i 's#^AllowedDevices.*$#AllowedDevices = /dev/hda /dev/hdb /dev/hdc /dev/hde /dev/hdf /dev/hdg /dev/scd0 /dev/scd1 /dev/scd2 /dev/scd3#' "$IMAGE_DIR/etc/cryptobox-server/cryptobox.conf"

View file

@ -0,0 +1,4 @@
# change the selection of disabled plugins
sed -i 's#^DisabledPlugins.*$#DisabledPlugins = #' "$IMAGE_DIR/etc/cryptobox-server/cryptobox.conf"

View file

@ -0,0 +1,11 @@
# replace the empty root password of an development cryptobox with a choosen one
#
# see misc/custom-configure.d/README for details
#
# set the password to your needs
NEW_ROOT_PASSWORD=foobar
echo "Setting a root password ..."
echo "root:$NEW_ROOT_PASSWORD" | chroot "$IMAGE_DIR" "$CHROOTSTART" chpasswd root

Binary file not shown.

After

Width:  |  Height:  |  Size: 42 KiB

Binary file not shown.

After

Width:  |  Height:  |  Size: 52 KiB

Binary file not shown.

After

Width:  |  Height:  |  Size: 7 KiB

Binary file not shown.

Binary file not shown.

Binary file not shown.

Binary file not shown.

View file

@ -0,0 +1,4 @@
this directory contains some configuration files for the development of the CryptoBox
If you want to use different local settings, then you should copy the respective
configuration file to the directory "etc-local.d" and adapt it to your needs.

View file

@ -0,0 +1,36 @@
# some local settings for cbox-build.sh and validate.sh
#
# previously defined settings:
# - ROOT_DIR
#
####################### cbox-build ########################
# the build directory (will be ERASED without warning)
BUILD_DIR="$ROOT_DIR/_builddir"
# the cryptobox development files
CBOX_DEVEL_DIR=$ROOT_DIR/cbox-tree.d
# template for live-cd
TEMPLATE_DIR=$ROOT_DIR/live-cd-tree.d
# the iso image
IMAGE_FILE=$BUILD_DIR/cryptobox.iso
# temporary directory
TMP_DIR=/tmp/$(basename $0)-$$
# the virtual harddisk image used for qemu
HD_IMAGE=/tmp/$(basename $0)-testplatte.img
# mkisofs options (the option "-U" is not clean, but it prevents long
# filenames from getting mapped)
# TODO: this may prevent windows user from reading the documentation
MKISOFS_OPTIONS="-allow-multidot -U -D -iso-level 3 -b boot/grub/stage2_eltorito -no-emul-boot -boot-load-size 1 -boot-info-table -pad -R"
# for burning a CD
CDWRITER=0,0,0

View file

@ -0,0 +1,55 @@
#!/bin/sh
#
# this is the qemu-ifup script that should be run at qemu's boot
#
# determine the interface to the outside
IF_WORLD=`/sbin/route -n | grep " UG " | sed "s/ */ /g" | cut -d " " -f 8 | head -1`
# nothing found? - sorry!
[ -z "$IF_WORLD" ] && IF_WORLD=eth0
if [ "$UID" -ne 0 ]
then sudo $0 $*
exit 0
fi
echo "Laufe als root ..."
IPT=/sbin/iptables
[ ! -x $IPT ] && IPT=/usr/sbin/iptables
IPT_RULES=" FORWARD -i tun0 -o $IF_WORLD -j ACCEPT
FORWARD -i $IF_WORLD -o tun0 -m state --state ESTABLISHED,RELATED -j ACCEPT
POSTROUTING -t nat -o $IF_WORLD -j MASQUERADE
INPUT -i tun0 -j ACCEPT
OUTPUT -o tun0 -j ACCEPT"
aktiviere_forward()
{
echo "$IPT_RULES" | while read a
do $IPT -A $a
done
echo 1 >/proc/sys/net/ipv4/ip_forward
}
deaktiviere_forward()
{
echo "$IPT_RULES" | while read a
do $IPT -D $a
done
echo 0 >/proc/sys/net/ipv4/ip_forward
}
case "$1" in
stop )
deaktiviere_forward
#/etc/init.d/dhcp stop
;;
* )
/sbin/ifconfig $1 192.168.0.1
#/etc/init.d/dhcp start
aktiviere_forward
;;
esac

View file

@ -0,0 +1,22 @@
## ssh_config
## This configuration file is intended to be supplied to the ssh client on the
## developer's *local* console system (using the -F option) when using ssh
## to connect to a CryptoNAS Live "devel build" system.
Host cryptonas
# change this part according to your needs
HostName 192.168.0.23
Port 22
# maybe you want to use rsa authentication?
# see configure-examples.d/README for examples
IdentityFile local.conf.d/id_rsa
# this should be valid for everyone
User root
CheckHostIP no
StrictHostKeyChecking no
# nice for frequently changing server key due to a rebuild of the base system
UserKnownHostsFile /tmp/cryptobox-ssh-known_hosts

View file

@ -0,0 +1,6 @@
by scp or webdav - the last one is the better choice
1) webdav
apt-get install davfs2
modprobe coda
mount -t davfs https://upload.codecoop.org/groups/cryptobox/ /mnt/ttt

View file

@ -0,0 +1,23 @@
Hints for building and integrating a new kernel into the cryptobox:
1) get the source
download it from http://kernel.org (at least 2.6.11)
2) configure
- copy the current kernel config from the cryptobox/trunk/kernel
directory to the kernel source directory as ".config" (the .config
can also be found in the current kernel-image-cryptoboxX.Y.deb packagefile)
- make menuconfig
- make-kpkg --rootcmd fakeroot --revision=cryptoboxY.X kernel_image
(replace "Y.X" by the current cryptobox release)
3) integrating
- copy the debian kernel package (see above) and the config file to cryptobox/trunk/kernel
- change the "unpackdebs" setting in cryptobox/trunk/etc-default.d/dfs-cbox.conf
- add the new kernel package and the config file to the repository (svn add)
4) afterwork
- run "cryptobox/trunk/scripts/cbox-build.sh dfsbuild" to create a fresh base system
including the new kernel
- test the box with your new kernel
- enjoy it! :)

View file

@ -0,0 +1,51 @@
For a new live-CD follow steps 1a and 2a.
For a language update live-CD follow steps 1b and 2b.
0) manually update files:
- ntfs-3g debian package (from lenny)
1a) set current version
- cover/cover_[en|de].[odt|pdf]
- etc/defaults.d/dfs-cbox.conf (version setting)
1b) upgrade language files of an old live-cd
- rm -rf _builddir/
- mount -o loop old_live_cd.iso /mnt/ttt
- cp -a /mnt/ttt _builddir/target
- update all binary language files by issuing scripts/update_po_files.py
in the project's language branch
- copy all language files (*.mo) of the updated languages to
_builddir/target/usr/locale/....
- update the list of available languages in
_builddir/target/etc/cryptobox-server/cryptobox.conf
- update the version in _builddir/target/boot/grub/menu.lst
- update cover/conver_[en|de].[swx|pdf]
2a) build image
- 'scripts/cbox-build.sh release'
2b) build image and create signatures
- 'scripts/cbox-build.sh isoz'
- cd _builddir
- sha1sum ISO_FILE > ISO_FILE.sha1sum
- md5sum ISO_FILE > ISO_FILE.md5sum
3) release notes
- update website
- update CHANGELOG
4) upload to codecoop
- check the validity of your ssh-key in your codecoop user account
- type "scp $FILE $USERNAME@shell.codecoop.org:."
- upload a dummy file with the same name via upload-web-interface to codecoop
- ask Jan Kanzleiter <idfx_at_codecoop.org> to replace the dummy with the
scp-file and to manually set the filesize (otherwise: it is not displayed at all)
- upload the checksumfile created by "md5sum cryptobox_vY.X.iso >cryptobox_vY.X.iso.md5sum"
- add release notes and changelog
- upload cover_[en|de].pdf
5) release announcement
- http://codecoop.org
- http://distrowatch.com
- http://livedistro.org
- http://linuxlinks.com

View file

@ -0,0 +1,27 @@
some useful macros:
* [[TOC]] - at the beginning of the document
* [[AutoNav]] - below [[TOC]], followed by a line with "----"
* [[AddComment]] - at the end of the page (below "----")
* [[WikiInclude($PAGENAME)]] - include another wiki page
* [[redirect(wiki:$PAGENAME)]] - redirect to another page (useful to redirect to default lang)
* [[Image(file/trunk/cbox-tree.d/var/www/cryptobox-img/screenshots/$NAME)]] - beware: you may use "wiki" or "ticket" instead of "file" - very unusual syntax
* [[FootNote(Text)]] - creates a reference to a footnote - the list of footnotes is expanded by "[[FootNote]]"
special things:
* the first level heading ("= TEXT =") is considered as the page title - only lower level headings will be a part of the table of contents
* links like "CryptoBoxUser/de" are not recogniced - use "[wiki:CryptoBoxUser/de CryptoBoxUser]" instead
* for a deeper level of items or enumerations, you have to add two(!) additional spaces in front of the symbol ("*" or "1.") - this is obviously strange ...
default page layout:
[[TOC]]
[[AutoNav]]
----
= Title =
== Heading ... ==
...
----
== Comments ==
[[AddComment]]

File diff suppressed because it is too large Load diff

View file

@ -0,0 +1,6 @@
BEWARE: the uml kernel does not work correctly - see ../hints/starting_uml.txt for details
see hints/kernel-build.txt for details on how to build and include a new kernel
cryptsetup-luks is not yet officially available for debian
Source: http://einsteinmg.dyndns.org/debian/unstable/

10
deb-live_v0.3.5/rm-tmps.sh Executable file
View file

@ -0,0 +1,10 @@
#!/bin/sh
#rm-tmps.sh
#remove "foo~" temporary files left by Emacs and other editors
#This is just a helper file, since Emacs-style "foo~" files can sometimes break a
#build (files ending in ~ are considered valid shell scripts).
#If you want to build the disk image, use "lh_build" as documented at
# http://devel.cryptobox.org/wiki/DebianLiveBuild
find config -type f -name \*~ -execdir rm --verbose -f '{}' \;

View file

@ -0,0 +1,160 @@
#!/bin/bash
#
# Copyright (c) 02005 sense.lab <senselab@systemausfall.org>
#
# License: This script is distributed under the terms of version 2
# of the GNU GPL. See the LICENSE file included with the package.
#
# $Id$
#
# managing our work at the cryptobox
#
# development actions:
# chroot - run first tests in a chroot environment
# qemu - run the qemu emulation with the uncompressed image
# qemuz - run the qemu emulation with the compressed image
# upload - copy your local files to tmpfs on a running cryptobox
# diff - compare tmpfs-files on a running cryptobox with the original
# merge - apply the diff to the local copy
# ssh - open a ssh connection to a running cryptobox
#
# problems of this script:
# - chroot has to run as root
#
# jwc 9/08: started modifications to work with CryptoNAS Live
#Note: It appears to have been a long time since this script was maintained.
#(For example, where *was* $DEV_FEATURES_SCRIPT defined previously?)
#It may work or it may fail.
DEV_FEATURES_SCRIPT="/usr/share/cryptonas-live/devel-features.sh"
set -ue
# include common functions and settings
source $(dirname $0)/common.sh.inc
################### some settings #####################
# to connect to a development cryptobox with ssh
SSH_CONFIG_FILE=$(get_config_file ssh_config)
# extract the hostname of the cryptobox from the ssh_config file
SSH_HOST=$(grep "^Host " "$SSH_CONFIG_FILE" | head -1 | sed 's/^Host *\(.*\)$/\1/')
####################### functions ######################
function qemu_boot()
# parameter: iso_image_file
{
# create a virtual harddisk image file
if [ ! -e "$HD_IMAGE" ]
then echo "Creating temporary harddisk image ..."
dd if=/dev/zero of="$HD_IMAGE" bs=1M count=$HD_IMAGE_SIZE
fi
echo "Starting qemu ..."
qemu -hda "$HD_IMAGE" -cdrom "$1" -boot d -m 96 -net nic -net tap || true
}
function upload2box()
# upload local files to a development cryptobox
# this is necessary to use an "old" development cd with
# new code - this affects only the web-interface and the
# cbox-manage.sh-script (the boot behaviour stays the same)
#
# of course, only the directories that are mapped to tmpfs can
# be updated this way
{
local DIRS="var/www usr/share/cryptobox-server usr/share/cryptonas-live"
echo "Uploading the following dirs: $DIRS "
[ -e "$TMP_DIR" ] || mkdir -p "$TMP_DIR"
for a in $DIRS
do mkdir -p "$TMP_DIR/$a"
cp -r "$TEMPLATE_DIR/$a/." "$TMP_DIR/$a"
done
find "$TMP_DIR" -type d -name '\.svn' | while read a
do rm -rf "$a"
done
echo "Copying local files to the cryptobox ... "
if scp -F "$SSH_CONFIG_FILE" -rpq "$TMP_DIR/." cryptobox:/tmp/mirror
then echo "Set the base for future diffs to current state ..."
ssh -F "$SSH_CONFIG_FILE" "$SSH_HOST" "$DEV_FEATURES_SCRIPT" set_diff_base
else echo 'ERROR: copying failed!'
fi
rm -rf "$TMP_DIR"
}
function merge_from_box()
# merge a diff from a running development cryptobox into
# your local copy
{
echo "Check for collisions ... (dry-run)"
if box_diff | patch --dry-run -p1 -d "$TEMPLATE_DIR"
then echo
echo "Applying diff ..."
box_diff | patch -p1 -d "$TEMPLATE_DIR"
echo
echo "Set the base for future diffs to current state ..."
ssh -F "$SSH_CONFIG_FILE" "$SSH_HOST" "$DEV_FEATURES_SCRIPT" set_diff_base
else echo "Merging will fail - do it manually!"
fi
}
# get the diff of a running cryptobox system between its current state
# and its original content
function box_diff()
{
ssh -F "$SSH_CONFIG_FILE" "$SSH_HOST" "$DEV_FEATURES_SCRIPT" diff
}
############################# main #####################################
[ $# -eq 0 ] && echo "[`basename $0`] - no arguments supplied - maybe you want to use '--help'" && exit 1
ACTION=--help
[ $# -gt 1 ] && ACTION=$1
case "$1" in
diff )
# get a diff from a running development cryptobox
box_diff
;;
merge )
merge_from_box
;;
upload )
upload2box
;;
chroot )
# chroot may only be called as root
[ "$(id -u)" -ne 0 ] && echo "the action 'chroot' may only be called as root!" >&2 && exit 1
echo
echo "##############################################################################"
echo "# BEWARE: you can severly harm your real harddisk in the chroot environment! #"
echo "##############################################################################"
echo
chroot_image
;;
qemu )
qemu_boot "$IMAGE_FILE"
;;
ssh )
ssh -F "$SSH_CONFIG_FILE" "$SSH_HOST"
;;
help|--help )
echo "Syntax: `basename $0` ( qemu | chroot | upload | diff | merge | ssh | help )"
echo
;;
* )
echo -e "unknown action: $1"
echo
$0 help
exit 1
;;
esac

View file

@ -0,0 +1,88 @@
#
# common settings and functions for cryptobox scripts
#
#################### some functions ####################
# get the path of a configuration file - local configuration files
# supersede default files
# parameter: base name of the configuration file
function get_config_file()
{
[ -e "$LOCALCONF_DIR/$1" ] && echo "$LOCALCONF_DIR/$1" && return 0
[ -e "$DEFAULTCONF_DIR/$1" ] && echo "$DEFAULTCONF_DIR/$1" && return 0
echo "configuration file ($1) not found!" >&2
exit 1
}
function error_die()
{
echo "$2" >&2
exit $1
}
function chroot_image()
{
MNT_SRC=$IMAGE_DIR/opt/dfsruntime/runtimerd
MNT_DST=$IMAGE_DIR/opt/dfsruntime/runtimemnt
TMP_DIR=/tmp/cryptobox-chroot-$(basename $0)-$$
[ -d "$TMP_DIR" ] && rm -rf "$TMP_DIR"
cp -a "$MNT_SRC/." "$TMP_DIR"
mount --bind "$TMP_DIR" "$MNT_DST"
[ ! -e "$TMP_DIR/dev/null" ] && mknod "$TMP_DIR/dev/null" c 1 3 && chmod 666 "$TMP_DIR/dev/null"
[ ! -e "$TMP_DIR/dev/urandom" ] && mknod "$TMP_DIR/dev/urandom" c 1 9 && chmod 444 "$TMP_DIR/dev/urandom"
[ ! -e "$TMP_DIR/dev/console" ] && mknod "$TMP_DIR/dev/console" c 1 5 && chmod 660 "$TMP_DIR/dev/console"
# remember, if proc was mounted before (e.g. because of a running chroot)
local PROC_WAS_MOUNTED=no
mount -t proc proc "$IMAGE_DIR/proc" 2>/dev/null || PROC_WAS_MOUNTED=yes
# default language setting - prevents dpkg error messages
# set default terminal (good if you are running in a screen session)
LANG=C TERM=linux chroot "$IMAGE_DIR" /bin/bash
umount "$MNT_DST"
[ "$PROC_WAS_MOUNTED" = "no" ] && umount "$IMAGE_DIR/proc"
rm -r "$TMP_DIR"
}
################### general settings ###################
# the base directory of your local development files
ROOT_DIR=$(dirname "$0")/..
ROOT_DIR=$(cd "$ROOT_DIR"; pwd)
# the template (default) configuration directory
DEFAULTCONF_DIR="$ROOT_DIR/etc-defaults.d"
# your local configuration directory (existing files supersede the defaults)
LOCALCONF_DIR="$ROOT_DIR/etc-local.d"
# local configuration directory - contains scripts to be executed after
# 'configure'
CUSTOM_CONFIGURE_DIR="$ROOT_DIR/configure-local.d"
# the chroot-wrapper within the cryptobox
CHROOT_START="/usr/lib/cryptobox-cd/chroot-start.sh"
############# include local configuration ##############
if [ -e "$(get_config_file cbox-dev.conf)" ]
then source "$(get_config_file cbox-dev.conf)"
else echo "local cbox-dev.conf ($(get_config_file cbox-dev.conf)) does not exist!" >&2
exit 1
fi
# image directory created by dfsbuild
# the BUILD_DIR is defined in the local cbox-dev.conf
IMAGE_DIR=$BUILD_DIR/target
IMAGEZ_DIR=$BUILD_DIR/target.z
IMAGEZ_FILE="${IMAGE_FILE%.iso}_compressed.iso"
UNCOMPRESSED_ITEMS="_offline autorun.inf start.html boot opt boot.catalog"
HD_IMAGE=$ROOT_DIR/test.img
HD_IMAGE_SIZE=256

View file

@ -0,0 +1,141 @@
#!/bin/sh
PROJ_DIR=$(dirname "$0")/..
PROJ_DIR=$(cd "$PROJ_DIR"; pwd)
DEST_DIR="$PROJ_DIR/live-cd-tree.d/_offline/doc"
WIKI_PAGES="doc/0.3/CryptoBoxUserGettingStarted/en
doc/0.3/CryptoBoxUserDailyUse/en
CryptoBoxUser/en
faq"
function prepare_wiki_page()
{
sed -i '1,/<div class="wikipage">/d' "$1"
# remove the "comment" or "edit" stuff
sed -i '/<h2>Comments<\/h2>/,$d' "$1"
sed -i '/<div class="buttons">/,$d' "$1"
# remove the last horizontal line
sed -i '$,$d' "$1"
# add anchor ids to every head line
sed -i 's#<h\([1-4]\)>\(.*\)</h#<h\1 id="\2">\2</h#g' "$1"
while grep -q '<h[1-4] id="\([a-zA-Z]*\)[^a-zA-Z"]' "$1"
do sed -i 's#<h\([1-4]\) id="\([a-zA-Z]*\)[^a-zA-Z"]#<h\1 id="\2#g' "$1"
done
# convert wiki links
sed -i 's#="/wiki/\([^"/]*\)/#="/wiki/\1_#g' "$1"
sed -i 's#="/wiki/\([^"/]*\)/#="/wiki/\1_#g' "$1"
sed -i 's#="/wiki/\([^"/]*\)/#="/wiki/\1_#g' "$1"
sed -i 's#="/wiki/\([^"/]*\)/#="/wiki/\1_#g' "$1"
sed -i 's#="/wiki/\([^"#]*\)\([#"]\)#="\1.html\2#g' "$1"
# remove outdated documentation
sed -i 's#</ol>#</ol>\n#g' "$1"
sed -i '/outdated/,/<\/ol>/d' "$1"
# remove "searchable" ids (blue coloring of head lines)
sed -i 's#<div id="searchable">#<div>#g' "$1"
# fix image sources
sed -i 's#src="/file/[^"]*/\([^/\?]*\)["\?]#src="\1"#g' "$1"
}
function wrap_wiki_page()
{
# add header and footer
(
echo "$page_header"
echo '<div class="centercontent">'
cat "$1"
echo '</div>'
echo "$page_footer"
) >"${1}.new"
mv "${1}.new" "$1"
}
function rename_files()
{
ls | grep "\?format=raw$" | while read fname
do local real_name=$(echo "$fname" | sed 's/\?.*$//')
mv "$fname" "$real_name"
done
ls | grep "\.[0-9]*$" | while read fname
do rm "$fname"
done
}
function redirect_homepage_links()
{
ls *.html | while read fname
do while grep -q '="http://devel.cryptobox.org/wiki/[^/"]*/' "$fname"
do sed -i 's#\(="http://devel.cryptobox.org/wiki/[^/"]*\)/#\1_#g' "$fname"
done
sed -i 's#="http://devel.cryptobox.org/wiki/\([^"\#]*\)\(["\#]\)#="\1.html\2"#g' "$fname"
done
}
function remove_useless_files()
{
rm -f robots.txt
}
function rename_one_file()
{
find . -type f | grep -v "/\.svn" | while read fname
do sed -i "s#\([^a-zA-Z0-9]\)$1#\1$2#g" "$fname"
done
mv "$1" "$2"
}
function rename_long_files()
{
# this is necessary to avoid problems with the 31-character restriction of iso9660
# on windows systems
find . -type f | grep -v "/\.svn" | while read fname
do if test 14 -lt "${#fname}"
then local neu_prefix=$(echo "${fname:2:6}" | sed 's#/#_#g')
local neu_num=0
local neu_suffix=$(echo "$fname"| sed 's#^.*\.\([^\.]*\)$#.\1#g')
test 5 -lt "${#neu_suffix}" && neu_suffix=.${neu_suffix:-4}
while test -e "$neu_prefix$neu_num$neu_suffix"
do local i=$((neu_num+1))
# we should use the additional step (using 'i') to avoid a bash-specific
# handling of self-increment
neu_num=$i
done
rename_one_file "${fname:2}" "$neu_prefix$neu_num$neu_suffix"
fi
done
}
test ! -d "$DEST_DIR" && echo "Destination directory does not exist: $DEST_DIR" && exit 1
# cleanup destination directory
test -e "$DEST_DIR/index.html" && find "$DEST_DIR/" -type f | grep -v "/\.svn" | xargs rm
cd "$DEST_DIR"
# retrieve pages from cryptobox.org
wget --mirror --page-requisites --no-directories --convert-links --quiet http://cryptobox.org
wget --output-document=header.jpg --quiet http://cryptobox.org/gfx/header.jpg
page_header=$(sed -n '1,/<!-- content starts here -->/p' index.html)
page_footer=$(sed -n '/<!-- content ends here -->/,$p' index.html)
for page in $WIKI_PAGES
do filename=${page//\//_}.html
wget --no-directories --page-requisites --quiet "http://devel.cryptobox.org/wiki/$page"
mv "$(basename $page)" "$filename"
prepare_wiki_page "$filename" "$page"
wrap_wiki_page "$filename"
done
rename_files
redirect_homepage_links
remove_useless_files
rename_long_files

View file

@ -0,0 +1,9 @@
#!/bin/sh
#
# Copyright (c) 02005 sense.lab <senselab@systemausfall.org>
#
# License: This script is distributed under the terms of version 2
# of the GNU GPL. See the LICENSE file included with the package.
#
grep "TODO" $(find "$(dirname $0)/.." -type f | grep -v "\.svn" | grep -v "$(basename $0)")

Binary file not shown.

View file

@ -0,0 +1,13 @@
Format: 1.0
Source: live-helper
Version: 1.0~a48-1
Binary: live-helper
Maintainer: Debian Live <debian-live-maint@lists.alioth.debian.org>
Architecture: all
Standards-Version: 3.8.0
Build-Depends: debhelper (>= 5)
Upstream-Depends: git-core
Uploaders: Daniel Baumann <daniel@debian.org>
Files:
d47c711d194e1ca3220cd4fd3f7ee627 1955153 live-helper_1.0~a48.orig.tar.gz
60c3b146b570120da5e0af9373994dd8 16302 live-helper_1.0~a48-1.diff.gz

Binary file not shown.

Binary file not shown.

View file

@ -0,0 +1,124 @@
Format: 1.7
Date: Mon, 14 Jul 2008 00:00:00 +0200
Source: live-helper
Binary: live-helper
Architecture: source all
Version: 1.0~a48-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Live <debian-live-maint@lists.alioth.debian.org>
Changed-By: Daniel Baumann <daniel@debian.org>
Description:
live-helper - Debian Live build scripts
Closes: 478744 488257 488672 490114 490245
Changes:
live-helper (1.0~a48-1) unstable; urgency=medium
.
[ Chris Lamb ]
* Additionally clean md5sum.txt temporary file.
* Remove pointless whitespace.
* Temporarily replace /dev/urandom with /dev/random when creating local
packages key.
* Correct d-i kernel and initrd locations in grub entries. Thanks to Jun
NOGATA <nogajun@gmail.com> for the patch. (Closes: #490245)
* Fix a bug where a /etc/apt/preferences supplied in chroot_local-includes was
always being deleted when used in conjunction with
config/chroot_apt/preferences.
* Abort build if working directory contains spaces - not supported by (at
least) debootstrap and cdebootstrap.
* Replace spaces in LH_BOOTSTRAP_{IN,EX}CLUDE variables with commas on use.
Thanks to Cyril Brulebois <cyril.brulebois@kerlabs.com>. (Closes: #490114)
* Fix syntax error in --ignore-system-defaults handling.
* Ensure ~/.gnupg exists (required for gnupg >= ~1.4.9)
* Fix bug where command-line argument --ignore-system-default was not seen
before it was required.
* Fix formatting error with --ignore-system-defaults in "lh_config --help"
* Add --ignore-system-defaults option to not source /etc/default/live-helper.
* Correct location of /etc/default/live-helper in lh_config(1) manpage.
* Perform in LH_BOOTAPPEND_INSTALL conditional expansion manually to avoid
expansion bug/feature on repetitive calls to lh_config (Closes: #488672)
* Use a temporary apt key when installing local packages (Closes: #488257)
* Fix caching of APT indices (Closes: #478744)
* Refactor d-i GTK image selection, ensuring the GTK installer is only chosen
on the netboot variant when building on powerpc.
* Only consider linux-image-2.6-prep powerpc kernel image on Etch.
* Refactor remote d-i location handling and ensure correct locations for
powerpc.
* Print a friendlier message if debootstrap or cdebootstrap cannot be found.
* Re-order a case statement for consistency.
* Fix incorrect test for sparc architecture in binary include handling.
* Add support for generation of sparc netboot images.
* Add support for sparc "tar" binary image type.
* Add support for sparc install includes.
* Refactor destination setting in lh_binary_silo to check arguments at
beginning of the script.
* Abort build if building from the root directory (/) as this causes misc
build failures.
* Emit a warning when running lh_build without a config/ directory.
* Migrate a In_list candidate to grep -E.
* Migrate a few uses of grep to In_list.
* Add In_list function to extract various bits of code that did (or should
have done) the same job.
* Remove a useless space
* Consolidate grep text searching predicates to use "grep -qs"
* Revert aborting live d-i installation if minimal/stripped is selected and
instead attempt to not break the chroot too much in this case
* Replace another unweildy "if P1 || P2" statement with its "case" equivalent.
* Remove more imported whitespaces.
* Adjust "lh_config --help" and lh_config(1) so that the -m option corresponds
with --mirror-bootstrap isntead of --mirror-binary-security.
* Only deference symlinks on usb-hdd filesystems that do not support symlinks.
* Add support for ext2 and ext3 to lh_source_usb-hdd.
* Add support for usb-hdd on sparc (requires parted 1.8 from experimental).
* Refactor mkfs handling.
* Refactor partition table type handling.
* Refactor partition type handling.
* Prefix mount and unmount in lh_binary_debian-installer with LH_ROOT_COMMAND.
* Add support for sparc to lh_binary_debian-installer.
* Add support for the sparc architecture.
* Add lh_binary_silo and associated templates to support the SILO bootloader.
* Ensure apt-utils is installed in the helpers it is required.
* Abort if "live" d-i installation is attempted with minimal or stripped
LH_PACKAGES_LISTS
* Fix truncated Echo_breakage messages.
* Fix d-i locations in yaboot entries.
* Fix trivial typographic error ("flavor" => "flavour")
* Only deference symlinks on FAT{16,32} partitions on usb-hdd.
* Replace install.amd/install -> install.386/install symlink with a real copy.
* Revert always deferencing symlinks when installing some binary includes.
* Add Echo_breakage for messages preceeding often-breaking stages and use
before {c,}debootstrap calls
* Replace a few unweildy "if" statements with their "case" equivalents
* Move Etch syslinux workaround closer to the original definitions
* Use correct location of powerpc d-i images.
* Set correct d-i image type on usb-hdd and tar image types
* Remove pointless "echo" statements pre- and post- cdebootstrap
* Allow LH_APT_SECURE to disable package cdebootstrap package authentication
* Rename USE_NETBOOT_DI to DI_IMAGE_TYPE
* Always deference symlinks when installing some binary includes to fix
breakage on amd64.
* Ensure "Using system defaults" message appears when calling lh_config
without --verbose
* Don't skip single dot-files in the root directory of binary and chroot local
includes
* Don't exclude live-installer when LH_DEBIAN_INSTALLER=live
* Fix a few bogus guards in lh_binary_debian-installer
* Show contents of /etc/default/live-helper in bug info collection script
.
[ Daniel Baumann ]
* Removing imported whitespaces.
* Parsing local arguments to lh_config last.
* Correcting order where system-wide lh_config defaults file is read, thanks
to Juergen Fiedler <juergen.fiedler@gmail.com>.
* Only saving source indices to indices cache if source indices are actually
existing, thanks to Thanatermesis <thanatermesis.ecvs@elivecd.net>.
* Correcting path for system-wide lh_config defaults file.
.
[ Marco Amadori ]
* Added support for /etc/live-helper.
* Removed a useless space.
Files:
dd26837d3abac468c5455b189923c6f6 439 misc optional live-helper_1.0~a48-1.dsc
d47c711d194e1ca3220cd4fd3f7ee627 1955153 misc optional live-helper_1.0~a48.orig.tar.gz
60c3b146b570120da5e0af9373994dd8 16302 misc optional live-helper_1.0~a48-1.diff.gz
99fa3c64a19782bce8361401882bfa4b 1907918 misc optional live-helper_1.0~a48-1_all.deb

Some files were not shown because too many files have changed in this diff Show more