static doc pages added

autorun.ini, start.html and shellopn added
changed URLs in css to relative links
This commit is contained in:
lars 2005-09-15 01:35:29 +00:00
parent dd99c01b7a
commit b68a7e78c8
21 changed files with 1954 additions and 6 deletions

View File

@ -0,0 +1,379 @@
<?xml version="1.0" encoding="utf-16"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>CryptoBox</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-16" />
<link rel="stylesheet" media="screen" href="../../var/www/cryptobox.css" type="text/css" />
</head>
<body>
<div id="lang">
<a href="CryptoBoxEn.html">English</a><br/>
<a href="CryptoBox.html">Deutsch</a><br/>
</div>
<div id="main">
<div id="head">
<h1>Die CryptoBox</h1>
<h2>Privatsp&auml;hre f&uuml;r alle!</h2>
</div>
<div id="content">
<div id="menu">
<a href="CryptoBox.html">&Uuml;bersicht</a>
<a href="CryptoBoxUsers.html">Nutzerhandbuch</a>
<a href="CryptoBoxDev.html">Entwicklung</a>
</div>
<div id="doc">
<a id="top"></a>
<p><a href="CryptoBoxEn.html">-&gt; english overview &lt;-</a> <ol>
<li>
<a href="#head-97e3ed911f9a14c537e247a2719dc86b73056dde">Überblick</a>
<ol>
<li>
<a href="#head-b44206765ef44c91cbfd0ba23b33b43a192eeb8d">Was kann die CryptoBox?</a>
</li>
<li>
<a href="#head-81e691d388494e38d5f72c5a2f7abf5632625b6d">Was brauchst du?</a>
</li>
<li>
<a href="#head-ff0e3b1584bc46aef5854f09f75b372c707fbf29">Spezifikationen</a>
</li>
</ol>
<li>
<a href="#head-4a62d30abaeb5cd5d2e4545aabd13e81a819504f">Nutzung</a>
<ol>
<li>
<a href="#head-52db644c60a52bcaed2c809cb51e1255bec6eb6e">Einrichtung</a>
</li>
<li>
<a href="#head-705e3d9ef31243833f13eb8a9827381f27727407">tägliche Nutzung</a>
</li>
<li>
<a href="#head-2dbc1550a8c92d00f6cbb94131b3e90651792212">Optimierung</a>
</li>
<li>
<a href="#head-fabf23fd82a6a21311b13862d2d955056114a608">Vor- &amp; Nachteile</a>
</li>
</ol>
<li>
<a href="#head-40e05c4967bb03e29499d0696362590be5c646d8">Entwicklung</a>
<ol>
<li>
<a href="#head-ecfc074956b9f39a0fbfab314758db9cf39df4ce">Anforderungen</a>
</li>
<li>
<a href="#head-c90560cd155843d48d791e731b9b6c0ee852dc9d">Mitmachen</a>
</li>
<li>
<a href="#head-64a0a5e5f036e433b2a7101016e6e6af96f5a29d">Versionsverwaltung</a>
</li>
<li>
<a href="#head-fabf23fd82a6a21311b13862d2d955056114a608-2">Vor- &amp; Nachteile</a>
</li>
</ol>
<li>
<a href="#head-a3671f2dd22b53b402496f62c4f62c847220f2a1">Rechtliches</a>
</li>
</ol>
</p>
<hr>
<p> </p>
<h2 id="head-97e3ed911f9a14c537e247a2719dc86b73056dde">Überblick</h2>
<p>Die CryptoBox ist eine <a class="interwiki" title="WikiPediaDe" href="http://de.wikipedia.org/wiki/Live-cd">Live-CD</a> mit der sich jeder alte Rechner in Sekundenschnelle in einen verschlüsselnden Server umwandeln lässt. Damit kannst du sensible Daten speichern, ohne dass du etwas über <a class="interwiki" title="WikiPediaDe" href="http://de.wikipedia.org/wiki/Kryptografie">Kryptografie</a> wissen musst. </p>
<h3 id="head-b44206765ef44c91cbfd0ba23b33b43a192eeb8d">Was kann die CryptoBox?</h3>
<ul>
<li><p> Ein vollständiger <a class="interwiki" title="WikiPediaDe" href="http://de.wikipedia.org/wiki/Samba_%28Software%29">Samba</a>-Dateiserver (für alle freien Betriebssysteme, sowie Windows und Mac OS) bietet Zugriff auf deine Daten. </p>
</li>
<li><p> Deine Daten werden mit <a class="interwiki" title="WikiPediaDe" href="http://de.wikipedia.org/wiki/Advanced_Encryption_Standard">AES</a> verschlüsselt (256 Bit Schlüssellänge). </p>
</li>
<li><p> Die Web-Oberfläche bietet dir kinderleichten Zugriff auf alle Funktionen der CryptoBox. </p>
<ul>
<li><p> Verwaltung des verschlüsselten Dateisystems </p>
</li>
<li><p> Konfiguration der Netzwerk- und Sicherheitseinstellungen </p>
</li>
<li><p> Abgesehen von deinem <a class="interwiki" title="WikiPediaDe" href="http://de.wikipedia.org/wiki/Webbrowser">Browser</a> brauchst du keine weiteren Programme </p>
</li>
</ul>
</li>
</ul>
<h3 id="head-81e691d388494e38d5f72c5a2f7abf5632625b6d">Was brauchst du?</h3>
<ul>
<li><p> einen ausrangierten Rechner </p>
<ul>
<li><p> jeder gängige PC ab Baujahr 1992 genügt </p>
</li>
<li><p> Monitor, Tastatur, Maus usw. sind nicht erforderlich </p>
</li>
<li><p> das BIOS sollte von einer CDROM booten können (andernfalls ist zusätzlich ein Disketten-Laufwerk erforderlich) </p>
</li>
</ul>
</li>
<li><p> eine Festplatte (in deiner Wunschgröße) </p>
</li>
<li><p> eine Netzwerk-Karte </p>
</li>
<li><p> die CryptoBox-CD </p>
</li>
<li><p> keinerlei Wissen über Netzwerke oder Kryptografie </p>
</li>
</ul>
<h3 id="head-ff0e3b1584bc46aef5854f09f75b372c707fbf29">Spezifikationen</h3>
<div>
<table>
<tr>
<td>
<p>System</p>
</td>
<td>
<p>Debian/Linux basierte Live-CD</p>
</td>
</tr>
<tr>
<td>
<p>benötigter Computer</p>
</td>
<td>
<p> "ausrangierter" PC (i386 ab p1 mind. 32MB RAM)</p>
</td>
</tr>
<tr>
<td>
<p>unterstützte Clients</p>
</td>
<td>
<p><a class="interwiki" title="WikiPediaDe" href="http://de.wikipedia.org/wiki/Liste_der_Betriebssysteme">*nix; *bsd; Windows; Mac OS</a></p>
</td>
</tr>
<tr>
<td>
<p>interner Fileserver</p>
</td>
<td>
<p><a class="external" href="http://samba.org">samba</a> (Netzwerkfreigaben)</p>
</td>
</tr>
<tr>
<td>
<p>Benutzerschnittstelle</p>
</td>
<td>
<p>per Browser bedienbar (<a class="interwiki" title="WikiPediaDe" href="http://de.wikipedia.org/wiki/Perl">Perl</a>-Webinterface via https)</p>
</td>
</tr>
<tr>
<td>
<p>Verschlüsselung</p>
</td>
<td>
<p><a class="interwiki" title="WikiPediaDe" href="http://de.wikipedia.org/wiki/Advanced_Encryption_Standard">AES</a> via device-mapper</p>
</td>
</tr>
</table>
</div>
<p>Das <a href="CryptoBoxKonzept.html">CryptoBoxKonzept</a> beschreibt die technischen Feinheiten etwas näher. </p>
<h2 id="head-4a62d30abaeb5cd5d2e4545aabd13e81a819504f">Nutzung</h2>
<h3 id="head-52db644c60a52bcaed2c809cb51e1255bec6eb6e">Einrichtung</h3>
<ol type="1">
<li><p>Lade dir ein <a class="interwiki" title="WikiPediaDe" href="http://de.wikipedia.org/wiki/ISO-Image">iso-Image</a> aus dem <a class="external" href="https://systemausfall.org/toolforge/cryptobox/download">Download-Bereich</a> herunter. <em>[Die Entwicklung der CryptoBox befindet sich noch in einer frühen Phase. Momentan testen wir die ersten lauffähigen, funktionstüchtigen Versionen. In wenigen Tagen wird das erste Release verfügbar sein.]</em> </p>
</li>
<li><p>Kopiere dieses Image auf eine CD (RW). </p>
</li>
<li><p>Starte den zukünftigen Datei-Server mit der CryptoBox-LiveCD im Laufwerk. </p>
</li>
<li><p>Benutze die Web-Oberfläche der CryptoBox für: </p>
<ol type="1">
<li><p>die Netzwerk- und Sicherheitseinstellungen </p>
</li>
<li><p>die Einrichtung des verschlüsselten Dateisystems </p>
</li>
</ol>
</li>
<li><p>Fertig ist deine persönliche CryptoBox. </p>
</li>
</ol>
<h3 id="head-705e3d9ef31243833f13eb8a9827381f27727407">tägliche Nutzung</h3>
<ol type="1">
<li><p>Schalte deine CryptoBox ein. -kurz warten- </p>
</li>
<li><p>Gib im Browser das Kennwort fuer die verschlüsselten Daten ein. </p>
</li>
<li><p>Verwende die Daten der auf deiner CryptoBox bequem als Netzlaufwerk. </p>
</li>
</ol>
<h3 id="head-2dbc1550a8c92d00f6cbb94131b3e90651792212">Optimierung</h3>
<p>Du hast einen Verbesserungsvorschlag oder findest gar einen Fehler: </p>
<ul>
<li><p> Schreib's in unsere <a class="external" href="https://systemausfall.org/trac/cryptobox">Gedankensammelstelle</a> - wir beheben das Problem oder nehmen, bei Unklarheiten, Kontakt mit dir auf. </p>
</li>
</ul>
<h3 id="head-fabf23fd82a6a21311b13862d2d955056114a608">Vor- &amp; Nachteile</h3>
<p>Hier werden markantesten Vor- und Nachteile der CryptoBox Live-CD aus Sicht der NutzerInnen vorgestellt. </p>
<ul>
<li><p> Vorteile: </p>
<ul>
<li><p> einfache Handhabung - kein spezielles Fachwissen notwendig </p>
</li>
<li><p> erfordert keinerlei Softwareinstallation </p>
</li>
<li><p> mehrere Rechner im Netz können zentral sensible Daten speichern und teilen </p>
</li>
<li><p> im ausgeschaltenen Zustand sind die Daten für Unbefugte unbrauchbar (starke Verschlüsselung) </p>
</li>
<li><p> das System ist resistent gegenüber Schadsoftware (Viren, Würmer), da die CD nicht beschreibbar ist </p>
</li>
<li><p> die Übertragung des Passworts zur Aktivierung der Crypto-Daten erfolgt verschlüsselt (<a class="interwiki" title="WikiPediaDe" href="http://de.wikipedia.org/wiki/HTTPS">HTTPS</a>) </p>
</li>
<li><p> basiert auf einer der stabilsten und sichersten Linux Distributionen (<a class="external" href="http://ww.debian.org">Debian</a>) </p>
</li>
<li><p> minimale Hardware-Anforderungen </p>
</li>
</ul>
</li>
<li><p> Nachteile: </p>
<ul>
<li><p> ein extra Rechner ist notwendig (Stromverbrauch, Platzbedarf) </p>
</li>
<li><p> das lokale Netz muss vertrauenswürdig sein </p>
</li>
<li><p> die CryptoBox-CD muss gegen einen böswilligen Austausch gesichert werden (z.B. ein physisches Siegel) </p>
</li>
</ul>
</li>
</ul>
<h2 id="head-40e05c4967bb03e29499d0696362590be5c646d8">Entwicklung</h2>
<p>Eine CryptoBox-LiveCD wird in folgenden Schritten erstellt: </p>
<ol type="1">
<li><p>ein minimales <a class="external" href="http://www.debian.org">Debian</a>-System erzeugen (mit <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=dfsbuild">dfsbuild</a>) </p>
</li>
<li><p>spezifische Anpassungen des Systems vornehmen </p>
</li>
<li><p>die Verwaltungs- und <em>cgi</em>-Skripte hinzufügen </p>
</li>
<li><p>ein iso-Image daraus erzeugen </p>
</li>
</ol>
<p>Diese Schritte werden automatisiert durch ein Skript ausgeführt und können beliebig angepasst werden. </p>
<p>Ausführlichere Infos gibt's unter <a href="CryptoBoxDev.html">CryptoBoxDev</a>. </p>
<h3 id="head-ecfc074956b9f39a0fbfab314758db9cf39df4ce">Anforderungen</h3>
<ul>
<li><p> ein <a class="external" href="http://www.debian.org">Debian</a>-System (eine <em>chroot</em>-Umgebung genügt auch) </p>
</li>
<li><p> <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=qemu">qemu</a> zum Testen des erzeugten Systems in einer virtuellen Umgebung </p>
</li>
</ul>
<h3 id="head-c90560cd155843d48d791e731b9b6c0ee852dc9d">Mitmachen</h3>
<p>Beteilige dich an der Entwicklung der CryptoBox und werde reich und schön! <img src="../../var/www/cryptobox-img/smile4.png" alt=";)" height="15" width="15"> <br>
Nee im Ernst, wir freuen uns über jeden partizipierenden Menschen. Du wirst in einem entspannten Team reichlich Erfahrungen sammeln, eine nützliche Sache voranbringen und - wer weiß - vielleicht macht dich das auch schön. Schreib eine Mail an <em>svn-cryptobox[at]lists.systemausfall.org</em> und hab Spaß. </p>
<h3 id="head-64a0a5e5f036e433b2a7101016e6e6af96f5a29d">Versionsverwaltung</h3>
<p>Wir verwenden <a class="external" href="http://subversion.tigris.org">subversion</a> zur Koordination der Arbeit an der CryptoBox. Der Lese-Zugang zum Repository ist öffentlich. </p>
<p>Das Repository ist über folgende Adressen erreichbar: </p>
<dl>
<dt>Kommandozeile</dt>
<dd><p><a href="https://svn.systemausfall.org/svn/cryptobox">https://svn.systemausfall.org/svn/cryptobox</a> </p>
</dd>
<dt>Web-Interface</dt>
<dd><p><a href="https://systemausfall.org/websvn/cryptobox">https://systemausfall.org/websvn/cryptobox</a> </p>
</dd>
</dl>
<h3 id="head-fabf23fd82a6a21311b13862d2d955056114a608-2">Vor- &amp; Nachteile</h3>
<ul>
<li><p> Vorteile: </p>
<ul>
<li><p> schnelle Aktualisierung, durch das einfache build-System </p>
</li>
<li><p> Verwendung von Debian/stable Paketen (no dirty Hacks) </p>
</li>
</ul>
</li>
<li><p> Nachteile: </p>
<ul>
<li><p> ? </p>
</li>
</ul>
</li>
</ul>
<h2 id="head-a3671f2dd22b53b402496f62c4f62c847220f2a1">Rechtliches</h2>
<ol type="1">
<li><p>Alle Skripte unterliegen der <a class="external" href="http://www.fsf.org/licensing/licenses/gpl.html">GPL</a> - sie sind also quasi vollständig frei. </p>
</li>
<li><p>Die Dokumentation unterliegt einer <em><a class="external" href="http://creativecommons.org/licenses/by-sa/2.5/">Creative Commons</a></em>-Lizenz, damit wird die Möglichkeit der freien Verbreitung des gesammelten Wissens gewährleistet. </p>
</li>
<li><p>Wir übernehmen keinerlei Haftung für eventuelle Folgen, die durch die Nutzung einer CryptoBox entstehen könnten. </p>
</li>
</ol>
<a id="bottom"></a>
</div>
<p id="pageinfo" class="info" lang="en" dir="ltr">last edited 2005-08-31 09:13:52 by <span title=""></span></p>
</div> <!-- end page -->
</div><!-- end of 'words' -->
<div id="footer">
<a href="https://systemausfall.org/prj/cryptobox" title="Projekt-Seite">CryptoBox-Home</a>&nbsp;&nbsp;Die CryptoBox ist ein Projekt von <a href="https://systemausfall.org/senselab" title="systemausfall.org">sense.lab</a>
</div>
</div>
</div>
</body>
</html>

View File

@ -0,0 +1,99 @@
<?xml version="1.0" encoding="utf-16"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>CryptoBox</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-16" />
<link rel="stylesheet" media="screen" href="../../var/www/cryptobox.css" type="text/css" />
</head>
<body>
<div id="lang">
<a href="CryptoBoxEn.html">English</a><br/>
<a href="CryptoBox.html">Deutsch</a><br/>
</div>
<div id="main">
<div id="head">
<h1>Die CryptoBox</h1>
<h2>Privatsp&auml;hre f&uuml;r alle!</h2>
</div>
<div id="content">
<div id="menu">
<a href="CryptoBox.html">&Uuml;bersicht</a>
<a href="CryptoBoxUsers.html">Nutzerhandbuch</a>
<a href="CryptoBoxDev.html">Entwicklung</a>
</div>
<div id="doc">
<a id="top"></a>
<ol>
<li>
<a href="#head-73b6f7ae7db09b8e77e234854ce9c32d84ef23cb">Development documentation</a>
</li>
<li>
<a href="#head-ecdf55e59e852c76061f53d058b3fa698652c6c9">Contact</a>
</li>
<li>
<a href="#head-ff05e9c9617ceac43a54362db1e9045c13512416">Bug reports</a>
</li>
</ol>
<p> </p>
<hr>
<p> </p>
<h2 id="head-73b6f7ae7db09b8e77e234854ce9c32d84ef23cb">Development documentation</h2>
<p>The following pages are written for developers only. Users of the <a href="CryptoBox.html">CryptoBox</a> should read <a class="nonexistent" href="CryptoBoxUser.html">?</a>CryptoBoxUser instead. </p>
<ul>
<li><p> <a href="CryptoBoxDevPreparation.html">CryptoBoxDevPreparation</a> </p>
</li>
<li><p> <a href="CryptoBoxDevWorkFlow.html">CryptoBoxDevWorkFlow</a> </p>
</li>
<li><p> <a href="CryptoBoxDevCustomBuild.html">CryptoBoxDevCustomBuild</a> </p>
</li>
<li><p> <a href="CryptoBoxDevCustomConfigure.html">CryptoBoxDevCustomConfigure</a> </p>
</li>
<li><p> <a href="CryptoBoxDevValidation.html">CryptoBoxDevValidation</a> </p>
</li>
<li><p> <a href="CryptoBoxDevBackground.html">CryptoBoxDevBackground</a> </p>
</li>
<li><p> <a href="CryptoBoxDevKnownProblems.html">CryptoBoxDevKnownProblems</a> </p>
</li>
</ul>
<h2 id="head-ecdf55e59e852c76061f53d058b3fa698652c6c9">Contact</h2>
<p>We are waiting for your emails to <em>cryptobox[at]systemausfall.org</em>. </p>
<h2 id="head-ff05e9c9617ceac43a54362db1e9045c13512416">Bug reports</h2>
<p>Please use our issue tracker, if you discover problems: <a href="https://systemausfall.org/trac/cryptobox">https://systemausfall.org/trac/cryptobox</a> </p>
<a id="bottom"></a>
</div>
<p id="pageinfo" class="info" lang="en" dir="ltr">last edited 2005-09-13 23:50:26 by <span title="">lars</span></p>
</div> <!-- end page -->
</div><!-- end of 'words' -->
<div id="footer">
<a href="https://systemausfall.org/prj/cryptobox" title="Projekt-Seite">CryptoBox-Home</a>&nbsp;&nbsp;Die CryptoBox ist ein Projekt von <a href="https://systemausfall.org/senselab" title="systemausfall.org">sense.lab</a>
</div>
</div>
</div>
</body>
</html>

View File

@ -0,0 +1,116 @@
<?xml version="1.0" encoding="utf-16"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>CryptoBox</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-16" />
<link rel="stylesheet" media="screen" href="../../var/www/cryptobox.css" type="text/css" />
</head>
<body>
<div id="lang">
<a href="CryptoBoxEn.html">English</a><br/>
<a href="CryptoBox.html">Deutsch</a><br/>
</div>
<div id="main">
<div id="head">
<h1>Die CryptoBox</h1>
<h2>Privatsp&auml;hre f&uuml;r alle!</h2>
</div>
<div id="content">
<div id="menu">
<a href="CryptoBox.html">&Uuml;bersicht</a>
<a href="CryptoBoxUsers.html">Nutzerhandbuch</a>
<a href="CryptoBoxDev.html">Entwicklung</a>
</div>
<div id="doc">
<a id="top"></a>
<ol>
<li>
<a href="#head-2d71165918ee9e861cebf562e7f9be2c5c6328e4">dfsbuild</a>
</li>
<li>
<a href="#head-6e3d13fcf3a0765d2188125e9b0b0bcb95e50622">the kernel</a>
</li>
<li>
<a href="#head-e01e8e66ae77c00f4e9fa9bd190c3ff738540727">qemu</a>
</li>
<li>
<a href="#head-00c94b926ece7f2a601d696a8880f5e54155ce7a">alternative LiveCDs</a>
</li>
</ol>
<p> </p>
<hr>
<p> </p>
<p><em>back to <a href="CryptoBoxDev.html">CryptoBoxDev</a></em> </p>
<h2 id="head-2d71165918ee9e861cebf562e7f9be2c5c6328e4">dfsbuild</h2>
<p>The base system of the <a href="CryptoBox.html">CryptoBox</a> Live-CD is created by <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=dfsbuild">dfsbuild</a>. </p>
<p>It is recommended to use some kind of caching tool for the retrieval of the debian packages (e.g.: <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=apt-cacher">apt-cacher</a> or <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=apt-proxy">apt-proxy</a>). This saves a lot of bandwidth and time. </p>
<p>The documentation for <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=dfsbuild">dfsbuild</a> is sparse. But it is quite unlikely, that you will get in direct contact with it, as it is wrapped by <em>cbox-build</em>. However the following links may help you for specific problems: </p>
<ul>
<li><p> <a class="external" href="http://www.debian-administration.org/articles/125">Debian Administration: Building Debian CD-ROMS Part 1 - dfsbuild</a> </p>
</li>
<li><p> <a class="external" href="http://www.debian-administration.org/articles/149">Debian Administration: Getting in deep with dfsbuild</a> </p>
</li>
</ul>
<h2 id="head-6e3d13fcf3a0765d2188125e9b0b0bcb95e50622">the kernel</h2>
<p>The linux kernel for the <a href="CryptoBox.html">CryptoBox</a> is compiled statically. If you want to change it, you could follow this steps: </p>
<ol type="1">
<li><p>get the sources: <tt>apt-get&nbsp;install&nbsp;kernel-tree-2.6.11</tt> (or the version of your choice) </p>
</li>
<li><p>copy the exisiting config file <em>kernel/config-2.6.11</em> as <em>.config</em> into your kernel source directory </p>
</li>
<li><p>build the debian kernel package <tt>make-kpkg&nbsp;--revision=1.dfs&nbsp;--rootcmd=fakeroot&nbsp;kernel_image</tt> </p>
</li>
<li><p>change the kernel in the <em>unpackdebs</em> setting in <em>dfs-cbox.conf</em> (see <a href="CryptoBoxDevCustomBuild.html">CryptoBoxDevCustomBuild</a> for details) </p>
</li>
</ol>
<h2 id="head-e01e8e66ae77c00f4e9fa9bd190c3ff738540727">qemu</h2>
<p><a class="external" href="http://fabrice.bellard.free.fr/qemu/">Qemu</a> is a portable system emulator. It is a convenient tool to ease the development workflow, as you do not need to burn LiveCDs for testing. </p>
<h2 id="head-00c94b926ece7f2a601d696a8880f5e54155ce7a">alternative LiveCDs</h2>
<p>We tried some other LiveCDs before we decided to use <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=dfsbuild">dfsbuild</a>. The following pages describe their advantages and disadvantages as the base system for the <a href="CryptoBox.html">CryptoBox</a>: </p>
<ul>
<li><p> <a href="CryptoBoxKnoppixVerworfen.html">CryptoBoxKnoppixVerworfen</a> - Knoppix </p>
</li>
<li><p> <a href="CryptoBoxMorphixVerworfen.html">CryptoBoxMorphixVerworfen</a> - Morphix / IBuild </p>
</li>
</ul>
<a id="bottom"></a>
</div>
<p id="pageinfo" class="info" lang="en" dir="ltr">last edited 2005-09-13 23:03:58 by <span title="">lars</span></p>
</div> <!-- end page -->
</div><!-- end of 'words' -->
<div id="footer">
<a href="https://systemausfall.org/prj/cryptobox" title="Projekt-Seite">CryptoBox-Home</a>&nbsp;&nbsp;Die CryptoBox ist ein Projekt von <a href="https://systemausfall.org/senselab" title="systemausfall.org">sense.lab</a>
</div>
</div>
</div>
</body>
</html>

View File

@ -0,0 +1,148 @@
<?xml version="1.0" encoding="utf-16"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>CryptoBox</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-16" />
<link rel="stylesheet" media="screen" href="../../var/www/cryptobox.css" type="text/css" />
</head>
<body>
<div id="lang">
<a href="CryptoBoxEn.html">English</a><br/>
<a href="CryptoBox.html">Deutsch</a><br/>
</div>
<div id="main">
<div id="head">
<h1>Die CryptoBox</h1>
<h2>Privatsp&auml;hre f&uuml;r alle!</h2>
</div>
<div id="content">
<div id="menu">
<a href="CryptoBox.html">&Uuml;bersicht</a>
<a href="CryptoBoxUsers.html">Nutzerhandbuch</a>
<a href="CryptoBoxDev.html">Entwicklung</a>
</div>
<div id="doc">
<a id="top"></a>
<ol>
<li>
<a href="#head-27ea5a3ee88c7c2dfcfd4124719aadd726f1e2da">Overview</a>
</li>
<li>
<a href="#head-737db576c5f42abc0c78574d0ce5077809f288cb">Settings</a>
<ol>
<li>
<a href="#head-9d97886ad41e38cb6afe343aa68ff652030ab06b">dfsbuild settings</a>
</li>
<li>
<a href="#head-c2ae24a50a3706711c1a42e26176768438d4f160">CryptoBox development configuration</a>
</li>
<li>
<a href="#head-90ac95d2e5a50160cbf72b884b7b469a29c2fea1">SSH connection</a>
</li>
<li>
<a href="#head-6798893e2e3fd89a72b5b6821a0d3d08125367b9">qemu network configuration</a>
</li>
</ol>
</li>
</ol>
<p> </p>
<hr>
<p> </p>
<p><em>back to <a href="CryptoBoxDev.html">CryptoBoxDev</a></em> </p>
<h2 id="head-27ea5a3ee88c7c2dfcfd4124719aadd726f1e2da">Overview</h2>
<p>The following sections are useful, if you want to change the default settings of your personal <a href="CryptoBox.html">CryptoBox</a> development environment. </p>
<p>You should have completed the steps described in <a href="CryptoBoxDevPreparation.html">CryptoBoxDevPreparation</a>. </p>
<h2 id="head-737db576c5f42abc0c78574d0ce5077809f288cb">Settings</h2>
<h3 id="head-9d97886ad41e38cb6afe343aa68ff652030ab06b">dfsbuild settings</h3>
<p>All settings for <em>dfsbuild</em> can be found in <em>etc-defaults.d/dfs-cbox.conf</em>. </p>
<p>If you want to change any of them, you should do the following: </p>
<ol type="1">
<li><p>copy <em>etc-defaults.d/dfs-cbox.conf</em> file to <em>etc-local.d/</em> </p>
</li>
<li><p>change <em>etc-local.d/dfs-cbox.conf</em> according to your needs </p>
</li>
</ol>
<p>This allows you to use your own (personal) settings, without interfering with files under version control. </p>
<h3 id="head-c2ae24a50a3706711c1a42e26176768438d4f160">CryptoBox development configuration</h3>
<p>Some settings regarding the building, configuring and validating of the <a href="CryptoBox.html">CryptoBox</a> can be found in <em>etc-defaults.d/cbox-dev.conf</em>. </p>
<p>If you want to change any of them, you should do the following: </p>
<ol type="1">
<li><p>copy <em>etc-defaults.d/cbox-dev.conf</em> file to <em>etc-local.d/</em> </p>
</li>
<li><p>change <em>etc-local.d/cbox-dev.conf</em> according to your needs </p>
</li>
</ol>
<h3 id="head-90ac95d2e5a50160cbf72b884b7b469a29c2fea1">SSH connection</h3>
<p>The file <em>etc-defaults.d/ssh_config</em> is used to establish a connection to a running <a href="CryptoBox.html">CryptoBox</a> system. </p>
<p>It can be necessary to change these settings, if: </p>
<ul>
<li><p> you do not want to use the default IP for the <a href="CryptoBox.html">CryptoBox</a> </p>
</li>
<li><p> or the <a href="CryptoBox.html">CryptoBox</a> is not within your local network. </p>
</li>
</ul>
<p>If you want to change some settings, you should do the following: </p>
<ol type="1">
<li><p>copy <em>etc-defaults.d/ssh_config</em> file to <em>etc-local.d/</em> </p>
</li>
<li><p>change <em>etc-local.d/ssh_config</em> according to your needs </p>
</li>
</ol>
<h3 id="head-6798893e2e3fd89a72b5b6821a0d3d08125367b9">qemu network configuration</h3>
<p>The file <em>etc-defauolts.d/qemu-ifup</em> is used for the <a href="CryptoBox.html">CryptoBox</a> emulation with <em>qemu</em>. See <tt>man&nbsp;qemu</tt> for details. </p>
<p>If you want to change some settings, you should do the following: </p>
<ol type="1">
<li><p>copy <em>etc-defaults.d/qemu-ifup</em> file to <em>etc-local.d/</em> </p>
</li>
<li><p>change <em>etc-local.d/qemu-ifup</em> according to your needs </p>
</li>
</ol>
<a id="bottom"></a>
</div>
<p id="pageinfo" class="info" lang="en" dir="ltr">last edited 2005-09-05 16:14:50 by <span title=""></span></p>
</div> <!-- end page -->
</div><!-- end of 'words' -->
<div id="footer">
<a href="https://systemausfall.org/prj/cryptobox" title="Projekt-Seite">CryptoBox-Home</a>&nbsp;&nbsp;Die CryptoBox ist ein Projekt von <a href="https://systemausfall.org/senselab" title="systemausfall.org">sense.lab</a>
</div>
</div>
</div>
</body>
</html>

View File

@ -0,0 +1,110 @@
<?xml version="1.0" encoding="utf-16"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>CryptoBox</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-16" />
<link rel="stylesheet" media="screen" href="../../var/www/cryptobox.css" type="text/css" />
</head>
<body>
<div id="lang">
<a href="CryptoBoxEn.html">English</a><br/>
<a href="CryptoBox.html">Deutsch</a><br/>
</div>
<div id="main">
<div id="head">
<h1>Die CryptoBox</h1>
<h2>Privatsp&auml;hre f&uuml;r alle!</h2>
</div>
<div id="content">
<div id="menu">
<a href="CryptoBox.html">&Uuml;bersicht</a>
<a href="CryptoBoxUsers.html">Nutzerhandbuch</a>
<a href="CryptoBoxDev.html">Entwicklung</a>
</div>
<div id="doc">
<a id="top"></a>
<ol>
<li>
<a href="#head-eaec6be4efea7b38c41712778bfd4fb8d2827d3c">Overview</a>
</li>
<li>
<a href="#head-51173f0423ca91d36cd0cfcdc75a06d90cc087ee">Locations</a>
</li>
<li>
<a href="#head-9b9b6463081c4d9d13e3aadebe9daaf61fa67b5c">Examples</a>
</li>
</ol>
<p> </p>
<hr>
<p> </p>
<p><em>back to <a href="CryptoBoxDev.html">CryptoBoxDev</a></em> </p>
<h2 id="head-eaec6be4efea7b38c41712778bfd4fb8d2827d3c">Overview</h2>
<p>You may change nearly every aspect of the <a href="CryptoBox.html">CryptoBox</a> by using the custom configuration hook directory. </p>
<p>Any script inside of this directory will be executed after the default configuration procedure (see <a href="CryptoBoxDevWorkFlow.html">CryptoBoxDevWorkFlow</a>). </p>
<p>The order of execution is defined by the names of the scripts (alphabetically). </p>
<h2 id="head-51173f0423ca91d36cd0cfcdc75a06d90cc087ee">Locations</h2>
<p>Some example customization scripts can be found in <em>configure-examples.d/</em>. </p>
<p>You may put your scripts into <em>configure-local.d/</em>. They will be sourced by <em>cbox-build.sh</em>. </p>
<h2 id="head-9b9b6463081c4d9d13e3aadebe9daaf61fa67b5c">Examples</h2>
<p>The examples in <em>configure-examples.d/</em> can be copied to <em>configure-local.d/</em> and adjusted to your needs. </p>
<dl>
<dt>set_default_ip</dt>
<dd><p>change the default IP address of the <a href="CryptoBox.html">CryptoBox</a> </p>
</dd>
<dt>set_default_language</dt>
<dd><p>set the default language </p>
</dd>
<dt>set_default_timeout</dt>
<dd><p>set the default idle time for automatic unmounting </p>
</dd>
<dt>set_hostname</dt>
<dd><p>change the default hostname </p>
</dd>
<dt>set_root_pw</dt>
<dd><p>change the password of root (only useful for a development <a href="CryptoBox.html">CryptoBox</a>) </p>
</dd>
<dt>import_authorized_keys</dt>
<dd><p>upload a <em>ssh</em> key for passwordless access to a development <a href="CryptoBox.html">CryptoBox</a> </p>
</dd>
<dt>set_scan_devices</dt>
<dd><p>where to look for usable harddisks </p>
</dd>
</dl>
<a id="bottom"></a>
</div>
<p id="pageinfo" class="info" lang="en" dir="ltr">last edited 2005-09-05 20:16:37 by <span title=""></span></p>
</div> <!-- end page -->
</div><!-- end of 'words' -->
<div id="footer">
<a href="https://systemausfall.org/prj/cryptobox" title="Projekt-Seite">CryptoBox-Home</a>&nbsp;&nbsp;Die CryptoBox ist ein Projekt von <a href="https://systemausfall.org/senselab" title="systemausfall.org">sense.lab</a>
</div>
</div>
</div>
</body>
</html>

View File

@ -0,0 +1,79 @@
<?xml version="1.0" encoding="utf-16"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>CryptoBox</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-16" />
<link rel="stylesheet" media="screen" href="../../var/www/cryptobox.css" type="text/css" />
</head>
<body>
<div id="lang">
<a href="CryptoBoxEn.html">English</a><br/>
<a href="CryptoBox.html">Deutsch</a><br/>
</div>
<div id="main">
<div id="head">
<h1>Die CryptoBox</h1>
<h2>Privatsp&auml;hre f&uuml;r alle!</h2>
</div>
<div id="content">
<div id="menu">
<a href="CryptoBox.html">&Uuml;bersicht</a>
<a href="CryptoBoxUsers.html">Nutzerhandbuch</a>
<a href="CryptoBoxDev.html">Entwicklung</a>
</div>
<div id="doc">
<a id="top"></a>
<ol>
<li>
<a href="#head-3d279b986395c95455d4d831054f9664ac846790">qemu</a>
<ol>
<li>
<a href="#head-aa082f09cdb79c9a715826562efebd23cb8e9dfc">smbd: segfault</a>
</li>
</ol>
</li>
</ol>
<p> </p>
<hr>
<p> </p>
<h2 id="head-3d279b986395c95455d4d831054f9664ac846790">qemu</h2>
<p>== interleaved files not (yet) supported = You should update <em>qemu</em> to version 0.7 or higher. </p>
<h3 id="head-aa082f09cdb79c9a715826562efebd23cb8e9dfc">smbd: segfault</h3>
<p>This happens under certain circumstances. We do not know a solution for this problem. </p>
<a id="bottom"></a>
</div>
<p id="pageinfo" class="info" lang="en" dir="ltr">last edited 2005-09-13 23:17:39 by <span title="">lars</span></p>
</div> <!-- end page -->
</div><!-- end of 'words' -->
<div id="footer">
<a href="https://systemausfall.org/prj/cryptobox" title="Projekt-Seite">CryptoBox-Home</a>&nbsp;&nbsp;Die CryptoBox ist ein Projekt von <a href="https://systemausfall.org/senselab" title="systemausfall.org">sense.lab</a>
</div>
</div>
</div>
</body>
</html>

View File

@ -0,0 +1,136 @@
<?xml version="1.0" encoding="utf-16"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>CryptoBox</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-16" />
<link rel="stylesheet" media="screen" href="../../var/www/cryptobox.css" type="text/css" />
</head>
<body>
<div id="lang">
<a href="CryptoBoxEn.html">English</a><br/>
<a href="CryptoBox.html">Deutsch</a><br/>
</div>
<div id="main">
<div id="head">
<h1>Die CryptoBox</h1>
<h2>Privatsp&auml;hre f&uuml;r alle!</h2>
</div>
<div id="content">
<div id="menu">
<a href="CryptoBox.html">&Uuml;bersicht</a>
<a href="CryptoBoxUsers.html">Nutzerhandbuch</a>
<a href="CryptoBoxDev.html">Entwicklung</a>
</div>
<div id="doc">
<a id="top"></a>
<ol>
<li>
<a href="#head-5b50aeed8139c95e5a2670d4248978d942c5edd6">Software requirements</a>
<ol>
<li>
<a href="#head-143e3ec00a024bf2d9486f21dccab7ddc0ac3709">Packages</a>
</li>
<li>
<a href="#head-8abff5fecd19a74f1f5602aa82c8783c80b6862e">Kernel</a>
</li>
</ol>
<li>
<a href="#head-e988a63aa4744649892e3c85e239927edb01f336">Get the source</a>
</li>
<li>
<a href="#head-3b183abdfebed7afdbbdbb7625f85081882beb70">First build</a>
</li>
<li>
<a href="#head-08bd0ad2103b9f58bd026d64c0bcb333f3bbd90b">Finished</a>
</li>
</ol>
<p> </p>
<hr>
<p> </p>
<p><em>back to <a href="CryptoBoxDev.html">CryptoBoxDev</a></em> </p>
<h2 id="head-5b50aeed8139c95e5a2670d4248978d942c5edd6">Software requirements</h2>
<h3 id="head-143e3ec00a024bf2d9486f21dccab7ddc0ac3709">Packages</h3>
<p>We use <a class="external" href="http://debian.org">Debian</a> as our development environment. This was a natural choice, as the <a href="CryptoBox.html">CryptoBox</a>-LiveCD is also based on Debian. Other distributions should work too, of course - <a class="interwiki" title="Acronym" href="http://www.acronymfinder.com/af-query.asp?String=exact&amp;Acronym=YMMV">YMMV</a>. </p>
<p>required: </p>
<ul>
<li><p> <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=dfsbuild">dfsbuild</a> </p>
</li>
<li><p> <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=subversion">subversion</a> </p>
</li>
<li><p> <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=chroot">chroot</a> </p>
</li>
</ul>
<p>recommended: </p>
<ul>
<li><p> <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=apt-cacher">apt-cacher</a>, <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=apt-proxy">apt-proxy</a> or <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=approx">approx</a> </p>
</li>
<li><p> <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=qemu">qemu</a> </p>
</li>
<li><p> <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=curl">curl</a> </p>
</li>
</ul>
<h3 id="head-8abff5fecd19a74f1f5602aa82c8783c80b6862e">Kernel</h3>
<p>If you want to use <a class="external" href="http://fabrice.bellard.free.fr/qemu/">qemu</a> to test your <a href="CryptoBox.html">CryptoBox</a> in a virtual environment, then you will need the <em>tun/tap</em> kernel feature.
</p>
<pre>
CONFIG_TUN=m</pre>
<h2 id="head-e988a63aa4744649892e3c85e239927edb01f336">Get the source</h2>
<p>Download the latest release from our <a class="external" href="http://subversion.tigris.org">subversion</a>-Repository:
</p>
<pre>
svn checkout https://svn.systemausfall.org/svn/cryptobox/trunk </pre>
<h2 id="head-3b183abdfebed7afdbbdbb7625f85081882beb70">First build</h2>
<p>run <tt>scripts/cbox-build.sh&nbsp;release</tt> as <em>root</em> - hopefully, there should be no errors <img src="../../var/www/cryptobox-img/smile.png" alt=":)" height="15" width="15"> </p>
<p>Hint: This step will fail, if you did not install <em>apt-cacher</em>. See <a href="CryptoBoxDevCustomBuild.html">CryptoBoxDevCustomBuild</a> for details on how to change the build-configuration settings (in this case: <em>mirror</em> in <em>dfs-cbox.conf</em>). </p>
<h2 id="head-08bd0ad2103b9f58bd026d64c0bcb333f3bbd90b">Finished</h2>
<p>Now you can start to pariticipate in the development of the <a href="CryptoBox.html">CryptoBox</a> or simply customize your own <a href="CryptoBox.html">CryptoBox</a>-LiveCD. </p>
<p>See <a href="CryptoBoxDevWorkFlow.html">CryptoBoxDevWorkFlow</a> for details of how to use the developer's tools of the <a href="CryptoBox.html">CryptoBox</a>. </p>
<p><a href="CryptoBoxDevCustomBuild.html">CryptoBoxDevCustomBuild</a> shows some examples for local customizations of the <a href="CryptoBox.html">CryptoBox</a>. </p>
<a id="bottom"></a>
</div>
<p id="pageinfo" class="info" lang="en" dir="ltr">last edited 2005-09-14 09:43:11 by <span title="">lars</span></p>
</div> <!-- end page -->
</div><!-- end of 'words' -->
<div id="footer">
<a href="https://systemausfall.org/prj/cryptobox" title="Projekt-Seite">CryptoBox-Home</a>&nbsp;&nbsp;Die CryptoBox ist ein Projekt von <a href="https://systemausfall.org/senselab" title="systemausfall.org">sense.lab</a>
</div>
</div>
</div>
</body>
</html>

View File

@ -0,0 +1,107 @@
<?xml version="1.0" encoding="utf-16"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>CryptoBox</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-16" />
<link rel="stylesheet" media="screen" href="../../var/www/cryptobox.css" type="text/css" />
</head>
<body>
<div id="lang">
<a href="CryptoBoxEn.html">English</a><br/>
<a href="CryptoBox.html">Deutsch</a><br/>
</div>
<div id="main">
<div id="head">
<h1>Die CryptoBox</h1>
<h2>Privatsp&auml;hre f&uuml;r alle!</h2>
</div>
<div id="content">
<div id="menu">
<a href="CryptoBox.html">&Uuml;bersicht</a>
<a href="CryptoBoxUsers.html">Nutzerhandbuch</a>
<a href="CryptoBoxDev.html">Entwicklung</a>
</div>
<div id="doc">
<a id="top"></a>
<ol>
<li>
<a href="#head-5e20146fd39363329427c6251209cccb8d374f3e">Overview</a>
</li>
<li>
<a href="#head-6e1d416048c4d8ebfb5b3919b4d924c77e652a7b">Validate</a>
</li>
<li>
<a href="#head-5634566bd24f83d397b43525fc62685f6e678fbf">How to create a test</a>
</li>
</ol>
<p> </p>
<hr>
<p> </p>
<p><em>back to <a href="CryptoBoxDev.html">CryptoBoxDev</a></em> </p>
<h2 id="head-5e20146fd39363329427c6251209cccb8d374f3e">Overview</h2>
<p>The validation feature allows to check the programming logic of the <a href="CryptoBox.html">CryptoBox</a>. A lot of test cases are defined to test as many functions of the <a href="CryptoBox.html">CryptoBox</a> as possible. </p>
<p>The requests are processed with <a class="external" href="http://curl.haxx.se/">curl</a>. </p>
<p>The received web page is saved to allow a later design review or css debugging. </p>
<p>The current state of the <a href="CryptoBox.html">CryptoBox</a> is represented by ten single values (e.g.: <em>box is configured</em>, <em>IP of the box</em>, <em>current language setting</em>, ...), which are invisibly a part of each html page (as comments). The returned status of every request is compared to the predicted value of the test case. </p>
<p>Similar test cases are pooled into test groups (e.g.: <em>initialization</em>, <em>configuration</em> and <em>mounting</em>). </p>
<h2 id="head-6e1d416048c4d8ebfb5b3919b4d924c77e652a7b">Validate</h2>
<p>Run <tt>scripts/validate.sh&nbsp;check_all</tt> to conduct all tests of all groups. See <tt>scripts/validate.sh&nbsp;help</tt> for other actions. </p>
<p>The results will be saved in <em>validation/report</em>. </p>
<p>In addition to every single retrieved page, a html page called <em>summary.html</em> is created, which contains the state checks of all tests in a group. </p>
<h2 id="head-5634566bd24f83d397b43525fc62685f6e678fbf">How to create a test</h2>
<p>All test cases can be found in <em>validation/test-cases</em>. </p>
<p>Every test consists of: </p>
<dl>
<dt>input.curl</dt>
<dd><p>the configuration file for the <em>curl</em> request </p>
</dd>
<dt>output</dt>
<dd><p>the predicted state of the <a href="CryptoBox.html">CryptoBox</a> after the call </p>
</dd>
<dt>description</dt>
<dd><p>a short description of the test (will be used for the summary) </p>
</dd>
<dt>delay</dt>
<dd><p>[optional] time to wait after this test </p>
</dd>
</dl>
<p>Use the existing test cases as templates for new tests. </p>
<p>Any logical path of the web interface CGI should be validated by a test case. </p>
<a id="bottom"></a>
</div>
<p id="pageinfo" class="info" lang="en" dir="ltr">last edited 2005-09-13 22:09:03 by <span title="">lars</span></p>
</div> <!-- end page -->
</div><!-- end of 'words' -->
<div id="footer">
<a href="https://systemausfall.org/prj/cryptobox" title="Projekt-Seite">CryptoBox-Home</a>&nbsp;&nbsp;Die CryptoBox ist ein Projekt von <a href="https://systemausfall.org/senselab" title="systemausfall.org">sense.lab</a>
</div>
</div>
</div>
</body>
</html>

View File

@ -0,0 +1,195 @@
<?xml version="1.0" encoding="utf-16"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>CryptoBox</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-16" />
<link rel="stylesheet" media="screen" href="../../var/www/cryptobox.css" type="text/css" />
</head>
<body>
<div id="lang">
<a href="CryptoBoxEn.html">English</a><br/>
<a href="CryptoBox.html">Deutsch</a><br/>
</div>
<div id="main">
<div id="head">
<h1>Die CryptoBox</h1>
<h2>Privatsp&auml;hre f&uuml;r alle!</h2>
</div>
<div id="content">
<div id="menu">
<a href="CryptoBox.html">&Uuml;bersicht</a>
<a href="CryptoBoxUsers.html">Nutzerhandbuch</a>
<a href="CryptoBoxDev.html">Entwicklung</a>
</div>
<div id="doc">
<a id="top"></a>
<ol>
<li>
<a href="#head-adacf7a8271d3f6fe8bdfb9773ac3b1f4b050f9a">Preparations</a>
</li>
<li>
<a href="#head-61cec4152bb64ed5799ae7422f7150a4e3bc4860">Create a CryptoBox-LiveCD - step by step</a>
<ol>
<li>
<a href="#head-0ace019b2e7f624b4af95b328aa511a0453bd656">Build the base system</a>
</li>
<li>
<a href="#head-b12afd5dca3afd8290b311944f1dd1ab3d16fa6f">Configure the base image</a>
</li>
<li>
<a href="#head-22535d762de22b1c0b1be445d1ee560bc72a481f">Remove development features</a>
</li>
<li>
<a href="#head-09b84611139bf8f53380587b5b09588d97b4ff1c">Create an iso image</a>
</li>
<li>
<a href="#head-c78fdb473369885eacd6cb10fcfb00cad50f2670">Burn the CD</a>
</li>
</ol>
<li>
<a href="#head-995d4701e181a853fd1d87811b76e802a1c61d96">Test the CryptoBox-LiveCD</a>
<ol>
<li>
<a href="#head-25203ae5362d0bbc82ec84b349fb463c1e615b48">Chroot: quick &amp; dirty tests</a>
</li>
<li>
<a href="#head-2278b94f0a24871a501d80c4e6e0c53d1f5621ca">Qemu: nearly complete emulation</a>
</li>
</ol>
<li>
<a href="#head-0692ec42b1a03fdbc5eb920dd05b86c5f04130e6">Debugging and merging</a>
<ol>
<li>
<a href="#head-b163acd694c2681db27c18414367513219cfc06f">Development on a running system</a>
</li>
<li>
<a href="#head-4bfb5d81f79e604fd8a4eb20a6d709bc65562fe3">Uploading a new release</a>
</li>
</ol>
</li>
</ol>
<p> </p>
<hr>
<p> </p>
<p><em>back to <a href="CryptoBoxDev.html">CryptoBoxDev</a></em> </p>
<h2 id="head-adacf7a8271d3f6fe8bdfb9773ac3b1f4b050f9a">Preparations</h2>
<p>You should have completed the steps described in <a href="CryptoBoxDevPreparation.html">CryptoBoxDevPreparation</a>. </p>
<h2 id="head-61cec4152bb64ed5799ae7422f7150a4e3bc4860">Create a CryptoBox-LiveCD - step by step</h2>
<p>The following steps can be executed in the order of their appearance. </p>
<p>Usually there is no need to repeat the whole process, after you changed some parts of the <a href="CryptoBox.html">CryptoBox</a>. Especially the first step (building of the base system with <em>dfsbuild</em>) may usually be skipped. </p>
<p>Every step of the building process must be executed as <em>root</em>. </p>
<h3 id="head-0ace019b2e7f624b4af95b328aa511a0453bd656">Build the base system</h3>
<p>Run <tt>scripts/cbox-build.sh&nbsp;dfsbuild</tt> to create the base system for the LiveCD. </p>
<p>The result can be found in <em>_builddir/cd1/image</em>. </p>
<p>If you do not want to use the <em><a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=apt-cacher">apt-cacher</a></em> to save bandwidth and time, then you should modify the <em>mirror</em>-setting in <em>dfs-cbox.conf</em> (see <a href="CryptoBoxDevCustomBuild.html">CryptoBoxDevCustomBuild</a> for details). </p>
<h3 id="head-b12afd5dca3afd8290b311944f1dd1ab3d16fa6f">Configure the base image</h3>
<p>Run <tt>scripts/cbox-build.sh&nbsp;config</tt> to copy the <a href="CryptoBox.html">CryptoBox</a>-specific files to the base image. </p>
<p>TODO: link to cbox-build.sh-manpage </p>
<h3 id="head-22535d762de22b1c0b1be445d1ee560bc72a481f">Remove development features</h3>
<p>The original base system, that was created by <em>dfsbuild</em> contains a lot packages and some scripts, that are only useful during development. You should remove them, as they case severe security implications. </p>
<p>To reduce the <a href="CryptoBox.html">CryptoBox</a>-LiveCD to the usable minimum for operational use, you should run <tt>scripts/cbox-build.sh&nbsp;harden</tt>. </p>
<h3 id="head-09b84611139bf8f53380587b5b09588d97b4ff1c">Create an iso image</h3>
<p>To burn a <a href="CryptoBox.html">CryptoBox</a>-LiveCD, you need an bootable <em>iso9660</em>-image. </p>
<p>Create the <em>iso</em> image with <tt>scripts/cbox-build.sh&nbsp;iso</tt>. The resulting file can be found at <em>_builddir/cd1/cryptobox.iso</em>. </p>
<h3 id="head-c78fdb473369885eacd6cb10fcfb00cad50f2670">Burn the CD</h3>
<p>Do it manually: <tt>cdrecord&nbsp;-v&nbsp;dev=0,0,0&nbsp;_builddir/cd1/cryptobox.iso</tt> (change the <em>dev</em> setting according to your setup). </p>
<p>Let the script do it for you: <tt>scripts/cbox-build.sh&nbsp;burn</tt> (maybe you have to change the <em>CDWRITER</em> setting in <em>cbox-dev.conf</em> - see <a href="CryptoBoxDevCustomBuild.html">CryptoBoxDevCustomBuild</a>). </p>
<p>Of course, it is not wise to use CD-R media. CD-RW consume less resources. </p>
<h2 id="head-995d4701e181a853fd1d87811b76e802a1c61d96">Test the CryptoBox-LiveCD</h2>
<p>This section is only useful for developers, who want to improve or change the <a href="CryptoBox.html">CryptoBox</a> system. </p>
<h3 id="head-25203ae5362d0bbc82ec84b349fb463c1e615b48">Chroot: quick &amp; dirty tests</h3>
<p>If you modified the <em>perl</em>- or <em>shell</em>-scripts of the <a href="CryptoBox.html">CryptoBox</a>, then you can check for syntax errors by running them in a <em>chroot</em> environment. Be careful: you have access to all ressources of your computer, while you are working within a <em>chroot</em> environment - so you can easily repartition your real disk ... </p>
<p>To start a <em>chroot</em> environment, you can execute <tt>scripts/cbox-dev.sh&nbsp;chroot</tt>. </p>
<p>For more intensive tests, you may use <em>qemu</em> (see below) or burn real LiveCDs - of course this would take much more time. </p>
<h3 id="head-2278b94f0a24871a501d80c4e6e0c53d1f5621ca">Qemu: nearly complete emulation</h3>
<p>The processor emulator <a class="external" href="http://fabrice.bellard.free.fr/qemu">qemu</a> allows you test the <a href="CryptoBox.html">CryptoBox</a> in a virtual environment, that is completely separated from your real computer's resources. It is the tool of choice, if you do nat have a real computer around for testing. </p>
<p>Beware - there are some problems, when using <em>qemu</em>: </p>
<ul>
<li><p> <em>smbd</em> does not start (segfault) </p>
</li>
<li><p> ??? </p>
</li>
</ul>
<p>To start a <em>qemu</em> emulation of the <em>iso</em> image, you may type: <tt>scripts/cbox-dev.sh&nbsp;qemu</tt>. </p>
<h2 id="head-0692ec42b1a03fdbc5eb920dd05b86c5f04130e6">Debugging and merging</h2>
<p>This section is only useful for developers, who want to develop on a running <a href="CryptoBox.html">CryptoBox</a> system (emulated or real). </p>
<p>You may access the <a href="CryptoBox.html">CryptoBox</a> directly or you can use <em>ssh</em> to open a remote session (<tt>./cbox-dev.sh&nbsp;ssh</tt>). </p>
<h3 id="head-b163acd694c2681db27c18414367513219cfc06f">Development on a running system</h3>
<p>When you run an emulation or test a real LiveCD, you may encounter problems and bugs. To test your fixes for these problems, it is convenient, to change the running test system. Afterwards you can merge these changes to your local development copy. </p>
<p>Type <tt>scripts/cbox-dev.sh&nbsp;diff</tt> to see the changes, you made on the running <a href="CryptoBox.html">CryptoBox</a> system. </p>
<p>Type <tt>scripts/cbox-dev.sh&nbsp;merge</tt> to merge these changes to your local working copy. </p>
<h3 id="head-4bfb5d81f79e604fd8a4eb20a6d709bc65562fe3">Uploading a new release</h3>
<p>Alternatively you may also upload a new version of your local working copy to the running <a href="CryptoBox.html">CryptoBox</a> system. </p>
<p>Type <tt>scripts/cbox-dev.sh&nbsp;upload</tt> - beware: all recent changes you made to the running <a href="CryptoBox.html">CryptoBox</a> system, are lost. </p>
<a id="bottom"></a>
</div>
<p id="pageinfo" class="info" lang="en" dir="ltr">last edited 2005-09-08 14:50:57 by <span title="">lars</span></p>
</div> <!-- end page -->
</div><!-- end of 'words' -->
<div id="footer">
<a href="https://systemausfall.org/prj/cryptobox" title="Projekt-Seite">CryptoBox-Home</a>&nbsp;&nbsp;Die CryptoBox ist ein Projekt von <a href="https://systemausfall.org/senselab" title="systemausfall.org">sense.lab</a>
</div>
</div>
</div>
</body>
</html>

View File

@ -0,0 +1,127 @@
<?xml version="1.0" encoding="utf-16"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>CryptoBox</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-16" />
<link rel="stylesheet" media="screen" href="../../var/www/cryptobox.css" type="text/css" />
</head>
<body>
<div id="lang">
<a href="CryptoBoxEn.html">English</a><br/>
<a href="CryptoBox.html">Deutsch</a><br/>
</div>
<div id="main">
<div id="head">
<h1>Die CryptoBox</h1>
<h2>Privatsp&auml;hre f&uuml;r alle!</h2>
</div>
<div id="content">
<div id="menu">
<a href="CryptoBox.html">&Uuml;bersicht</a>
<a href="CryptoBoxUsers.html">Nutzerhandbuch</a>
<a href="CryptoBoxDev.html">Entwicklung</a>
</div>
<div id="doc">
<a id="top"></a>
<h2 id="head-e1b7c812b69ab0a8c8da0aeed98c817e50092b14">News</h2>
<p><em>This is a first overview of the <a href="CryptoBox.html">CryptoBox</a> Live-CD. We apologize for publishing the documentation atm in german only. We started the <a href="CryptoBox.html">CryptoBox</a> project for a german speaking association. For now we're deeply into bringing this CD up and running, so we prefer coding than translating docs ;). Sorry!</em> </p>
<p><em>Feel free to start a translation in this wiki. Otherwise just be patient a few weeks. (it's 12th of july as i'm writing)</em> </p>
<p><em><strong>Update [8th of September]</strong>: nearly all development related documentations are written in english - take a look at the links in <a href="CryptoBoxDev.html">CryptoBoxDev</a></em> </p>
<p>We plan to release the first <a href="CryptoBox.html">CryptoBox</a>-LiveCD before October 02005. </p>
<h2 id="head-bcd3c71e6cd0adb01302f5903f235299682ae28a">Overview</h2>
<p>The <a href="CryptoBox.html">CryptoBox</a> is a Debian/Linux based live-cd. This CD boots up, starting a secure fileserver. Even non-technical users are able to store their data on its encrypted harddisk. There is no special knowledge about cryptgraphy or servers required at all. </p>
<h2 id="head-06e39b97d2b48d950da32608efa367371bb0a9cc">Specs</h2>
<div>
<table>
<tr>
<td>
<p>system</p>
</td>
<td>
<p>Debian/Linux based Live-CD</p>
</td>
</tr>
<tr>
<td>
<p>needed hardware</p>
</td>
<td>
<p> "outdated" PC (i386 p1-100 32MB RAM minimum)</p>
</td>
</tr>
<tr>
<td>
<p>supported clients</p>
</td>
<td>
<p><a class="interwiki" title="WikiPedia" href="http://en.wikipedia.org/wiki/Operating_System">*nix; *bsd; Windows; Mac OS</a></p>
</td>
</tr>
<tr>
<td>
<p>internal fileserver</p>
</td>
<td>
<p><a class="external" href="http://samba.org">samba</a> (Networkshares)</p>
</td>
</tr>
<tr>
<td>
<p>userinterface</p>
</td>
<td>
<p>fully remote controlled via webbrowser (Perl,https interface)</p>
</td>
</tr>
<tr>
<td>
<p>encryption</p>
</td>
<td>
<p><a class="interwiki" title="WikiPedia" href="http://en.wikipedia.org/wiki/Advanced_Encryption_Standard">AES</a> via device-mapper</p>
</td>
</tr>
</table>
</div>
<h2 id="head-8d738f62cb1a70005c64de686c424efe89f07ad2">Development</h2>
<p>Browse the source code in the <a class="interwiki" title="SubVersion" href="/websvn/cryptobox">CryptoBox-websvn</a> </p>
<h2 id="head-f5510e22bd4e832da55c40e1e95886a46fc05b7e">TODO</h2>
<p>Read more about the <a href="CryptoBox.html">CryptoBox</a> in german or try kind of a babelfish. </p>
<a id="bottom"></a>
</div>
<p id="pageinfo" class="info" lang="en" dir="ltr">last edited 2005-09-08 15:05:11 by <span title="">lars</span></p>
</div> <!-- end page -->
</div><!-- end of 'words' -->
<div id="footer">
<a href="https://systemausfall.org/prj/cryptobox" title="Projekt-Seite">CryptoBox-Home</a>&nbsp;&nbsp;Die CryptoBox ist ein Projekt von <a href="https://systemausfall.org/senselab" title="systemausfall.org">sense.lab</a>
</div>
</div>
</div>
</body>
</html>

View File

@ -0,0 +1,384 @@
<?xml version="1.0" encoding="utf-16"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>CryptoBox</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-16" />
<link rel="stylesheet" media="screen" href="../../var/www/cryptobox.css" type="text/css" />
</head>
<body>
<div id="lang">
<a href="CryptoBoxEn.html">English</a><br/>
<a href="CryptoBox.html">Deutsch</a><br/>
</div>
<div id="main">
<div id="head">
<h1>Die CryptoBox</h1>
<h2>Privatsp&auml;hre f&uuml;r alle!</h2>
</div>
<div id="content">
<div id="menu">
<a href="CryptoBox.html">&Uuml;bersicht</a>
<a href="CryptoBoxUsers.html">Nutzerhandbuch</a>
<a href="CryptoBoxDev.html">Entwicklung</a>
</div>
<div id="doc">
<a id="top"></a>
<ol>
<li>
<a href="#head-5ed902c46ecec30abecc26fdcd3571661e1e2a45">Allgemeines</a>
<ol>
<li>
<a href="#head-2ee2a633402e09cd9bb956d6c73ad9b088206eab">Zieleigenschaften</a>
</li>
<li>
<a href="#head-a7956f960cfe72128ad4cf88f2a0605cb499fa40">Zielgruppe</a>
</li>
<li>
<a href="#head-4fefceadc6642bb8cd44d7308040f968b855e79c">Auslieferungsformen</a>
</li>
</ol>
<li>
<a href="#head-40253d66b9a6db89547453b5453e795a3361afc0">Dienste</a>
<ol>
<li>
<a href="#head-9dc7b4d5d46187d6420a41a42193dc91d464c24d">webinterface</a>
</li>
<li>
<a href="#head-b618d1664742249c31eb99c067de8ae8bc6bbde1">Samba</a>
</li>
<li>
<a href="#head-ebabfe595d80837be2d98d956b2ef22c259bc2f2">cups [optional]</a>
</li>
</ol>
<li>
<a href="#head-7f6469d2c5fb67ffd47693c7ab76b3e98bdf28ff">Kommunikationssicherheit</a>
<ol>
<li>
<a href="#head-bc34afcd3fbcd91e984610f0006ac181b327d114">Varinate A - Dienste verlangen Zertifikate einer CA</a>
</li>
<li>
<a href="#head-b4ffedcc87fc9030c6577a496492a2a85ee9786b">Variante B - ipsec</a>
</li>
<li>
<a href="#head-199b22790e295d0d08684accc025578ce7a9bc0d">Variante C - ssl+iptables</a>
</li>
</ol>
<li>
<a href="#head-89fe76b7643132073e3d24bf3811dfae9d5aed12">Sicherheit</a>
<ol>
<li>
<a href="#head-904d67346f079ee3d0e9346041948da842cafeba">physisch</a>
</li>
<li>
<a href="#head-606edd4fcd331cf4a2bc2cce8b58c6bf7fbb9c97">DAU-Abschirmung</a>
</li>
<li>
<a href="#head-9eed32e533f43900f9ba900afffe739f924af336">system</a>
</li>
<li>
<a href="#head-df9e59f7b1b0b5b81c9d3e6d7a239a26e0a2d057">pw aendern</a>
</li>
</ol>
<li>
<a href="#head-340d5b44acfff8e0df2ce3778e2b351b562ac438">Doku</a>
</li>
<li>
<a href="#head-ebb84d9adc7e81c694ed7dc4cf30a8affb4d972a">Nerd-Pride</a>
</li>
</ol>
<p> </p>
<hr class="hr1">
<p> </p>
<h2 id="head-5ed902c46ecec30abecc26fdcd3571661e1e2a45">Allgemeines</h2>
<h3 id="head-2ee2a633402e09cd9bb956d6c73ad9b088206eab">Zieleigenschaften</h3>
<ul>
<li><p> Daten sind in ausgeschaltetem Zustand geschützt </p>
</li>
<li><p> Netz gilt als relativ begrenzt und sicher </p>
<ul>
<li><p> kaum Schutz vor Hackern im lokalen Netz </p>
</li>
</ul>
</li>
<li><p> Schutz vor Einbrechern/Hausdurchsuchung </p>
</li>
<li><p> einfache Hardware genuegt (ab 586) </p>
</li>
<li><p> eine grosse Festplatte </p>
</li>
<li><p> (un)mounten ueber einfaches web-interface (mit ssl) </p>
</li>
<li><p> anwenderfreundlich </p>
</li>
</ul>
<h3 id="head-a7956f960cfe72128ad4cf88f2a0605cb499fa40">Zielgruppe</h3>
<ul>
<li><p> untechnische Gruppen mit gesunder Paranoia </p>
</li>
<li><p> keine Vorkenntnisse über Server und Kryptografie notwendig </p>
</li>
<li><p> für Einzelpersonen wegen Energiebedarf wohl eher ungeeignet </p>
</li>
<li><p> alle dürfen es nutzen - Support nur für die Guten </p>
</li>
</ul>
<h3 id="head-4fefceadc6642bb8cd44d7308040f968b855e79c">Auslieferungsformen</h3>
<ul>
<li><p> Live-CD + einfache Benutzeranleitung (för ölle) </p>
</li>
<li><p> komplette Entwicklungsdokumentation (för säminörds) </p>
</li>
<li><p> Verweis auf die man-page von <em>dmsetup</em> (för nörds) </p>
</li>
</ul>
<hr>
<p> </p>
<h2 id="head-40253d66b9a6db89547453b5453e795a3361afc0">Dienste</h2>
<h3 id="head-9dc7b4d5d46187d6420a41a42193dc91d464c24d">webinterface</h3>
<ul>
<li><p> Aufgaben: </p>
<ul>
<li><p> (un)mounten </p>
</li>
<li><p> MAC-Liste setzen </p>
</li>
<li><p> Ausschalt-Knopf </p>
</li>
<li><p> Neu-Initialisierung einer Datenfestplatte </p>
</li>
<li><p> Durchführung eines Backups </p>
<ul>
<li><p> tar durch ccrypt schicken mit einem per webinterface eingetippten Passwort </p>
</li>
<li><p> eventuell Datei splitten falls größer als [hier beliebige Schwelle einsetzen, z.B.: 650MB] </p>
</li>
<li><p> Ergebnisse sind über samba erreichbar </p>
</li>
</ul>
</li>
</ul>
</li>
</ul>
<h3 id="head-b618d1664742249c31eb99c067de8ae8bc6bbde1">Samba</h3>
<ul>
<li><p> gast-Freigabe ohne Passwort </p>
</li>
</ul>
<h3 id="head-ebabfe595d80837be2d98d956b2ef22c259bc2f2">cups [optional]</h3>
<ul>
<li><p> Druckerdienst (zumindest braucht lobbi das) </p>
<ul>
<li><p> das is aber nich originol </p>
</li>
</ul>
</li>
</ul>
<h2 id="head-7f6469d2c5fb67ffd47693c7ab76b3e98bdf28ff">Kommunikationssicherheit</h2>
<h3 id="head-bc34afcd3fbcd91e984610f0006ac181b327d114">Varinate A - Dienste verlangen Zertifikate einer CA</h3>
<ul>
<li><p> alle Clients bekommen Zertifikate </p>
</li>
<li><p> die CA liegt auf der crypto-partition </p>
</li>
<li><p> per webinterface koennen neue Zertifikate erzeugt werden </p>
<ul>
<li><p> fuehlt sich komisch an, muss aber wohl sein - Alternativen? [l] </p>
</li>
</ul>
</li>
<li><p> http und samba gibt es nur mit einem korrekten Zertifikat der CA </p>
</li>
</ul>
<h3 id="head-b4ffedcc87fc9030c6577a496492a2a85ee9786b">Variante B - ipsec</h3>
<ul>
<li><p> racoon als Schluesselserver </p>
</li>
<li><p> Vorteile: </p>
<ul>
<li><p> Verschluesselung fuer alle Dienste ohne basteln </p>
</li>
<li><p> wird von Windows unterstuetzt </p>
</li>
</ul>
</li>
<li><p> Nachteile: </p>
<ul>
<li><p> für die Labor-wlan-Verbindung war es nicht brauchbar - mystische Ausfaelle </p>
</li>
</ul>
</li>
</ul>
<h3 id="head-199b22790e295d0d08684accc025578ce7a9bc0d">Variante C - ssl+iptables</h3>
<ul>
<li><p> stunnel macht den Webserver ssl-faehig </p>
</li>
<li><p> samba gibt es auch mit ssl - muss aber vielleicht auch nicht </p>
</li>
<li><p> die MACs der clients müssen freigechaltet werden - iptables </p>
</li>
</ul>
<h2 id="head-89fe76b7643132073e3d24bf3811dfae9d5aed12">Sicherheit</h2>
<h3 id="head-904d67346f079ee3d0e9346041948da842cafeba">physisch</h3>
<ul>
<li><p> Kernel ohne Konsole konfigurieren </p>
</li>
<li><p> Grafikkarte ausbauen </p>
<ul>
<li><p> langfrist </p>
</li>
</ul>
</li>
<li><p> Tastatur-Port kurzschließen <img src="../../var/www/cryptobox-img/smile.png" alt=":)" height="15" width="15"> </p>
</li>
</ul>
<h3 id="head-606edd4fcd331cf4a2bc2cce8b58c6bf7fbb9c97">DAU-Abschirmung</h3>
<ul>
<li><p> timeout von 60 Minuten - danach samba beenden, crypto unmounten und abschalten </p>
<ul>
<li><p> Problem: smb-broadcasting-muell wird staendig hin- und herfliegen ... [l] </p>
</li>
<li><p> Lösung: herausfinden, welche Ports echten Datenverkehr darstellen </p>
</li>
</ul>
</li>
</ul>
<h3 id="head-9eed32e533f43900f9ba900afffe739f924af336">system</h3>
<ul>
<li><p> kein ssh </p>
</li>
<li><p> root ohne gueltigen Passworteintrag </p>
</li>
<li><p> eine systempartition (ro) </p>
</li>
<li><p> eine fette daten partition </p>
</li>
</ul>
<h3 id="head-df9e59f7b1b0b5b81c9d3e6d7a239a26e0a2d057">pw aendern</h3>
<ul>
<li><p> was machen wenn jemand das kennwort geschnappt hat? </p>
<ol type="1">
<li><p>ein Backup der Daten erstellen lassen </p>
</li>
<li><p>die crypto-Platte neu initialisieren </p>
</li>
<li><p>das Backup wieder einspielen - im Idealfall natuerlich mit unserem crypto-Backup-Skript <img src="../../var/www/cryptobox-img/smile.png" alt=":)" height="15" width="15"> </p>
</li>
</ol>
</li>
</ul>
<h2 id="head-340d5b44acfff8e0df2ce3778e2b351b562ac438">Doku</h2>
<ul>
<li><p> jeder Schritt der Erstellung wird per Shell-Skript reproduzierbar gemacht </p>
</li>
<li><p> Ziel: System ohne Unsicherheit, notfalls jedesmal neu bauen lassen <img src="../../var/www/cryptobox-img/smile.png" alt=":)" height="15" width="15"> </p>
</li>
<li><p> Nutzerdoku in ein Wiki </p>
</li>
<li><p> beides in ein svn-repos </p>
</li>
</ul>
<h2 id="head-ebb84d9adc7e81c694ed7dc4cf30a8affb4d972a">Nerd-Pride</h2>
<ul>
<li><p> Erkennung der Netzwerk-Hardware </p>
<ul>
<li><p> damit wir keine vorkonfigurierten Komplettrechner ausliefern müssen </p>
</li>
<li><p> bei Knoppiix abgucken </p>
</li>
</ul>
</li>
<li><p> Led, die den crypto-Status anzeigt </p>
</li>
<li><p> externer Abschalter (sanft!) für nicht-atx </p>
</li>
</ul>
<a id="bottom"></a>
</div>
<p id="pageinfo" class="info" lang="en" dir="ltr">last edited 2005-07-07 17:18:29 by <span title=""></span></p>
</div> <!-- end page -->
</div><!-- end of 'words' -->
<div id="footer">
<a href="https://systemausfall.org/prj/cryptobox" title="Projekt-Seite">CryptoBox-Home</a>&nbsp;&nbsp;Die CryptoBox ist ein Projekt von <a href="https://systemausfall.org/senselab" title="systemausfall.org">sense.lab</a>
</div>
</div>
</div>
</body>
</html>

View File

@ -0,0 +1,12 @@
</div><!-- end of 'words' -->
<div id="footer">
<a href="https://systemausfall.org/prj/cryptobox" title="Projekt-Seite">CryptoBox-Home</a>&nbsp;&nbsp;Die CryptoBox ist ein Projekt von <a href="https://systemausfall.org/senselab" title="systemausfall.org">sense.lab</a>
</div>
</div>
</div>
</body>
</html>

View File

@ -0,0 +1,30 @@
<?xml version="1.0" encoding="utf-16"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>CryptoBox</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-16" />
<link rel="stylesheet" media="screen" href="../../var/www/cryptobox.css" type="text/css" />
</head>
<body>
<div id="lang">
<a href="CryptoBoxEn.html">English</a><br/>
<a href="CryptoBox.html">Deutsch</a><br/>
</div>
<div id="main">
<div id="head">
<h1>Die CryptoBox</h1>
<h2>Privatsp&auml;hre f&uuml;r alle!</h2>
</div>
<div id="content">
<div id="menu">
<a href="CryptoBox.html">&Uuml;bersicht</a>
<a href="CryptoBoxUser.html">Nutzerhandbuch</a>
<a href="CryptoBoxDev.html">Entwicklung</a>
</div>
<div id="doc">

Binary file not shown.

Binary file not shown.

2
cbox-tree.d/autorun.inf Normal file
View File

@ -0,0 +1,2 @@
[autorun]
open=_offline\shellopn.exe _offline/doc/CryptoBox.html

11
cbox-tree.d/start.html Normal file
View File

@ -0,0 +1,11 @@
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html lang="de">
<head>
<meta http-equiv="refresh" content="0; URL=_offline/doc/CryptoBox.html">
<title>Die CryptoBox</title>
</head>
<body>
Automatische Weiterleitung zur <a href="_offline/doc/CryptoBox.html" title="Dokumentation">Dokumentation</a> ...
</body>
</html>

View File

@ -51,7 +51,7 @@
</ul>
<p>recommended: </p>
<ul>
<li><p> <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=apt-cacher">apt-cacher</a> or <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=apt-proxy">apt-proxy</a> </p>
<li><p> <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=apt-cacher">apt-cacher</a>, <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=apt-proxy">apt-proxy</a> or <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=approx">approx</a> </p>
</li>
<li><p> <a class="interwiki" title="DebianPackage" href="http://packages.debian.org/cgi-bin/search_packages.pl?searchon=names&amp;subword=1&amp;version=all&amp;release=all&amp;keywords=qemu">qemu</a> </p>
</li>
@ -86,7 +86,7 @@ svn checkout https://svn.systemausfall.org/svn/cryptobox/trunk </pre>
<a id="bottom"></a>
</div>
<p id="pageinfo" class="info" lang="en" dir="ltr">last edited 2005-09-13 23:52:54 by <span title="">lars</span></p>
<p id="pageinfo" class="info" lang="en" dir="ltr">last edited 2005-09-14 09:43:11 by <span title="">lars</span></p>
</div> <!-- end page -->

View File

@ -1,5 +1,5 @@
body {
background-image: url(/cryptobox-img/backg.gif);
background-image: url(cryptobox-img/backg.gif);
background-position: top center;
background-attachment: fixed;
background-repeat: no-repeat;
@ -44,7 +44,7 @@ body {
height: 120px;
margin: 0;
padding: 0;
background-image: url(/cryptobox-img/vault_pingu.png);
background-image: url(cryptobox-img/vault_pingu.png);
background-position: top right;
background-attachment: scroll;
background-repeat: no-repeat;
@ -126,7 +126,7 @@ body {
padding: 0 1em;
line-height: 1.7em;
list-style: none;
background: url(/cryptobox-img/list.gif) center left no-repeat;
background: url(cryptobox-img/list.gif) center left no-repeat;
}
#footer {

View File

@ -8,6 +8,7 @@
# upload - copy your local files to tmpfs on a running cryptobox
# diff - compare tmpfs-files on a running cryptobox with the original
# merge - apply the diff to the local copy
# ssh - open a ssh connection to a running cryptobox
#
# problems of this script:
# - chroot has to run as root

View File

@ -19,9 +19,13 @@ WIKI_URL=/toolforge/
CBOX_CGI="/cryptobox?action=doc\&page="
DEST_DIR="$ROOT_DIR/cbox-tree.d/usr/share/doc/cryptobox/html/en"
OFFLINE_DIR="$ROOT_DIR/cbox-tree.d/_offline/doc"
IMAGE_DIR="$ROOT_DIR/cbox-tree.d/var/www/cryptobox-img"
TMP_DIR=/tmp/$(basename $0)-$$.d
HEADER_FILE=$OFFLINE_DIR/../doc_header.inc
FOOTER_FILE=$OFFLINE_DIR/../doc_footer.inc
[ ! -e "$DEST_DIR" ] && echo "$DEST_DIR does not exist" && exit 1
for PAGE in $PAGES; do
@ -62,6 +66,14 @@ for PAGE in $PAGES; do
# do it twice - somehow, the "g" flag does not work (it should replace multiple occurrences on a line)
sed -i "s#=\"$WIKI_URL\([^\.]*\)\"#=\"$CBOX_CGI\1\"#g" "$TMP_FILE"
echo " building static doc page"
offline_file=$OFFLINE_DIR/$(basename $TMP_FILE)
cat "$HEADER_FILE" "$TMP_FILE" "$FOOTER_FILE" >"$offline_file"
sed -i "s#=\"$CBOX_CGI\([^\"]*\)\"#=\"\1.html\"#g" "$offline_file"
sed -i "s#=\"$CBOX_CGI\([^\"]*\)\"#=\"\1.html\"#g" "$offline_file"
sed -i "s#=\"/cryptobox-img#=\"../../var/www/cryptobox-img#g" "$offline_file"
sed -i "s#=\"/cryptobox.css\"#=\"../../var/www/cryptobox.css\"#g" "$offline_file"
echo " finished!"
done