[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#421816: Status of openais ITP?

On Tue, Aug 21, 2007 at 12:58:07PM +0200, Frederik Schueler wrote:
> Hello,
> I would like to get something done in this matter, but there has not
> been any response nor activity since a couple of weeks.
> What is the status of this ITP? 
> I had a look at the packages on mentors, and I think they are of poor
> quality, using CDBS and shipping an unecessary postinst script obviously
> belonging into another package.
> Please have a look at the kernel-team svn:
> svn://svn.debian.org/kernel/dists/trunk/redhat-cluster/openais/debian
> feel free to send patches if you think something is missing, or ACK an
> upload so we can preapare a release ASAP.

Thanks for your work.

Just a view notes:
* please add a debian/watch file
* please provide a debian packaging copyright note, see [1]
* please think about listing all Copyright holders. E.g. RedHat Inc. is
  to be found in more than 70 files.
  "For security reasons, the openais only allows a process that had the
  EGID/GID of "ais" to connect to it.  To make development easier, it is
  recommended to create an "ais" user with the "ais" group."
  please think about creating that user. having a non system user ais
  would be dangerous.
* please provide man pages for the the executables. You may want to use
  the attached ais-keygen.1. The one for aisexec is not yet ready, sorry.

Please have this ITP for debian-kernel-team.
[1] http://lists.debian.org/debian-devel-announce/2006/03/msg00023.html

> Best regards
> Frederik Sch?ler
> -- 

Kind Regards,
 Michael Mende

.\" This page was created on 2007-06-06 18:16:55 by makeman.pl
.\" ``makeman.pl'' is part of the ``MakeMan'' project.
.\" For more information, please see http://mama.sourceforge.net
.TH ais\-keygen 1 "June 06, 2007" "openais" "OpenAIS" 

ais\-keygen \- openais authentication key generator


The openais executive uses cryptographic techniques to ensure 
authenticity and privacy of the messages. In order for openais to be 
secure and operate, a private key must be generated and shared to all 
First generate the key on one of the nodes:
unix# ais\-keygen 
After this operation, a private key will be in the file /etc/ais/authkey. This private key must be copied to
every processor in the cluster. If the private key is not the same for every node, those nodes with nonmatching
private keys will not be able to join the same configuration.
Copy the key to some security transportable storage or use ssh to transmit the key from node to node. Then
install the key with the command:
unix#: install \-D \-\-group=0 \-\-owner=0 \-\-mode=0400 /path_to_authkey/authkey /etc/ais/authkey
If a message "Invalid digest" appears from the openais executive, the keys are not consistent between processors.

This man page describes \fBais\-keygen\fR version 0.81.

If you find a bug, please report it at 

This man page was originally written by

Copyright (C) 2002\-2006 MontaVista Software, Inc.
Copyright (C) 2006 Red Hat, Inc.

This software licensed under BSD license. See LICENSE file.


Attachment: signature.asc
Description: Digital signature

Reply to: