On Tue, Aug 21, 2007 at 12:58:07PM +0200, Frederik Schueler wrote: > Hello, > > I would like to get something done in this matter, but there has not > been any response nor activity since a couple of weeks. > > What is the status of this ITP? > > > I had a look at the packages on mentors, and I think they are of poor > quality, using CDBS and shipping an unecessary postinst script obviously > belonging into another package. > > > Please have a look at the kernel-team svn: > > svn://svn.debian.org/kernel/dists/trunk/redhat-cluster/openais/debian > > feel free to send patches if you think something is missing, or ACK an > upload so we can preapare a release ASAP. Thanks for your work. Just a view notes: * please add a debian/watch file * please provide a debian packaging copyright note, see [1] * please think about listing all Copyright holders. E.g. RedHat Inc. is to be found in more than 70 files. * From QUICKSTART: "For security reasons, the openais only allows a process that had the EGID/GID of "ais" to connect to it. To make development easier, it is recommended to create an "ais" user with the "ais" group." please think about creating that user. having a non system user ais would be dangerous. * please provide man pages for the the executables. You may want to use the attached ais-keygen.1. The one for aisexec is not yet ready, sorry. Please have this ITP for debian-kernel-team. [1] http://lists.debian.org/debian-devel-announce/2006/03/msg00023.html > > > Best regards > Frederik Sch?ler > > -- > ENOSIG -- Kind Regards, Michael Mende http://www.menole.net/
.\" .\" This page was created on 2007-06-06 18:16:55 by makeman.pl .\" ``makeman.pl'' is part of the ``MakeMan'' project. .\" For more information, please see http://mama.sourceforge.net .\" .TH ais\-keygen 1 "June 06, 2007" "openais" "OpenAIS" .SH NAME ais\-keygen \- openais authentication key generator .SH SYNOPSIS \fBais\-keygen\fR .SH "DESCRIPTION" .PP The openais executive uses cryptographic techniques to ensure authenticity and privacy of the messages. In order for openais to be secure and operate, a private key must be generated and shared to all processors. .PP First generate the key on one of the nodes: .PP unix# ais\-keygen .PP After this operation, a private key will be in the file /etc/ais/authkey. This private key must be copied to every processor in the cluster. If the private key is not the same for every node, those nodes with nonmatching private keys will not be able to join the same configuration. .PP Copy the key to some security transportable storage or use ssh to transmit the key from node to node. Then install the key with the command: .PP unix#: install \-D \-\-group=0 \-\-owner=0 \-\-mode=0400 /path_to_authkey/authkey /etc/ais/authkey .PP If a message "Invalid digest" appears from the openais executive, the keys are not consistent between processors. .SH "VERSION" .PP This man page describes \fBais\-keygen\fR version 0.81. .SH "BUGS" .PP If you find a bug, please report it at \fIhttp://www.osdl.org/developer_bugzilla/enter_bug.cgi\fR. .SH "AUTHORS" .PP Steven Dake <sdake@mvista.com> .PP This man page was originally written by Michael Mende <debian@menole.net> .SH "COPYRIGHT" .PP .br Copyright (C) 2002\-2006 MontaVista Software, Inc. .br Copyright (C) 2006 Red Hat, Inc. .SH "LICENSE" .PP .br This software licensed under BSD license. See LICENSE file. .SH "SEE ALSO" .PP \fBopenais_overview(8)\fR, \fBaisexec(1)\fR
Attachment:
signature.asc
Description: Digital signature