Home Explore Help
Register Sign In
oleg
/
liberte
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Added proxification setup details to info.txt

Also clarified trusted boot chain verification algoritms.
Maxim Kammerer 12 years ago
parent
3356df9325
commit
ee6064417e
4 changed files with 68 additions and 16 deletions
Split View Show Diff Stats
  1. 57 5
      doc/info.txt
  2. 9 9
      src/etc/portage/make.conf
  3. 1 1
      src/etc/portage/package.use/all
  4. 1 1
      src/root/setup-copy

+ 57 - 5
doc/info.txt
View File 

@@ -15,7 +15,6 @@ rsync
 
   [/etc/portage/make.conf]
 
 
 HKP(S)
 
-  + https://zimmermann.mayfirst.org/pks/lookup [mkroot]
 
   + hkp://2eghzlv2wwcq7u7y.onion               [anon]
 
   + [alt: hkps://zimmermann.mayfirst.org]
 
   + [alt: hkps://keys.indymedia.org]
 
@@ -67,15 +66,24 @@ libgcrypt users: cryptsetup, gnupg, gnome-keyring, libotr(pidgin-otr),
 
 
 
 
-Encryption
 
-==========
 
+Encryption / Signing
 
+====================
 
 
 Secure Boot
 
   + RSA-4096 / SHA-256 EFI images signing
 
 
+GRUB EFI images
 
+  + SHA-256 of chained GRUB configuration
 
+
 
+GRUB (chained configuration)
 
+  + SHA-256 of kernel+initramfs
 
+
 
 Kernel
 
   + RSA-4096 / SHA-256 module signing
 
 
+SquashFS image
 
+  + SHA-256 verification in initramfs
 
+
 
 LUKS
 
   + AES-256 / XTS (w/ double key size)
 
   + SHA-512 LUKS header hashing
 
@@ -145,5 +153,49 @@ configuration persistence
 
   + NTFS: user.* xattrs correspond to NTFS streams
 
   + ext2/3/4 removable media is mounted with ACLs and user.* xattrs
 
 
-SquashFS LZMA support is available as a patch (PLD Linux) as of kernel 2.6.36,
 
-and natively (XZ format) as of kernel 2.6.38.
 
+
 
+Proxification
 
+=============
 
+
 
+Tor                              (127.0.0.1:9050)
 
+  Privoxy                        (127.0.0.1:8118)
 
+    environment variables        (http(s)_proxy, no_proxy)
 
+      curl
 
+        cables
 
+        uGet
 
+        GnuPG
 
+        mpg123
 
+        vorbis-tools[ogg123]
 
+      wget
 
+        Qalculate!
 
+      libproxy[-gnome]
 
+        glib-networking[-gnome]  (glib GIO modules)
 
+          libsoup                (HTTP library)
 
+            libsoup-gnome        (GNOME libsoup plugin)
 
+              Epiphany
 
+              Totem              (Playlist parser)
 
+            WebKit-GTK
 
+              <browsers>
 
+            xombrero
 
+            NetworkManager       (connectivity checking)
 
+            gst-plugins-soup     (GStreamer HTTP plugin, http_proxy envvar is supported)
 
+        neon                     (HTTP/WebDav library)
 
+          audacious-plugins
 
+      libxml2                    (NanoHTTP)
 
+      libmms
 
+          gst-plugins-libmms     (GStreamer MMS plugin)
 
+          audacious-plugins[mms] (Audacious MMS plugin)
 
+    explicit configuration
 
+      gFTP                       (HTTP only)
 
+      audacious-plugins[cddb]    (Audacious CDDB) plugin)
 
+      uim                        (custom-http.scm)
 
+  explicit configuration
 
+    Pidgin                       (GConf is supported)
 
+    HexChat
 
+    SSH
 
+    OpenVPN
 
+  torify
 
+    Claws-Mail
 
+    gFTP                         (FTP only)
 
+    whois
 
+    eboard

+ 9 - 9
src/etc/portage/make.conf
View File 

@@ -27,16 +27,16 @@ FEATURES="webrsync-gpg usersync userpriv usersandbox collision-protect
 
 MAKEOPTS="-j3"
 
 
 # USE flags (aggregative)
 
-USE="aac acpi alsa archive aspell bluetooth bs2b cairo
 
-     caps cdda cjk consolekit cpudetection custom-cflags cue dbus dhcp djvu
 
-     eap-sim eap-tls exif expat flac gmp goffice gpm grammar groupwise gtk
 
+USE="aac acpi alsa archive aspell bluetooth bs2b cairo caps cdda cjk
 
+     consolekit cpudetection custom-cflags cue dbus dhcp djvu eap-sim
 
+     eap-tls exif expat flac gmp goffice gpm grammar groupwise gtk
 
      hires-icons hwdb hybrid-auth id3tag idn iproute2 irda jbig jpeg jpeg2k
 
-     keymap lcms libkms libnotify lzma m17n-lib mad mktemp mmx mmxext modemmanager
 
-     mp3 multicall netlink networkmanager ntfsprogs ogg ots pcmcia pcsc-lite
 
-     pkcs11 png policykit postscript scsi silc smartcard smime sndfile speex
 
-     spell sse startup-notification staticsocket svg symlink thesaurus
 
-     threads tiff truetype uuid usb v4l vorbis wavpack webgl wifi wimax wmf
 
-     X X509 xattr xft xinerama xmp xv"
 
+     keymap lcms libkms libnotify libproxy lzma m17n-lib mad mktemp mmx
 
+     mmxext modemmanager mp3 multicall netlink networkmanager ntfsprogs ogg
 
+     ots pcmcia pcsc-lite pkcs11 png policykit postscript scsi silc
 
+     smartcard smime sndfile speex spell sse startup-notification
 
+     staticsocket svg symlink thesaurus threads tiff truetype uuid usb v4l
 
+     vorbis wavpack webgl wifi wimax wmf X X509 xattr xft xinerama xmp xv"
 
 
 USE="${USE} -ant -berkdb -cracklib -cramfs -cups -cxx -enca -fts3 -gdbm -git
 
      -http-cache -hunspell -ipv6 -lvm1 -mudflap -orc -ptpax -qt4 -sendmail

+ 1 - 1
src/etc/portage/package.use/all
View File 

@@ -42,7 +42,7 @@ dev-libs/opensc                 -ssl
 
 app-i18n/uim                    -ssl
 
 www-client/epiphany             -nss
 
 net-libs/glib-networking        -gnome
 
-net-irc/hexchat                 libproxy
 
+net-irc/hexchat                 -libproxy
 
 
 # Multimedia
 
 # [ffmpeg/libav: encode-only flags: mp3 aac aacplus faac theora vorbis x264 xvid]

+ 1 - 1
src/root/setup-copy
View File 

@@ -102,7 +102,7 @@ sinfo "Recompiling build-dependent packages"
 
 emerge -quDN @world
 
 
 
-# (#432020)
 
+# (#432020, SourceWare: #14498)
 
 # sinfo "Creating NSS databases"
 
 # make -C /var/db > /dev/null