Ingo Schwarze wrote on Sat, Jul 07, 2012 at 05:22:05PM +0200: > Christian Weisgerber wrote on Sat, Jul 07, 2012 at 03:40:00PM +0200:
>> This adds support for the "sha256digest" keyword to create/compare >> SHA2-256 digests of files. In the man page, also replace SHA-1 >> with SHA2-256 in the examples section. > Looks reasonable to me and survived light testing on i386. Naddy just pointed out that security(8) and changelist(5) need love as well. While here, replace the stupid example. Sure, Bob was slacking now and then, but not to the point that tripwiring up his home directory would have been useful... Index: man8/security.8 =================================================================== RCS file: /cvs/src/share/man/man8/security.8,v retrieving revision 1.20 diff -u -r1.20 security.8 --- man8/security.8 19 Apr 2011 05:17:24 -0000 1.20 +++ man8/security.8 7 Jul 2012 15:47:19 -0000 @@ -79,12 +79,12 @@ and filenames must have the suffix .Dq .secure . The following example shows how to create such a list, -to protect the home directory of user -.Dq bob : +to protect the programs in +.Pa /bin : .Bd -literal -offset 4n -# mtree -cx -p /home/bob -K md5digest,type \*(Gt/etc/mtree/bob.secure -# chown root:wheel /etc/mtree/bob.secure -# chmod 600 /etc/mtree/bob.secure +# mtree -cx -p /bin -K sha256digest,type > /etc/mtree/bin.secure +# chown root:wheel /etc/mtree/bin.secure +# chmod 600 /etc/mtree/bin.secure .Ed .Pp .Sy Note: Index: man5/changelist.5 =================================================================== RCS file: /cvs/src/share/man/man5/changelist.5,v retrieving revision 1.7 diff -u -r1.7 changelist.5 --- man5/changelist.5 18 Apr 2011 23:58:45 -0000 1.7 +++ man5/changelist.5 7 Jul 2012 15:47:19 -0000 @@ -85,12 +85,12 @@ character .Pq generally non-text files are stored as -.Xr md5 1 +.Xr sha256 1 checksums. Results are mailed in the following format: .Bd -unfilled -offset indent ====== -/etc/ssh/ssh_host_key MD5 checksums +/etc/ssh/ssh_host_key SHA-256 checksums ====== OLD: NEW: @@ -113,7 +113,7 @@ .El .Sh SEE ALSO .Xr diff 1 , -.Xr md5 1 , +.Xr sha256 1 , .Xr daily 8 , .Xr security 8 .Sh HISTORY
