Mercurial > p > roundup > code
comparison doc/installation.txt @ 3922:586679a314f7
role checking for PGP mail and docs
Erik's suggestion to allow the admin to specify a set of roles to
perform PGP processing on seemed like a reasonable one I implemented
it. There is a new config option to control it.
I also realized that the signature verification had a slight problem:
it was simply checking for a valid, known signature before continuing
on. If another user in the keyring forged mail it was pass the PGP
check and then modify the db as the forged user. I changed the logic
to make sure that the author of the email matches the key of the
verifying signature.
As I was adding the documentation for the PGP processing I noticed
that there were several other new-ish options that didn't appear in
customizing.txt so I added them as well.
| author | Justus Pendleton <jpend@users.sourceforge.net> |
|---|---|
| date | Wed, 26 Sep 2007 03:20:21 +0000 |
| parents | d4163100f4f3 |
| children | 1dab48842cbd |
comparison
equal
deleted
inserted
replaced
| 3921:b49bbd4ff6ea | 3922:586679a314f7 |
|---|---|
| 1 ================== | 1 ================== |
| 2 Installing Roundup | 2 Installing Roundup |
| 3 ================== | 3 ================== |
| 4 | 4 |
| 5 :Version: $Revision: 1.126 $ | 5 :Version: $Revision: 1.127 $ |
| 6 | 6 |
| 7 .. contents:: | 7 .. contents:: |
| 8 :depth: 2 | 8 :depth: 2 |
| 9 | 9 |
| 10 | 10 |
| 79 If pyopenssl_ is installed the roundup-server can be configured | 79 If pyopenssl_ is installed the roundup-server can be configured |
| 80 to serve trackers over SSL. If you are going to serve roundup via | 80 to serve trackers over SSL. If you are going to serve roundup via |
| 81 proxy through a server with SSL support (e.g. apache) then this is | 81 proxy through a server with SSL support (e.g. apache) then this is |
| 82 unnecessary. | 82 unnecessary. |
| 83 | 83 |
| 84 pyme | |
| 85 If pyme_ is installed you can configure the mail gateway to perform | |
| 86 verification or decryption of incoming OpenPGP MIME messages. When | |
| 87 configured, you can require email to be cryptographically signed | |
| 88 before roundup will allow it to make modifications to issues. | |
| 89 | |
| 84 .. _Xapian: http://www.xapian.org/ | 90 .. _Xapian: http://www.xapian.org/ |
| 85 .. _pytz: http://www.python.org/pypi/pytz | 91 .. _pytz: http://www.python.org/pypi/pytz |
| 86 .. _Olson tz database: http://www.twinsun.com/tz/tz-link.htm | 92 .. _Olson tz database: http://www.twinsun.com/tz/tz-link.htm |
| 87 .. _pyopenssl: http://pyopenssl.sourceforge.net | 93 .. _pyopenssl: http://pyopenssl.sourceforge.net |
| 94 .. _pyme: http://pyme.sourceforge.net | |
| 88 | 95 |
| 89 | 96 |
| 90 Getting Roundup | 97 Getting Roundup |
| 91 =============== | 98 =============== |
| 92 | 99 |