code: fqa.9front.org

Download patch

ref: 33da3c8be86a13fb4ea4fd16229d1dd5c31b4dca
parent: 2d79fc0b4a4d3481a70877a6ef9f5d7f71b68416
author: stanley lieber <[email protected]>
date: Tue Oct 25 19:56:29 EDT 2016

fqa.ms fqa4.ms fqa6.ms fqa7.ms fqa8.ms mkfile: various updates

--- a/fqa.ms
+++ b/fqa.ms
@@ -1198,6 +1198,10 @@
 8.4.6.3 - scpu
 .ihtml a
 
+.ihtml a <a href="fqa8.html#8.4.6.3.1">
+8.4.6.3.1 - Public Key Authentication
+.ihtml a
+
 .ihtml a <a href="fqa8.html#8.4.6.4">
 8.4.6.4 - OpenSSH
 .ihtml a
--- a/fqa4.ms
+++ b/fqa4.ms
@@ -1091,8 +1091,8 @@
 
 • Format and activate the encrypted partitions (generates new encryption key):
 .P1
-cryptsetup -f /dev/sdC0/fsworm /dev/sdC0/fscache /dev/sdC0/other
-cryptsetup -i /dev/sdC0/fsworm /dev/sdC0/fscache /dev/sdC0/other
+disk/cryptsetup -f /dev/sdC0/fsworm /dev/sdC0/fscache /dev/sdC0/other
+disk/cryptsetup -i /dev/sdC0/fsworm /dev/sdC0/fscache /dev/sdC0/other
 .P2
 
 • Type
@@ -1116,7 +1116,7 @@
 
 • Activate the encrypted partitions (prompts for password):
 .P1
-cryptsetup -i /dev/sdC0/fsworm /dev/sdC0/fscache /dev/sdC0/other
+disk/cryptsetup -i /dev/sdC0/fsworm /dev/sdC0/fscache /dev/sdC0/other
 .P2
 
 • Type
--- a/fqa6.ms
+++ b/fqa6.ms
@@ -948,7 +948,10 @@
 It is possible to boot from local media and then mount the root file system over the network. At the
 .CW bootargs
 prompt, type
-.CW tcp .
+.CW tls
+(the old
+.CW tcp
+boot option will still work but is not recommended because the connection will not be encrypted).
 At this point,
 .CW ip/ipconfig
 will determine network parameters using DHCP. When file (\f(CWfs\fR) or authentication (\f(CWauth\fR) server IP addresses could not be determined over DHCP then the boot process will prompt for those. When prompted for a
@@ -985,11 +988,11 @@
 
 At the prompt:
 .P1
-bootargs is (tcp, il, local!device) [tcp]
+bootargs is (tcp, tls, il, local!device) [tcp]
 .P2
 enter something like the following:
 .P1
-tcp!-g 192.168.0.1 ether /net/ether0 192.168.0.23 255.255.255.0
+tls!-g 192.168.0.1 ether /net/ether0 192.168.0.23 255.255.255.0
 .P2
 where
 .CW 192.168.0.1
@@ -1065,8 +1068,8 @@
 .CW plan9.ini :
 .P1
 bootfile=/386/9pcf
-bootargs=tcp
-nobootprompt=tcp
+bootargs=tls
+nobootprompt=tls
 auth=192.168.0.2
 fs=192.168.0.3
 mouseport=ps2intellimouse
--- a/fqa7.ms
+++ b/fqa7.ms
@@ -1193,7 +1193,7 @@
 .CW listen(8) .
 .ihtml a
 The script
-.CW tcp17010
+.CW tcp17019
 handles incoming cpu connections. Authentication for incoming cpu connections is performed by the auth server associated with the
 .CW authdom
 by
@@ -1270,9 +1270,9 @@
 .CW password ,
 below:
 .P1
-echo \'key proto=p9sk1 dom=9front user=glenda !password=p@ssw0rd\' \e
+echo \'key proto=dp9ik dom=9front user=glenda !password=p@ssw0rd\' \e
 	>/mnt/factotum/ctl
-aux/listen1 -t tcp!*!17010 /bin/cpu -R &
+aux/listen1 -t tcp!*!17019 /bin/cpu -R &
 .P2
 
 .html - <a name="7.6.3" />
@@ -1691,7 +1691,7 @@
 .P2
 .B Note:
 Here, 
-.CW FR
+.CW US
 is the two-digit country code, and
 .CW fakedom.dom
 is the fully qualified domain name.
--- a/fqa8.ms
+++ b/fqa8.ms
@@ -1170,6 +1170,32 @@
 strings.
 .html - Download it here: <a href="https://bitbucket.org/mischief/scpu">https://bitbucket.org/mischief/scpu</a>.
 
+.html - <a name="8.4.6.3.1" />
+.ihtml h4 <h4>
+.SH
+8.4.6.3.1 - Public Key Authentication
+.R
+.ihtml h4
+
+The
+.CW scpu
+command can be configured to use public key authentication:
+
+.P1
+auth/rsagen -t 'service=ssh' >$home/lib/ssh/key
+auth/rsa2ssh -2 $home/lib/ssh/key >$home/lib/ssh/key.pub
+cat $home/lib/ssh/key >/mnt/factotum/ctl	# must be present before running scpu
+.P2
+
+Then add the contents of
+.CW $home/lib/ssh/key.pub
+to
+.CW $HOME/.ssh/authorized_keys
+on the remote host.
+
+.B Note:
+This same key may be used for multiple hosts.
+
 .html - <a name="8.4.6.4" />
 .ihtml h4 <h4>
 .SH
--- a/mkfile
+++ b/mkfile
@@ -26,8 +26,8 @@
 	chmod +t book.pdf
 
 dash1:V:
-	gs -q -dNOPAUSE -dBATCH -sDEVICE'='pdfwrite -sOutputFile'='dash1.nfdq.pdf nfdq.front.pdf book.pdf nfdq.back.pdf
-	chmod +t dash1.nfdq.pdf
+	gs -q -dNOPAUSE -dBATCH -sDEVICE'='pdfwrite -sOutputFile'='dash1.thinkaboutthefuture.pdf thinkaboutthefuture.front.pdf book.pdf thinkaboutthefuture.back.pdf
+	chmod +t dash1.thinkaboutthefuture.pdf
 
 fqa.ps:	9frontsystem.ps goaway.ps toilet.ps