Startup troubles
Dick Middleton
dick at fouter.net
Sun Jun 3 19:18:21 CEST 2012
Hi,
I'm having trouble getting this thing to work. I'm using Debian squeeze i386
on the server and Debian Wheezy amd64 on the client. On the server I've
updated mandos to 1.5.4 to match the client version.
Firstly is there not a HOWTO guide for setting this up?
I've created a client section for the server using mandos-keygen --password
I'm then trying to test using /usr/lib/mandos/plugins.d/mandos-client
--pubkey.... etc as in DEADME.Debian
On the server the following message is seen:
Jun 3 16:55:20 hagrid <28>Mandos [28204]: WARNING: Handshake failed: An
algorithm that is not enabled was negotiated.
That doesn't mean much to me; is it important? Incidentally why is the
program name given to logger "<28>Mandos"?
On the client I get:
Mandos plugin mandos-client: scandir: No such file or directory
Again I don't know what's missing and whether it's important.
All I know is no password is returned. It just sits and waits.
Looking at debug client is reporting:
Mandos plugin mandos-client: *** GnuTLS Handshake failed ***
GnuTLS error: A TLS packet with unexpected length was received.
Apart from the Handshake error above the server seems happy.
Some guidance for what to do next would be appreciated.
OK now, I need 2 passphrases for my client. One for the root disc and one for
the hibernate partition. Is this supported? Do I just need two sections, one
for each passphrase? If I use the -n option on mandos-keygen --password it
not only changes the section name it also changes the host name. Is that right?
Many thanks
Dick
More information about the Mandos-Dev
mailing list