diff options
| author | Lennart Poettering <lennart@poettering.net> | 2013-06-18 16:25:11 +0200 |
|---|---|---|
| committer | Lennart Poettering <lennart@poettering.net> | 2013-06-18 16:25:11 +0200 |
| commit | fe004b7c3a8325eb8d5420c1b940a5ade2691417 (patch) | |
| tree | b78ffd94137c88aaa4b4758cd3314b1afc5f9d0f /man | |
| parent | 55d32caf94d8df547ca763be52b0c35bb6388606 (diff) | |
journal: add references to SSKG paper FSS is based on
Diffstat (limited to 'man')
| -rw-r--r-- | man/journalctl.xml | 5 | ||||
| -rw-r--r-- | man/journald.conf.xml | 12 |
2 files changed, 13 insertions, 4 deletions
diff --git a/man/journalctl.xml b/man/journalctl.xml index 7a8d4b2dcc..564634b757 100644 --- a/man/journalctl.xml +++ b/man/journalctl.xml @@ -593,7 +593,10 @@ sealing key is stored in the journal data directory and shall remain on the host. The verification key should be - stored externally.</para></listitem> + stored externally. Also see the + <option>Seal=</option> option in + <citerefentry><refentrytitle>journald.conf</refentrytitle><manvolnum>5</manvolnum></citerefentry> + for details.</para></listitem> </varlistentry> <varlistentry> diff --git a/man/journald.conf.xml b/man/journald.conf.xml index fe47fdffec..26f47f8975 100644 --- a/man/journald.conf.xml +++ b/man/journald.conf.xml @@ -130,9 +130,15 @@ by <citerefentry><refentrytitle>journalctl</refentrytitle><manvolnum>1</manvolnum></citerefentry>'s <option>--setup-keys</option> - command), forward secure sealing (FSS) for - all persistent journal files is - enabled.</para></listitem> + command), forward secure sealing (FSS) + for all persistent journal files is + enabled. FSS is based on <ulink + url="http://eprint.iacr.org/2013/397">Seekable + Sequential Key Generators</ulink> by + G. A. Marson and B. Poettering and + may be used to protect journal files + from unnoticed + alteration.</para></listitem> </varlistentry> <varlistentry> |