X-Git-Url: https://git.distorted.org.uk/~mdw/secnet/blobdiff_plain/ce5c098f8a19a42ddaeb488ed643ae3b5e697c7b..b7bf35dd7f852b82ebd3c6ff55ca714468826a69:/README diff --git a/README b/README index 3e8a157..a01156c 100644 --- a/README +++ b/README @@ -2,13 +2,37 @@ secnet - flexible VPN software * Copying -secnet is Copyright (C) 1995--2003 Stephen Early -It is distributed under the terms of the GNU General Public License, -version 2 or later. See the file COPYING for more information. +secnet is + Copyright 1995-2003 Stephen Early + Copyright 2002-2014 Ian Jackson + Copyright 1991 Massachusetts Institute of Technology + Copyright 1998 Ross Anderson, Eli Biham, Lars Knudsen + Copyright 1993 Colin Plumb + Copyright 1998 James H. Brown, Steve Reid + Copyright 2000 Vincent Rijmen, Antoon Bosselaers, Paulo Barreto + Copyright 2001 Saul Kravitz + Copyright 2004 Fabrice Bellard + Copyright 2002 Guido Draheim + Copyright 2005-2010 Free Software Foundation, Inc. + Copyright 1995-2001 Jonathan Amery + Copyright 1995-2003 Peter Benie + Copyright 2011 Richard Kettlewell + Copyright 2012 Matthew Vernon + Copyright 2013 Mark Wooding + Copyright 1995-2013 Simon Tatham + +secnet is distributed under the terms of the GNU General Public +License, version 3 or later. Some individual files have more +permissive licences; where this is the case, it is documented in the +header comment for the files in question. + +secnet is distributed in the hope that it will be useful, but WITHOUT +ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or +FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License +for more details. + +The file COPYING contains a copy of the GNU GPL v3. -The IP address handling library in ipaddr.py is Copyright (C) -1996--2000 Cendio Systems AB, and is distributed under the terms of -the GPL. * Introduction @@ -194,8 +218,11 @@ Defines: udp (closure => comm closure) udp: dict argument - address (string list): IPv6 or IPv4 addresses to listen and send on - port (integer): UDP port to listen and send on + address (string list): IPv6 or IPv4 addresses to listen and send on; + default is all local addresses + port (integer): UDP port to listen and send on; optional if you + don't need to have a stable address for your peers to talk to + (in which case your site ought probably to have `local-mobile true'). buffer (buffer closure): buffer for incoming packets authbind (string): optional, path to authbind-helper program @@ -258,8 +285,12 @@ is one. network-manager always sets up a default route. The result is that the wifi always has a default route (so is useable); ppp (being a point-to-point link) does not need one. -The use of polypath currently requires that secnet have root -privilege, to make the setsockopt(,,SO_BINDTODEVICE,) call. +The use of polypath requires that secnet be started with root +privilege, to make the setsockopt(,,SO_BINDTODEVICE,) calls. If the +configuration specifies that secnet should drop privilege (see +`userid' above), secnet will keep a special process around for this +purpose; that process will handle local network interface changes but +does not deal with any packets, key exchange, etc. polypath support is only available when secnet is built against an IPv6-capable version of adns (because it wants features in the newer