From 06d9d3efa554ffc63b5977f1d86e393edeef8ad1 Mon Sep 17 00:00:00 2001 From: "Jason St. John" Date: Tue, 17 Dec 2013 19:40:02 -0500 Subject: [PATCH] man: add DOI for refereed article on Forward Secure Sealing to journald.conf(5) In journalctl(1), be more explicit about the reference to "Seal=" in journald.conf(5) and what information can be found there. --- man/journalctl.xml | 8 ++++++-- man/journald.conf.xml | 10 +++++----- 2 files changed, 11 insertions(+), 7 deletions(-) diff --git a/man/journalctl.xml b/man/journalctl.xml index 23bb96051..2de72523c 100644 --- a/man/journalctl.xml +++ b/man/journalctl.xml @@ -800,10 +800,14 @@ sealing key is stored in the journal data directory and shall remain on the host. The verification key should be - stored externally. Also see the + stored externally. Refer to the option in journald.conf5 - for details. + for information on Forward Secure + Sealing and for a link to a refereed + scholarly paper detailing the + cryptographic theory it is based on. + diff --git a/man/journald.conf.xml b/man/journald.conf.xml index 7aa2e78ed..8e642a3f5 100644 --- a/man/journald.conf.xml +++ b/man/journald.conf.xml @@ -130,15 +130,15 @@ by journalctl1's - command), forward secure sealing (FSS) + command), Forward Secure Sealing (FSS) for all persistent journal files is enabled. FSS is based on Seekable Sequential Key Generators by - G. A. Marson and B. Poettering and - may be used to protect journal files - from unnoticed - alteration. + G. A. Marson and B. Poettering + (doi:10.1007/978-3-642-40203-6_7) + and may be used to protect journal files + from unnoticed alteration. -- 2.30.2