kaya-rekey(1) Kaya program reference kaya-rekey(1)NAME
kaya-rekey - Binary key regeneration for kaya web applications
SYNOPSIS
kaya-rekey FILE1 [FILE2 [...]]
DESCRIPTION
kaya-rekey gives all Kaya binaries specified on the command line a new application secret key
The application secret key makes webapps and CGI programs secure, by encrypting the state transfers. If you receive a webapp or CGI binary
from someone else, or you believe someone untrusted has had read access to your binary, you can use the kaya-rekey application to generate
a new application secret key without needing a recompile.
Binary distributors of Kaya applications are strongly recommended to use 'kaya-rekey' as part of the installation process.
Prior to Kaya 0.3.0 this utility was called rekey
OBTAINING
The latest release of Kaya can be obtained from <http://kayalang.org/download>
Development versions can be obtained using darcs(1) from <http://kayalang.org/darcs/>
SECURITY
kaya-rekey will use /dev/random to generate the new key if possible. If /dev/random is unavailable (Windows without MinGW, for example),
the new key will be generated pseudo-randomly. This may allow an attacker to easily guess the new key. In environments where security is a
concern, therefore, we strongly recommend recompiling with kayac(1) rather than using kaya-rekey if /dev/random is unavailable.
kaya-rekey will give a warning when rekeying if /dev/random is unavailable.
BUGS
Please report bugs in kaya-rekey to <kaya@kayalang.org>
kaya-rekey cannot rekey Kaya binaries generated with a compiler older than the switch to AES256 encryption (i.e. older than 0.2.0 final
version)
In rare cases, kaya-rekey may not be able to successfully rekey a file and will print an error instead. You must recompile in this case to
get a new application key.
LICENSE
kaya-rekey is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License (version 2 or any
later version) as published by the Free Software Foundation.
SEE ALSO kayac(1)Kaya December 2006 kaya-rekey(1)
Check Out this Related Man Page
ekey-egd-linux(8) System Manager's Manual ekey-egd-linux(8)NAME
egd-linux - EGD Entropy Daemon
SYNOPSIS
ekey-egd-linux [ -H hostip ] [ -p portno ] [ -b blocks ] [ -s shannons ] [ -D pidfile ] [ -r time ] [ -v ] [ -h ]
DESCRIPTION
ekey-egd-linux is a daemon which connects to an EGD server and places the read entropy in the kernels pool.
OPTIONS -H hostip
Set the host IP address to connect to.
-p portno
Set the port number to connect to.
-b blocks
Set the number of 1024 bit blocks to request each time.
-s shannons
Set the number of shannons per byte.
-D pidfile
Specify the name and path of the file used to record the ekey-egd-linux process ID.
-r time
Set the time between reconnect attempts. The default (0) causes the daemon to exit immediately after the initial connection attempt
and no additional connection attempts are made. A non zero value set is the number of seconds the daemon will wait between connec-
tion attempts.
-h Print the usage text and exit.
-v Print the version number and exit.
SEE ALSO ekeyd(8), ekey-rekey(8), ekey-setkey(8)AUTHOR
Copyright (C) 2009 Simtec Electronics. All rights reserved.
Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the
"Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish,
distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to
the following conditions:
The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MER-
CHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY
CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE
SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
19th July 2009 ekey-egd-linux(8)