funcd (1) - Linux Manuals

funcd: deaemon for the Fedora Universal Network Controller

NAME

funcd - deaemon for the Fedora Universal Network Controller

SYNOPSIS

funcd [--daemon]
funcd --list-modules

DESCRIPTION

funcd registers itself to a certificate server (certmaster) listed in /etc/certmaster/minion.conf and takes orders from the command line func when that program is run from that certificate server.

Modules and capabilities provided by funcd are specified at https://fedorahosted.org/func/

OPTIONS

--daemon             daemonize the server on startup
--list-modules      list modules that would be loaded and exit

CONFIGURATION

See /etc/certmaster/minion.conf for other configuration options.

ACCESS CONTROLS

By default the certmaster host will always have full access to run all modules on minions, currently this behavior can be disabled by tweaking commonconfig.py.

Additional ACLs can be used to let other (SSL authenticated) hosts access to specific modules. Access control files take one acl per row with the format:

<common_name>-<certificate_hash> = method[, method]...

where common_name is the CN from the host certificate and certificate_hash is its hash as obtained from

openssl x509 -noout -in <certificate_file> -hash

See https://fedorahosted.org/func/wiki/FuncSecurity for additional details.

FILES

/etc/certmaster/minion.conf  certmaster config for this minion
/etc/func/minion.conf               minion configuration
/etc/func/async_methods.conf configuration for async methods
/etc/func/minion-acl.d/              directory for ACL files

ADDITONAL RESOURCES

See the project wiki at https://fedorahosted.org/func/

AUTHOR

Various, see https://fedorahosted.org/func/

SEE ALSO

func(1), certmaster(1), "certmaster-ca(1)", "func-transmit(1)"

Pages related to funcd