pwmc: wipememory and not memset.

[libpwmd.git] / doc / tutorial.html

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN""http://www.w3.org/TR/html4/loose.dtd">
<HTML
><HEAD
><TITLE
>Libpwmd Tutorial</TITLE
><META
NAME="GENERATOR"
CONTENT="Modular DocBook HTML Stylesheet Version 1.79"></HEAD
><BODY
CLASS="ARTICLE"
><DIV
CLASS="ARTICLE"
><DIV
CLASS="TITLEPAGE"
><H1
CLASS="TITLE"
><A
NAME="AEN2"
>Libpwmd Tutorial</A
></H1
><H3
CLASS="AUTHOR"
><A
NAME="AEN5"
></A
></H3
><HR></DIV
><DIV
CLASS="SECT1"
><H2
CLASS="SECT1"
><A
NAME="AEN9"
>Introduction</A
></H2
><P
>This is a tutorial showing the basic usage of libpwmd<A
NAME="AEN12"
HREF="#FTN.AEN12"
><SPAN
CLASS="footnote"
>[2]</SPAN
></A
>. Libpwmd<SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
> </I
></SPAN
>is a library making it easy for applications to use pwmd<A
NAME="AEN15"
HREF="#FTN.AEN15"
><SPAN
CLASS="footnote"
>[3]</SPAN
></A
> (<SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>Password Manager Daemon). Password Manager Daemon</I
></SPAN
> is a universal data server. It began as a way to keep track of my passwords for accounts like email and websites but can be used to store anything you want.</P
><P
>There are other password management tools but pwmd has a couple of distinguishing features:</P
><P
></P
><UL
><LI
><P
>It does not depend on a desktop environment but has the ability for applications to connect to it like a desktop solution provides.</P
></LI
><LI
><P
>Some portion of a stored data can be shared with another portion in the same data file. This feature behaves a lot like a symbolic link on a file system, XML entities, or HTML targets if you're familiar with those, but implemented in a different way. This means less duplication of content. See <A
HREF="#SEC.LINKING-ELEMENTS-1"
>the Section called <I
>Linking elements</I
></A
> for details.</P
></LI
><LI
><P
>The XML document is encrypted with libgcrypt and can also use gpg-agent. Libgcrypt provides symmetric encryption while gpg-agent supports both PKI and smartcards.</P
></LI
></UL
><P
>Other features include:</P
><P
></P
><UL
><LI
><P
>Multi-threaded. More than one client may access the same data file while optionally locking out other clients.</P
></LI
><LI
><P
>Secure memory management. Pwmd will zero out memory before freeing it and the contents of the cached document are encrypted.</P
></LI
><LI
><P
>Remote connections over TLS with client certificates used as authentication.</P
></LI
><LI
><P
>Remote connections over SSH.</P
></LI
></UL
></DIV
><DIV
CLASS="SECT1"
><HR><H2
CLASS="SECT1"
><A
NAME="AEN37"
>File Format and Element Paths</A
></H2
><P
>The document is saved as an XML document and is manipulated by commands sent from a client. Commands that access data take what is called an <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>element path</I
></SPAN
> as an argument. An element path is a character string containing XML element names representing branches of an element tree. The branches are separated with a TAB (ASCII 0x09) character. Why a TAB? So other characters can be used in the element name. If for example a '/' were used as the separator, then a URL (i.e., http://sf.net/) could not be used as an element name.</P
><P
>For the rest of this tutorial, when you see &lt;TAB&gt;, replace it with a real TAB character. For example, the element path "root&lt;TAB&gt;child&lt;TAB&gt;last" has the following element tree:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>&#60;root&#62;
    &#60;child&#62;
        &#60;last&#62;
Content or XML CDATA of the "last" element.
        &#60;/last&#62;
    &#60;/child&#62;
&#60;/root&#62;</PRE
></TD
></TR
></TABLE
><P
>I should say that the XML structure that pwmd uses is a little more complicated. It really looks like the following internally, but we will use the above format in this tutorial for simplicity:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>&#60;element _name="root"&#62;
    &#60;element _name="child"&#62;
        &#60;element _name="last"&#62;
Content or CDATA of the "last" element.
        &#60;/element&#62;
    &#60;/element&#62;
&#60;/element&#62;</PRE
></TD
></TR
></TABLE
><P
>Every element created has an element named <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>element</I
></SPAN
> with an attribute <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>_name</I
></SPAN
> associated with it. The value of the <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>_name</I
></SPAN
> attribute is what an element in an element path refers to. It is done this way so that a wider range of characters can be used in an element name while maintaining valid XML. In fact the only restriction of an element name is that it not contain whitespace characters and not begin with an exclamation point (ASCII 0x21 or !). See <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
><A
HREF="#SEC.LINKING-ELEMENTS-1"
>the Section called <I
>Linking elements</I
></A
> </I
></SPAN
>for an exception.</P
><P
>There is one other difference from your normal XML document in that only the first match of an element is considered for the current element tree depth. When an element of the current depth of an element tree is found, the next element in the element path is searched for beginning at the child node of the found element. From the example above:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>&#60;root&#62;
    &#60;child&#62;
        &#60;last&#62;
Content or XML CDATA of the "last" element.
        &#60;/last&#62;
    &#60;/child&#62;
    &#60;child&#62;
This element will never be reached.
    &#60;/child&#62;
&#60;/root&#62;</PRE
></TD
></TR
></TABLE
><P
>The second "child" element is never reached.</P
></DIV
><DIV
CLASS="SECT1"
><HR><H2
CLASS="SECT1"
><A
NAME="AEN54"
>Connecting to PWMD</A
></H2
><P
>You will need a <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>pwmd</I
></SPAN
> client to send commands to the pwmd server. <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>libpwmd</I
></SPAN
> includes a client named <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>pwmc</I
></SPAN
>. It is command-line based and there are not any fancy graphics, but it is good for understanding how <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>pwmd</I
></SPAN
> commands are processed. If you want a more user friendly client that resembles a file manager and has a point and click interface, try QPwmc <A
NAME="AEN61"
HREF="#FTN.AEN61"
><SPAN
CLASS="footnote"
>[4]</SPAN
></A
> which uses the Qt4 toolkit and is also a full featured client.</P
><P
>In this tutorial we will use the <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>pwmc</I
></SPAN
> client included with libpwmd. <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>pwmc</I
></SPAN
> has two modes that commands are read from: interactive and stdin. The interactive mode uses the readline library and has command history, while reading from standard input (stdin) makes shell scripting and automation easy. For the examples, we will be connecting to the default local unix domain socket that pwmd waits for connections on. Remote connections are possible over TLS or an SSH channel but those are not covered here. Read the pwmc(1) manual page for details about how to do that.</P
><P
>The example filename we will use is "datafile". It is initially a non-existent file but it will be created once we have saved to it. Now let us connect to the server in interactive mode and open the data file:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>$ pwmc datafile
Connected.
pwm&#62;</PRE
></TD
></TR
></TABLE
><P
>The "pwm&gt;" prompt is a readline prompt that has command history and can do filename completion. It also is annoying because, as mentioned, elements in element paths are TAB delimited, but command completion in readline uses the TAB character, too. To insert a real TAB character in interactive mode rather than do readline completion, you will need to first press CTRL-V and then press TAB.</P
></DIV
><DIV
CLASS="SECT1"
><HR><H2
CLASS="SECT1"
><A
NAME="AEN69"
>Commands</A
></H2
><P
>There are two different types of commands: client commands and protocol commands. The client commands are <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>pwmc</I
></SPAN
> specific and only available to the <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>pwmc</I
></SPAN
> client. Protocol commands are commands sent from any client and to the <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>pwmd</I
></SPAN
> server. All pwmc client commands are prefixed with a dot '.' followed by the command name. Protocol commands are sent without any prefix. To see the available pwmc and protocol commands, send the HELP command:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>pwm&#62; .help</PRE
></TD
></TR
></TABLE
><P
>or</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>pwm&#62; help</PRE
></TD
></TR
></TABLE
><P
>To store some data in an element path, you will need to know what element path to create. It is up to you how you want your data organized. If for example you will be storing account information it may be good to categorize what the account is for: email, instant messaging, blogging, etc. An application that uses libpwmd may require that a certain element path exists. Refer to that applications documentation to determine what element paths need to be created.</P
><P
>In the following example we will setup mail server element paths which can be used for other applications requiring a mail server configuration. First, lets create the hostname element path:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>pwm&#62; STORE</PRE
></TD
></TR
></TABLE
><P
>The STORE command is a <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>pwmd</I
></SPAN
> protocol command. This and a few other commands, use what is called a <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>server inquire</I
></SPAN
> to retrieve data from the client while other commands retrieve the data only from the command arguments. The server inquire will wait for the client to finish sending its data before completing the command. When responding to a server inquire in pwmc, pwmc will show a message telling you that it is waiting for data to be sent. Enter the element path and its content, then press &lt;CTRL-D&gt; twice to finish sending the data and to let <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>pwmd</I
></SPAN
> complete the command:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>pwm&#62; STORE
email&#60;TAB&#62;isp&#60;TAB&#62;IMAP&#60;TAB&#62;hostname&#60;TAB&#62;imap.server.com&#60;CTRL-D&#62;&#60;CTRL-D&#62;</PRE
></TD
></TR
></TABLE
><P
>Remember that you should replace &lt;TAB&gt; in the examples with a real TAB character. It should be known that when sending data via a server inquire there is no need to press &lt;CTRL-V&gt; to insert the &lt;TAB&gt; character. That is only needed to be done from the readline command prompt and when not doing a server inquire.</P
><P
>After pressing the first &lt;CTRL-D&gt;, the characters that were entered are sent to <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>pwmd</I
></SPAN
> and the inquire continues. To terminate the inquire and finish sending data for the command press &lt;CTRL-D&gt; a second time.</P
><P
>If you were to have pressed &lt;RETURN&gt; before any &lt;CTRL-D&gt; then the inquired line would have been sent in full including a newline character. Since in this example a newline character in a hostname is not a valid hostname, this is not what we want.</P
><P
>We have just created an element path whose XML structure looks like the following:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>&#60;email&#62;
    &#60;isp&#62;
        &#60;IMAP&#62;
            &#60;hostname&#62;imap.server.com&#60;/hostname&#62;
        &#60;/IMAP&#62;
    &#60;/isp&#62;
&#60;/email&#62;</PRE
></TD
></TR
></TABLE
><P
>The GET protocol command returns the value, or content, of the last element of an element path. To retrieve the hostname of the element path we just created, do:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>pwm&#62; GET email&#60;TAB&#62;isp&#60;TAB&#62;IMAP&#60;TAB&#62;hostname
imap.server.com</PRE
></TD
></TR
></TABLE
><P
>Remember that in interactive mode and when not doing a server inquire, you will need to press &lt;CTRL-V&gt; before pressing &lt;TAB&gt;.</P
><P
>Let us create the rest of the needed elements:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>pwm&#62; STORE
email&#60;TAB&#62;isp&#60;TAB&#62;IMAP&#60;TAB&#62;port&#60;TAB&#62;993&#60;CTRL-D&#62;&#60;CTRL-D&#62;
pwm&#62; STORE
email&#60;TAB&#62;isp&#60;TAB&#62;IMAP&#60;TAB&#62;ssl&#60;TAB&#62;1&#60;CTRL-D&#62;&#60;CTRL-D&#62;
pwm&#62; STORE
email&#60;TAB&#62;isp&#60;TAB&#62;username&#60;TAB&#62;myusername&#60;CTRL-D&#62;&#60;CTRL-D&#62;
pwm&#62; STORE
email&#60;TAB&#62;isp&#60;TAB&#62;password&#60;TAB&#62;mypassword&#60;CTRL-D&#62;&#60;CTRL-D&#62;</PRE
></TD
></TR
></TABLE
><P
>Now the element structure for the "email" element looks like this:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>&#60;email&#62;
    &#60;isp&#62;
        &#60;IMAP&#62;
              &#60;hostname&#62;imap.server.com&#60;/hostname&#62;
              &#60;port&#62;993&#60;/port&#62;
              &#60;ssl&#62;1&#60;/ssl&#62;
        &#60;/IMAP&#62;
        &#60;username&#62;myusername&#60;/username&#62;
        &#60;password&#62;mypassword&#60;/password&#62;
    &#60;/isp&#62;
&#60;/email&#62;</PRE
></TD
></TR
></TABLE
><P
>If you wanted to change your password (after changing it on the mail server, of course) just do as you did when initially creating the password element path. The new content will overwrite the existing content:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>pwm&#62; STORE
email&#60;TAB&#62;isp&#60;TAB&#62;password&#60;TAB&#62;newpassword&#60;CTRL-D&#62;&#60;CTRL-D&#62;</PRE
></TD
></TR
></TABLE
><P
>An application using libpwmd that needs to know mail server information now has all the information it needs. The only thing left to do now is to save the changes:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>pwm&#62; &#60;CTRL-D&#62;</PRE
></TD
></TR
></TABLE
><P
>After pressing &lt;CTRL-D&gt; a prompt will be shown asking what to do next. Press &ldquo;s&rdquo; to save what we have created.</P
><P
>Since this is a new file, you will be prompted for a passphrase to use for encryption. Once done, the data file is encrypted and written to disk and the passphrase is cached in pwmd so you do not need to enter it the next time your data file is opened or saved. There are a few pwmd configuration parameters and commands that affect how this operates. See the <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>pwmd</I
></SPAN
> documentation for details.</P
></DIV
><DIV
CLASS="SECT1"
><HR><H2
CLASS="SECT1"
><A
NAME="SEC.LINKING-ELEMENTS-1"
>Linking elements</A
></H2
><P
>One distinguishing feature of pwmd is the ability to share data of one element path with another. If for example your ISP lets you host a blog on their server and you use a blogging client that can use libpwmd for authentication details, you can share authentication information with the email example above when the account details are the same. When element linking is used, this avoids the need to change the content for both the blogging and email password elements.</P
><P
>This is done by setting a special &ldquo;target&rdquo; attribute for an element. It behaves similarly to the HTML &ldquo;target&rdquo; attribute or XML entities or a symbolic link on a filesystem. </P
><P
>Let's create an example blogging element path:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>pwm&#62; STORE
blog&#60;TAB&#62;isp&#60;TAB&#62;hostname&#60;TAB&#62;blog.myisp.com&#60;CTRL-D&#62;&#60;CTRL-D&#62;

pwm&#62; ATTR SET target blog&#60;TAB&#62;isp&#60;TAB&#62;username email&#60;TAB&#62;isp&#60;TAB&#62;username
pwm&#62; ATTR SET target blog&#60;TAB&#62;isp&#60;TAB&#62;password email&#60;TAB&#62;isp&#60;TAB&#62;password</PRE
></TD
></TR
></TABLE
><P
>Now each access of the "blog/isp/username" and "blog/isp/password" element paths, which were created if they did not already exist, will point to "email/isp/username" and "email/isp/password", respectively. To retrieve the value or content of an element that contains a "target" attribute without following any &ldquo;target&rdquo; attribute, prefix the element with a '!' when specifying it in an element path. For example:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>pwm&#62; GET blog&#60;TAB&#62;isp&#60;TAB&#62;!password
ERR 536870938: No value</PRE
></TD
></TR
></TABLE
><P
>An error is returned because we have not assigned a value to the literal element. A literal element is an element that either contains no "target" attribute or ignores it by prefixing the element with the mentioned literal element character '!'. Let us try storing an example password to the literal element to show usage:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>pwmd&#62; STORE
blog&#60;TAB&#62;isp&#60;TAB&#62;!password&#60;TAB&#62;literalpassword&#60;CTRL-D&#62;&#60;CTRL-D&#62;</PRE
></TD
></TR
></TABLE
><P
>Now when we redo the previous GET command:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>pwm&#62; GET blog&#60;TAB&#62;isp&#60;TAB&#62;!password
literalpassword</PRE
></TD
></TR
></TABLE
><P
>This is the value of the literal password element of the element path. To follow the element path stored in the "target" attribute, omit the '!' in the password element. This will return the &ldquo;email/isp/password&rdquo; element content:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>pwm&#62; GET blog&#60;TAB&#62;isp&#60;TAB&#62;password
mypassword</PRE
></TD
></TR
></TABLE
><P
>A "target" attribute may also refer to another element with a "target" attribute. Every "target" attribute will be followed until there are no others to resolve. To get the real element path and resolve all "target" attributes, use the REALPATH command:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>pwm&#62; REALPATH blog&#60;TAB&#62;isp&#60;TAB&#62;password
!email&#60;TAB&#62;!isp&#60;TAB&#62;!password</PRE
></TD
></TR
></TABLE
><P
>As you can see each element is prefixed with the literal '!' character meaning that no "target" attribute exists in any element of the resulting element path.</P
><P
>Using the LIST command is useful to show the element structure of a document:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>pwm&#62; LIST
!email
!blog
pwm&#62; LIST !email
!email
!email&#60;TAB&#62;!isp
!email&#60;TAB&#62;!isp&#60;TAB&#62;!username
!email&#60;TAB&#62;!isp&#60;TAB&#62;!password
!email&#60;TAB&#62;!isp&#60;TAB&#62;!IMAP&#60;TAB&#62;!hostname
!email&#60;TAB&#62;!isp&#60;TAB&#62;!IMAP&#60;TAB&#62;!port
!email&#60;TAB&#62;!isp&#60;TAB&#62;!IMAP&#60;TAB&#62;!ssl
pwm&#62; LIST !blog
!blog
!blog&#60;TAB&#62;!isp
!blog&#60;TAB&#62;!isp&#60;TAB&#62;!username
!blog&#60;TAB&#62;!isp&#60;TAB&#62;username
!blog&#60;TAB&#62;!isp&#60;TAB&#62;!password
!blog&#60;TAB&#62;!isp&#60;TAB&#62;password</PRE
></TD
></TR
></TABLE
><P
>Notice that there are two username and password elements in the &ldquo;blog&rdquo; element path: each with and without the literal element character prefix. This shows that both the username and password elements contain a "target" attribute.</P
><P
>For the final example, we will remove the &ldquo;target&rdquo; attribute of the blogging password element:</P
><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TR
><TD
><PRE
CLASS="SCREEN"
>pwm&#62; ATTR DELETE target blog&#60;TAB&#62;isp&#60;TAB&#62;!password</PRE
></TD
></TR
></TABLE
><P
>If we were to have omitted the '!' from the password element then pwmd would try to remove the "target" attribute from the "email/isp/password" element path. That would return an error because no &ldquo;target&rdquo; attribute had been set for that element.</P
><P
>Note that the "blog" and "isp" elements have no literal element character prepended to them in the example. It is not needed because they have no &ldquo;target&rdquo; attribute themselves.</P
><P
>Using &ldquo;target&rdquo; attributes can be confusing. The best way to get the hang of linking elements is to experiment and use the LIST and DUMP commands to show the document structure. Remember to use the literal element prefix '!' when you do not want to follow any "target" attributes.</P
></DIV
></DIV
><H3
CLASS="FOOTNOTES"
>Notes</H3
><TABLE
BORDER="0"
CLASS="FOOTNOTES"
WIDTH="100%"
><TR
><TD
ALIGN="LEFT"
VALIGN="TOP"
WIDTH="5%"
><A
NAME="FTN.AEN6"
HREF="#AEN6"
><SPAN
CLASS="footnote"
>[1]</SPAN
></A
></TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
WIDTH="95%"
><FONT
COLOR="RED"
>bjk@luxsci.net</FONT
></TD
></TR
><TR
><TD
ALIGN="LEFT"
VALIGN="TOP"
WIDTH="5%"
><A
NAME="FTN.AEN12"
HREF="#AEN12"
><SPAN
CLASS="footnote"
>[2]</SPAN
></A
></TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
WIDTH="95%"
><FONT
COLOR="RED"
>http://libpwmd.sourceforge.net/</FONT
></TD
></TR
><TR
><TD
ALIGN="LEFT"
VALIGN="TOP"
WIDTH="5%"
><A
NAME="FTN.AEN15"
HREF="#AEN15"
><SPAN
CLASS="footnote"
>[3]</SPAN
></A
></TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
WIDTH="95%"
><FONT
COLOR="RED"
>http://pwmd.sourceforge.net/</FONT
></TD
></TR
><TR
><TD
ALIGN="LEFT"
VALIGN="TOP"
WIDTH="5%"
><A
NAME="FTN.AEN61"
HREF="#AEN61"
><SPAN
CLASS="footnote"
>[4]</SPAN
></A
></TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
WIDTH="95%"
><FONT
COLOR="RED"
>http://qpwmc.sourceforge.net/</FONT
></TD
></TR
></TABLE
></BODY
></HTML
>