1 .\" This program is free software; you can redistribute it and/or modify
2 .\" it under the terms of the GNU General Public License as published by
3 .\" the Free Software Foundation; either version 2 of the License, or
4 .\" (at your option) any later version.
6 .\" This program is distributed in the hope that it will be useful,
7 .\" but WITHOUT ANY WARRANTY; without even the implied warranty of
8 .\" MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
9 .\" GNU General Public License for more details.
11 .\" You should have received a copy of the GNU General Public License
12 .\" along with this program; if not, write to the Free Software
13 .\" Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
15 \\$2 \(laURL: \\$1 \(ra\\$3
17 .if \n[.g] .mso www.tmac
18 .TH PWMD 1 "13 Jan 2007" "Password Manager Daemon" "Password Manager Daemon"
21 pwmd \- local socket data server
24 [\-hv] [\-f <rcfile>] [\-I <filename>]
28 is a daemon that listens for connections on a local socket. Clients connect to
29 the server and can get or modify "account" data. The word "account" is just a
30 placeholder for the element describing and item. But what the data actually is
31 can be anything. The data is stored in an AES encrypted XML file.
36 Specify an alternate configuration file. The default is \fB~/.pwmdrc\fR.
39 Import an XML file prompting for a key to use for encryption. The encrypted
40 data will be written to stdout.
48 .SH CONFIGURATION FILE
49 Blank lines and lines beginning with '#' are ignored. The file requires a
50 group of options named "default". Groups are declared with [groupname]. Only
51 the group "default" will be used. If the first character of a string value is
52 a tilde, it will be expanded to your home directory.
54 .I "socket_path=<string>"
55 Listen on the specified socket. The default is \fB~/.pwmd/socket\fR.
57 .I "data_directory=<string>"
60 should store and retrieve data files. The default is \fB~/.pwmd\fR.
62 .I "disable_mlockall=<boolean>"
67 If you have resource limits beyond your control and
69 is taking to much physical memory then this option may help at the cost of
70 security. The data might be swapped to virtual memory and later recovered.
71 Reguardless of this option
73 will still be used for the file cache. The default is \fBfalse\fR.
75 .I "cache_size=<integer>"
76 Specfies the size of the file cache. Must be in multiples of your systems
77 \fBPAGE_SIZE\fR. The default is one page which on Linux-x86 is 4096 bytes or
80 .I "log_path=<string>"
81 Logs informational messages to the specified file. The default is
84 .I "enable_logging=<boolean>"
85 Enable or disable logging to \fBlog_path\fR. The default is \fBfalse\fR.
87 .I "iterations=<integer>"
88 The number of times to encrypt the data. A value of 10000 or more will make
89 dictionary attacks very slow depending on the CPU. The default is 0.
91 .I "cache_push=<list>"
92 A list of filenames separated by commas that will be pushed into the file
95 will ask for the key for each file specified. The default is none.
99 Clears the entire file cache. If there are any clients connected, a key will
100 be required for the next OPEN or SAVE command.
105 Default configuration file.
108 Default data directory.
111 Default listening socket.
113 .B /dev/shm/pwmd.<uid>
114 On Linux, and maybe other systems, where the file cache is stored for the
115 duration of the daemon. If your
117 supports MAP_ANONYMOUS with MAP_SHARED then no file will need to be created.
120 Ben Kibbey <bjk@luxsci.net>
122 .URL "http://bjk.sourceforge.net/pwmd/" "PWMD Homepage" .