TM3P - Tunes Mail-based Packet Publishing Protocol
The Tunes project will exchange packets by the currently only
reliable messaging protocol that's universally available, Internet e-mail.
PGP authentification
-
Only PGP 2.6.3x is currently used for authentification of TM3P messages.
TM3P-pgp-tar-sh
-
Currently, only one mode exists for automated message,
the unsecure backdoor that executes shell commands
(well, not completely unsecure, since messages are PGP-signed).
It is advised that commands be executed in restricted environments
(something like USERNAME=tunes ; chroot ~tunes),
though such thing is not implemented yet.
Eventually, it should be executed by Tunes in its usual way to provide
security through scoping.
Actually, this is just a very very preliminary protocol to get things
going, and only very trusted people should be allowed to use the backdoor
on any site.
As Tunes grow, this protocol will be superceded by more secure ones.
-
To enable this protocol on your machine, see the bin/TUNESADM script
in the tunesbin distribution...
Tunes Ring
The Tunes ring lists all people known to issue legal TM3P messages.
Project Coordinator:
Faré