Fossil SCM
Removed a bunch of explicit blockquote tags in the encryptedrepos doc which were essentially duplicating the hierarchical indent structure now implemented by this branch's skin changes. This is why we want to do this at the skin level: so all pages get this appearance, avoiding the need for manual formatting on each page.
Commit
01e364c6f198aa2db2801ceee923b7eb3e30a57a8c7501c8ae3893ac27d9d135
Parent
9f71793cdff2dcc…
1 file changed
+30
-18
+30
-18
| --- www/encryptedrepos.wiki | ||
| +++ www/encryptedrepos.wiki | ||
| @@ -1,12 +1,15 @@ | ||
| 1 | 1 | <title>How To Use Encrypted Repositories</title> |
| 2 | -<h2>Introduction</h2><blockquote> | |
| 2 | + | |
| 3 | +<h2>Introduction</h2> | |
| 4 | + | |
| 3 | 5 | Fossil can be compiled so that it works with encrypted repositories using |
| 4 | 6 | the [https://www.sqlite.org/see/doc/trunk/www/readme.wiki|SQLite Encryption Extension]. |
| 5 | 7 | This technical note explains the process. |
| 6 | -</blockquote> | |
| 7 | -<h2>Building An Encryption-Enabled Fossil</h2><blockquote> | |
| 8 | + | |
| 9 | +<h2>Building An Encryption-Enabled Fossil</h2> | |
| 10 | + | |
| 8 | 11 | The SQLite Encryption Extension (SEE) is proprietary software and requires |
| 9 | 12 | [https://sqlite.org/purchase/see|purchasing a license]. |
| 10 | 13 | |
| 11 | 14 | Assuming you have an SEE license, the first step of compiling Fossil to |
| 12 | 15 | use SEE is to create an SEE-enabled version of the SQLite database source code. |
| @@ -16,21 +19,24 @@ | ||
| 16 | 19 | "shell.c" file, renamed as "shell-see.c", and place it in the extsrc/ subfolder |
| 17 | 20 | beside the original "shell.c". |
| 18 | 21 | |
| 19 | 22 | Add the --with-see command-line option to the configuration script to enable |
| 20 | 23 | the use of SEE on unix-like systems. |
| 21 | -<blockquote><pre> | |
| 24 | + | |
| 25 | +<pre> | |
| 22 | 26 | ./configure --with-see; make |
| 23 | -</pre></blockquote> | |
| 27 | +</pre> | |
| 24 | 28 | |
| 25 | 29 | To build for Windows using MSVC, add |
| 26 | 30 | the "USE_SEE=1" argument to the "nmake" command line. |
| 27 | -<blockquote><pre> | |
| 31 | + | |
| 32 | +<pre> | |
| 28 | 33 | nmake -f makefile.msc USE_SEE=1 |
| 29 | -</pre></blockquote> | |
| 30 | -</blockquote> | |
| 31 | -<h2>Using Encrypted Repositories</h2><blockquote> | |
| 34 | +</pre> | |
| 35 | + | |
| 36 | +<h2>Using Encrypted Repositories</h2> | |
| 37 | + | |
| 32 | 38 | Any Fossil repositories whose filename ends with ".efossil" is taken to be |
| 33 | 39 | an encrypted repository. Fossil will prompt for the encryption password and |
| 34 | 40 | attempt to open the repository database using that password. |
| 35 | 41 | |
| 36 | 42 | Every invocation of fossil on an encrypted repository requires retyping the |
| @@ -39,32 +45,38 @@ | ||
| 39 | 45 | command which prompts for the password just once, then reuses it for each |
| 40 | 46 | subsequent Fossil command entered at the prompt. |
| 41 | 47 | |
| 42 | 48 | On Windows, the "fossil server", "fossil ui", and "fossil shell" commands do not |
| 43 | 49 | (currently) work on an encrypted repository. |
| 44 | -</blockquote> | |
| 45 | -<h2>Additional Security</h2><blockquote> | |
| 50 | + | |
| 51 | +<h2>Additional Security</h2> | |
| 52 | + | |
| 46 | 53 | Use the FOSSIL_SECURITY_LEVEL environment for additional protection. |
| 47 | -<blockquote><pre> | |
| 54 | + | |
| 55 | +<pre> | |
| 48 | 56 | export FOSSIL_SECURITY_LEVEL=1 |
| 49 | -</pre></blockquote> | |
| 57 | +</pre> | |
| 58 | + | |
| 50 | 59 | A setting of 1 or greater |
| 51 | 60 | prevents fossil from trying to remember the previous sync password. |
| 52 | -<blockquote><pre> | |
| 61 | + | |
| 62 | +<pre> | |
| 53 | 63 | export FOSSIL_SECURITY_LEVEL=2 |
| 54 | -</pre></blockquote> | |
| 64 | +</pre> | |
| 65 | + | |
| 55 | 66 | A setting of 2 or greater |
| 56 | 67 | causes all password prompts to be preceded by a random translation matrix similar |
| 57 | 68 | to the following: |
| 58 | -<blockquote><pre> | |
| 69 | + | |
| 70 | +<pre> | |
| 59 | 71 | abcde fghij klmno pqrst uvwyz |
| 60 | 72 | qresw gjymu dpcoa fhkzv inlbt |
| 61 | -</pre></blockquote> | |
| 73 | +</pre> | |
| 74 | + | |
| 62 | 75 | When entering the password, the user must substitute the letter on the second |
| 63 | 76 | line that corresponds to the letter on the first line. Uppercase substitutes |
| 64 | 77 | for uppercase inputs, and lowercase substitutes for lowercase inputs. Letters |
| 65 | 78 | that are not in the translation matrix (digits, punctuation, and "x") are not |
| 66 | 79 | modified. For example, given the |
| 67 | 80 | translation matrix above, if the password is "pilot-9crazy-xube", then the user |
| 68 | 81 | must type "fmpav-9ekqtb-xirw". This simple substitution cypher helps prevent |
| 69 | 82 | password capture by keyloggers. |
| 70 | -</blockquote> | |
| 71 | 83 |
| --- www/encryptedrepos.wiki | |
| +++ www/encryptedrepos.wiki | |
| @@ -1,12 +1,15 @@ | |
| 1 | <title>How To Use Encrypted Repositories</title> |
| 2 | <h2>Introduction</h2><blockquote> |
| 3 | Fossil can be compiled so that it works with encrypted repositories using |
| 4 | the [https://www.sqlite.org/see/doc/trunk/www/readme.wiki|SQLite Encryption Extension]. |
| 5 | This technical note explains the process. |
| 6 | </blockquote> |
| 7 | <h2>Building An Encryption-Enabled Fossil</h2><blockquote> |
| 8 | The SQLite Encryption Extension (SEE) is proprietary software and requires |
| 9 | [https://sqlite.org/purchase/see|purchasing a license]. |
| 10 | |
| 11 | Assuming you have an SEE license, the first step of compiling Fossil to |
| 12 | use SEE is to create an SEE-enabled version of the SQLite database source code. |
| @@ -16,21 +19,24 @@ | |
| 16 | "shell.c" file, renamed as "shell-see.c", and place it in the extsrc/ subfolder |
| 17 | beside the original "shell.c". |
| 18 | |
| 19 | Add the --with-see command-line option to the configuration script to enable |
| 20 | the use of SEE on unix-like systems. |
| 21 | <blockquote><pre> |
| 22 | ./configure --with-see; make |
| 23 | </pre></blockquote> |
| 24 | |
| 25 | To build for Windows using MSVC, add |
| 26 | the "USE_SEE=1" argument to the "nmake" command line. |
| 27 | <blockquote><pre> |
| 28 | nmake -f makefile.msc USE_SEE=1 |
| 29 | </pre></blockquote> |
| 30 | </blockquote> |
| 31 | <h2>Using Encrypted Repositories</h2><blockquote> |
| 32 | Any Fossil repositories whose filename ends with ".efossil" is taken to be |
| 33 | an encrypted repository. Fossil will prompt for the encryption password and |
| 34 | attempt to open the repository database using that password. |
| 35 | |
| 36 | Every invocation of fossil on an encrypted repository requires retyping the |
| @@ -39,32 +45,38 @@ | |
| 39 | command which prompts for the password just once, then reuses it for each |
| 40 | subsequent Fossil command entered at the prompt. |
| 41 | |
| 42 | On Windows, the "fossil server", "fossil ui", and "fossil shell" commands do not |
| 43 | (currently) work on an encrypted repository. |
| 44 | </blockquote> |
| 45 | <h2>Additional Security</h2><blockquote> |
| 46 | Use the FOSSIL_SECURITY_LEVEL environment for additional protection. |
| 47 | <blockquote><pre> |
| 48 | export FOSSIL_SECURITY_LEVEL=1 |
| 49 | </pre></blockquote> |
| 50 | A setting of 1 or greater |
| 51 | prevents fossil from trying to remember the previous sync password. |
| 52 | <blockquote><pre> |
| 53 | export FOSSIL_SECURITY_LEVEL=2 |
| 54 | </pre></blockquote> |
| 55 | A setting of 2 or greater |
| 56 | causes all password prompts to be preceded by a random translation matrix similar |
| 57 | to the following: |
| 58 | <blockquote><pre> |
| 59 | abcde fghij klmno pqrst uvwyz |
| 60 | qresw gjymu dpcoa fhkzv inlbt |
| 61 | </pre></blockquote> |
| 62 | When entering the password, the user must substitute the letter on the second |
| 63 | line that corresponds to the letter on the first line. Uppercase substitutes |
| 64 | for uppercase inputs, and lowercase substitutes for lowercase inputs. Letters |
| 65 | that are not in the translation matrix (digits, punctuation, and "x") are not |
| 66 | modified. For example, given the |
| 67 | translation matrix above, if the password is "pilot-9crazy-xube", then the user |
| 68 | must type "fmpav-9ekqtb-xirw". This simple substitution cypher helps prevent |
| 69 | password capture by keyloggers. |
| 70 | </blockquote> |
| 71 |
| --- www/encryptedrepos.wiki | |
| +++ www/encryptedrepos.wiki | |
| @@ -1,12 +1,15 @@ | |
| 1 | <title>How To Use Encrypted Repositories</title> |
| 2 | |
| 3 | <h2>Introduction</h2> |
| 4 | |
| 5 | Fossil can be compiled so that it works with encrypted repositories using |
| 6 | the [https://www.sqlite.org/see/doc/trunk/www/readme.wiki|SQLite Encryption Extension]. |
| 7 | This technical note explains the process. |
| 8 | |
| 9 | <h2>Building An Encryption-Enabled Fossil</h2> |
| 10 | |
| 11 | The SQLite Encryption Extension (SEE) is proprietary software and requires |
| 12 | [https://sqlite.org/purchase/see|purchasing a license]. |
| 13 | |
| 14 | Assuming you have an SEE license, the first step of compiling Fossil to |
| 15 | use SEE is to create an SEE-enabled version of the SQLite database source code. |
| @@ -16,21 +19,24 @@ | |
| 19 | "shell.c" file, renamed as "shell-see.c", and place it in the extsrc/ subfolder |
| 20 | beside the original "shell.c". |
| 21 | |
| 22 | Add the --with-see command-line option to the configuration script to enable |
| 23 | the use of SEE on unix-like systems. |
| 24 | |
| 25 | <pre> |
| 26 | ./configure --with-see; make |
| 27 | </pre> |
| 28 | |
| 29 | To build for Windows using MSVC, add |
| 30 | the "USE_SEE=1" argument to the "nmake" command line. |
| 31 | |
| 32 | <pre> |
| 33 | nmake -f makefile.msc USE_SEE=1 |
| 34 | </pre> |
| 35 | |
| 36 | <h2>Using Encrypted Repositories</h2> |
| 37 | |
| 38 | Any Fossil repositories whose filename ends with ".efossil" is taken to be |
| 39 | an encrypted repository. Fossil will prompt for the encryption password and |
| 40 | attempt to open the repository database using that password. |
| 41 | |
| 42 | Every invocation of fossil on an encrypted repository requires retyping the |
| @@ -39,32 +45,38 @@ | |
| 45 | command which prompts for the password just once, then reuses it for each |
| 46 | subsequent Fossil command entered at the prompt. |
| 47 | |
| 48 | On Windows, the "fossil server", "fossil ui", and "fossil shell" commands do not |
| 49 | (currently) work on an encrypted repository. |
| 50 | |
| 51 | <h2>Additional Security</h2> |
| 52 | |
| 53 | Use the FOSSIL_SECURITY_LEVEL environment for additional protection. |
| 54 | |
| 55 | <pre> |
| 56 | export FOSSIL_SECURITY_LEVEL=1 |
| 57 | </pre> |
| 58 | |
| 59 | A setting of 1 or greater |
| 60 | prevents fossil from trying to remember the previous sync password. |
| 61 | |
| 62 | <pre> |
| 63 | export FOSSIL_SECURITY_LEVEL=2 |
| 64 | </pre> |
| 65 | |
| 66 | A setting of 2 or greater |
| 67 | causes all password prompts to be preceded by a random translation matrix similar |
| 68 | to the following: |
| 69 | |
| 70 | <pre> |
| 71 | abcde fghij klmno pqrst uvwyz |
| 72 | qresw gjymu dpcoa fhkzv inlbt |
| 73 | </pre> |
| 74 | |
| 75 | When entering the password, the user must substitute the letter on the second |
| 76 | line that corresponds to the letter on the first line. Uppercase substitutes |
| 77 | for uppercase inputs, and lowercase substitutes for lowercase inputs. Letters |
| 78 | that are not in the translation matrix (digits, punctuation, and "x") are not |
| 79 | modified. For example, given the |
| 80 | translation matrix above, if the password is "pilot-9crazy-xube", then the user |
| 81 | must type "fmpav-9ekqtb-xirw". This simple substitution cypher helps prevent |
| 82 | password capture by keyloggers. |
| 83 |