todo.org notes update

todo.org

@@ -2,6 +2,8 @@
   This is the main todo org mode file for the fwknop project
 ** COMPLETED
    This bucket is for completed tasks.
+*** Update fwknopd man page for GPG_ALLOW_NO_PW
+    :CLOSED: <2012-08-14 Tue>
 *** Preserve existing configs under 'make install'
     :CLOSED: <2012-08-13 Mon>
     - The current 'make install' behavior overwrites any existing fwknopd config
@@ -13,9 +15,17 @@
     :CLOSED: <2012-08-12 Sun>
    Hank Leininger suggested that fwknopd do better detection for the iptables
    comment match since it is required for the expiration of SPA rules.
-*** Set restrictive permissions on /etc/fwknop/ directory and /etc/fwknop/* files.
+*** Set restrictive permissions on /etc/fwknop/ directory and /etc/fwknop/* files
     :CLOSED: <2012-08-12 Sun>
     Current default permissions on /etc/fwknop/ and /etc/fwknop/* are too lax.
+** Update fwknopd man page to include IPFW* vars
+   None of the ipfw variables are currently documented in the fwknopd man
+   page.
+** Use assert() in various places
+   Use assert() to validate expected values wherever possible.
+** For Ubuntu systems, have fwknopd managed by upstart
+   fwknopd can benefit from upstart management and monitoring on Ubuntu
+   systems.
 ** Include files for access.conf
    Hank Leininger suggested that the main access.conf file have an option to
    include other files in which access stanzas can be specified.  This makes
@@ -27,4 +37,3 @@
 ** ipfw active/expire sets cannot be the same
    Add a check to ensure that active and expire sets are not the same value in
    fwknopd.conf, and add a corresponding test in the test suite.
-