From 03f37e3c749c99c991e0f8704f7627c11bbf34de Mon Sep 17 00:00:00 2001
From: Dominik Roth <mail@dominik-roth.eu>
Date: Tue, 13 May 2025 21:23:55 +0200
Subject: [PATCH] check out raven

---
 MASTER_README.md | 4 +++-
 README.md        | 2 ++
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/MASTER_README.md b/MASTER_README.md
index fec8ca1..077d434 100644
--- a/MASTER_README.md
+++ b/MASTER_README.md
@@ -32,7 +32,7 @@ sudo tang-show-keys /var/db/tang
 - Client verifies Tang's identity through signed advertisements
 
 ### Request Logging
-To log all unlock requests (for future approval system):
+To log all unlock requests:
 
 1. Create a wrapper script:
 ```bash
@@ -49,6 +49,8 @@ exec /usr/libexec/tangd "$@"
 echo "$TIMESTAMP: Request auto-approved" >> /var/log/tang-requests.log
 ```
 
+Or use the wrapper provided by [raven](https://git.dominik-roth.eu/dodox/raven) to refuse unlocks upon it's activation.
+
 2. Make it executable:
 ```bash
 sudo chmod +x /usr/local/bin/tangd-wrapper
diff --git a/README.md b/README.md
index cb2a885..a78a6ea 100644
--- a/README.md
+++ b/README.md
@@ -16,6 +16,8 @@ Secure Fedora Server setup with LUKS encryption, TPM, and BTRFS RAID1 with focus
 - Dedicated database subvolume with `nodatacow` and `noatime`
 - Automated deployment to Hetzner
 
+If you need a dead man's switch to go along with it check out [raven](https://git.dominik-roth.eu/dodox/raven).
+
 ## Security Model
 
 ### Unlock Methods