1 Summary: Runs Daemons with restricted File System Access
7 Source0: http://ftp.porcupine.org/pub/security/%{name}%{version}.tar.gz
8 # Source0-md5: 15510abadf5de189e1c22a1544dc926a
9 Patch1: http://ftp.debian.org/debian/pool/main/c/chrootuid/%{name}_1.3-6.diff.gz
10 # Patch1-md5: 5d2b52c59c6f915b973055375e9b0ec0
11 URL: http://ftp.porcupine.org/pub/security/index.html
12 BuildRoot: %{tmpdir}/%{name}-%{version}-root-%(id -u -n)
15 Chrootuid makes it easy to run a network service at low privilege
16 level and with restricted file system access. At Eindhoven University
17 we use this program to run the gopher and www (world-wide web) network
18 daemons in a minimal environment: the daemons have access only to
19 their own directory tree, and run under a low-privileged userid. The
20 arrangement greatly reduces the impact of possible loopholes in daemon
24 %setup -q -n %{name}%{version}
30 CFLAGS="%{rpmcflags}" \
34 rm -rf $RPM_BUILD_ROOT
35 install -d $RPM_BUILD_ROOT{%{_bindir},%{_mandir}/man1}
36 install -p chrootuid $RPM_BUILD_ROOT%{_bindir}
37 cp -p chrootuid.1 $RPM_BUILD_ROOT%{_mandir}/man1
42 %defattr(644,root,root,755)
43 %doc README chrootuid_license
44 %attr(755,root,root) %{_bindir}/chrootuid
45 %{_mandir}/man1/chrootuid.1*