]>
Commit | Line | Data |
---|---|---|
2ebfbf87 | 1 | # |
2ca913e8 | 2 | # Conditional build: |
bb7a58b9 | 3 | %bcond_without audit # sshd audit support |
f6c7fa07 | 4 | %bcond_with gnome # with gnome-askpass (GNOME 1.x) utility |
cd53fc87 | 5 | %bcond_without gtk # without GTK+ (2.x) |
b32891d6 | 6 | %bcond_without ldap # with ldap support |
f6c7fa07 | 7 | %bcond_without libedit # without libedit (editline/history support in sftp client) |
9cfed0b2 | 8 | %bcond_without kerberos5 # without kerberos5 support |
70329622 | 9 | %bcond_without selinux # build without SELinux support |
5c609334 | 10 | %bcond_with hpn # High Performance SSH/SCP - HPN-SSH including Cipher NONE (broken too often) |
6ab60e34 | 11 | %bcond_without tests |
516496e1 | 12 | |
cef904f1 JB |
13 | # gtk2-based gnome-askpass means no gnome1-based |
14 | %{?with_gtk:%undefine with_gnome} | |
cc788d8e | 15 | |
2ebfbf87 ER |
16 | %if "%{pld_release}" == "ac" |
17 | %define pam_ver 0.79.0 | |
18 | %else | |
c75fc765 | 19 | %define pam_ver 1:1.1.5-5 |
2ebfbf87 ER |
20 | %endif |
21 | ||
52000378 | 22 | Summary: OpenSSH free Secure Shell (SSH) implementation |
25e16946 ER |
23 | Summary(de.UTF-8): OpenSSH - freie Implementation der Secure Shell (SSH) |
24 | Summary(es.UTF-8): Implementación libre de SSH | |
25 | Summary(fr.UTF-8): Implémentation libre du shell sécurisé OpenSSH (SSH) | |
26 | Summary(it.UTF-8): Implementazione gratuita OpenSSH della Secure Shell | |
27 | Summary(pl.UTF-8): Publicznie dostępna implementacja bezpiecznego shella (SSH) | |
28 | Summary(pt.UTF-8): Implementação livre OpenSSH do protocolo 'Secure Shell' (SSH) | |
29 | Summary(pt_BR.UTF-8): Implementação livre do SSH | |
30 | Summary(ru.UTF-8): OpenSSH - свободная реализация протокола Secure Shell (SSH) | |
31 | Summary(uk.UTF-8): OpenSSH - вільна реалізація протоколу Secure Shell (SSH) | |
52000378 | 32 | Name: openssh |
752ee73d | 33 | Version: 6.0p1 |
84b4a299 | 34 | Release: 2 |
f5fc6a92 | 35 | Epoch: 2 |
5d1c7089 | 36 | License: BSD |
37 | Group: Applications/Networking | |
6481986b | 38 | Source0: ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/%{name}-%{version}.tar.gz |
752ee73d | 39 | # Source0-md5: 3c9347aa67862881c5da3f3b1c08da7b |
486d736c JR |
40 | Source1: http://www.mif.pg.gda.pl/homepages/ankry/man-PLD/%{name}-non-english-man-pages.tar.bz2 |
41 | # Source1-md5: 66943d481cc422512b537bcc2c7400d1 | |
42 | Source2: %{name}d.init | |
43 | Source3: %{name}d.pamd | |
44 | Source4: %{name}.sysconfig | |
45 | Source5: ssh-agent.sh | |
46 | Source6: ssh-agent.conf | |
b32891d6 | 47 | Source7: %{name}-lpk.schema |
c0f446a0 | 48 | Source8: %{name}d.upstart |
c75fc765 JR |
49 | Source9: sshd.service |
50 | Source10: sshd-keygen | |
84b4a299 ER |
51 | Source11: sshd.socket |
52 | Source12: sshd@.service | |
2ebfbf87 | 53 | Patch100: %{name}-heimdal.patch |
89eac7b5 | 54 | Patch0: %{name}-no_libnsl.patch |
8d59ede4 JB |
55 | Patch2: %{name}-pam_misc.patch |
56 | Patch3: %{name}-sigpipe.patch | |
501aed94 AM |
57 | # http://pkgs.fedoraproject.org/gitweb/?p=openssh.git;a=tree |
58 | Patch4: %{name}-5.9p1-ldap.patch | |
59 | Patch5: %{name}-5.9p1-ldap-fixes.patch | |
be063a4e | 60 | Patch8: ldap.conf.patch |
501aed94 | 61 | Patch6: %{name}-config.patch |
108bb9ae ER |
62 | # https://bugzilla.mindrot.org/show_bug.cgi?id=1663 |
63 | Patch7: authorized-keys-command.patch | |
0a069c2e | 64 | # High Performance SSH/SCP - HPN-SSH - http://www.psc.edu/networking/projects/hpn-ssh/ |
0d5b2bd4 ER |
65 | # http://www.psc.edu/networking/projects/hpn-ssh/openssh-5.2p1-hpn13v6.diff.gz |
66 | Patch9: %{name}-5.2p1-hpn13v6.diff | |
8d59ede4 | 67 | Patch10: %{name}-include.patch |
100234b3 | 68 | Patch11: %{name}-chroot.patch |
342ae3ba | 69 | # http://people.debian.org/~cjwatson/%{name}-blacklist.diff |
cc788d8e | 70 | Patch12: %{name}-blacklist.diff |
92dc7c43 | 71 | Patch13: %{name}-kuserok.patch |
eefe27ae | 72 | Patch14: %{name}-bind.patch |
c5eb8e82 | 73 | URL: http://www.openssh.com/portable.html |
0a069c2e | 74 | BuildRequires: %{__perl} |
163b3947 | 75 | %{?with_tests:BuildRequires: %{name}-server} |
26d23d17 JB |
76 | %{?with_audit:BuildRequires: audit-libs-devel} |
77 | BuildRequires: autoconf >= 2.50 | |
8f12ae30 | 78 | BuildRequires: automake |
9cfed0b2 | 79 | %{?with_gnome:BuildRequires: gnome-libs-devel} |
80 | %{?with_gtk:BuildRequires: gtk+2-devel} | |
044fff96 | 81 | %{?with_kerberos5:BuildRequires: heimdal-devel >= 0.7} |
f6c7fa07 | 82 | %{?with_libedit:BuildRequires: libedit-devel} |
70329622 | 83 | %{?with_selinux:BuildRequires: libselinux-devel} |
a14c109c | 84 | BuildRequires: libwrap-devel |
044fff96 | 85 | %{?with_ldap:BuildRequires: openldap-devel} |
b12dd014 | 86 | BuildRequires: openssl-devel >= 0.9.7d |
92d612e6 | 87 | BuildRequires: pam-devel |
9cfed0b2 | 88 | %{?with_gtk:BuildRequires: pkgconfig} |
2ebfbf87 | 89 | BuildRequires: rpm >= 4.4.9-56 |
c75fc765 | 90 | BuildRequires: rpmbuild(macros) >= 1.627 |
a42c5034 | 91 | BuildRequires: sed >= 4.0 |
a14c109c | 92 | BuildRequires: zlib-devel |
2ebfbf87 ER |
93 | %if "%{pld_release}" == "ac" |
94 | Requires: filesystem >= 2.0-1 | |
95 | Requires: pam >= 0.79.0 | |
96 | %else | |
680fc8d4 | 97 | Requires: filesystem >= 3.0-11 |
2ebfbf87 | 98 | Requires: pam >= %{pam_ver} |
35844bbb | 99 | Suggests: openssh-blacklist |
a9abed26 | 100 | Suggests: xorg-app-xauth |
2ebfbf87 | 101 | %endif |
f937b661 | 102 | Obsoletes: ssh |
05fbd2e9 | 103 | BuildRoot: %{tmpdir}/%{name}-%{version}-root-%(id -u -n) |
52000378 | 104 | |
b7b47957 | 105 | %define _sysconfdir /etc/ssh |
1dd7cf18 | 106 | %define _libexecdir %{_libdir}/%{name} |
a14c109c | 107 | %define _privsepdir /usr/share/empty |
b32891d6 | 108 | %define schemadir /usr/share/openldap/schema |
6fe24471 AF |
109 | |
110 | %description | |
111 | Ssh (Secure Shell) a program for logging into a remote machine and for | |
11530f15 | 112 | executing commands in a remote machine. It is intended to replace |
113 | rlogin and rsh, and provide secure encrypted communications between | |
114 | two untrusted hosts over an insecure network. X11 connections and | |
115 | arbitrary TCP/IP ports can also be forwarded over the secure channel. | |
6fe24471 | 116 | |
11530f15 | 117 | OpenSSH is OpenBSD's rework of the last free version of SSH, bringing |
118 | it up to date in terms of security and features, as well as removing | |
119 | all patented algorithms to seperate libraries (OpenSSL). | |
6fe24471 | 120 | |
11530f15 | 121 | This package includes the core files necessary for both the OpenSSH |
122 | client and server. To make this package useful, you should also | |
123 | install openssh-clients, openssh-server, or both. | |
a42c5034 | 124 | |
0d5b2bd4 | 125 | %if %{with hpn} |
0a069c2e | 126 | This release includes High Performance SSH/SCP patches from |
a42c5034 ER |
127 | http://www.psc.edu/networking/projects/hpn-ssh/ which are supposed to |
128 | increase throughput on fast connections with high RTT (20-150 msec). | |
088aab43 | 129 | See the website for '-w' values for your connection and /proc/sys TCP |
130 | values. BTW. in a LAN you have got generally RTT < 1 msec. | |
131 | %endif | |
6fe24471 | 132 | |
84ae85a3 | 133 | %description -l de.UTF-8 |
aebfac88 JB |
134 | OpenSSH (Secure Shell) stellt den Zugang zu anderen Rechnern her. Es |
135 | ersetzt telnet, rlogin, rexec und rsh und stellt eine sichere, | |
84ae85a3 JR |
136 | verschlüsselte Verbindung zwischen zwei nicht vertrauenswürdigen Hosts |
137 | über eine unsicheres Netzwerk her. X11 Verbindungen und beliebige | |
138 | andere TCP/IP Ports können ebenso über den sicheren Channel | |
aebfac88 JB |
139 | weitergeleitet werden. |
140 | ||
84ae85a3 JR |
141 | %description -l es.UTF-8 |
142 | SSH es un programa para accesar y ejecutar órdenes en computadores | |
143 | remotos. Sustituye rlogin y rsh, y suministra un canal de comunicación | |
6c34819e | 144 | seguro entre dos servidores en una red insegura. Conexiones X11 y |
84ae85a3 | 145 | puertas TCP/IP arbitrárias también pueden ser usadas por el canal |
6c34819e | 146 | seguro. |
147 | ||
148 | OpenSSH es el resultado del trabajo del equipo de OpenBSD para | |
84ae85a3 JR |
149 | continuar la última versión gratuita de SSH, actualizándolo en |
150 | términos de seguridad y recursos,así también eliminando todos los | |
151 | algoritmos patentados y colocándolos en bibliotecas separadas | |
6c34819e | 152 | (OpenSSL). |
153 | ||
154 | Este paquete contiene "port" para Linux de OpenSSH. Se debe instalar | |
84ae85a3 | 155 | también el paquete openssh-clients u openssh-server o ambos. |
6c34819e | 156 | |
84ae85a3 JR |
157 | %description -l fr.UTF-8 |
158 | OpenSSH (Secure Shell) fournit un accès à un système distant. Il | |
aebfac88 | 159 | remplace telnet, rlogin, rexec et rsh, tout en assurant des |
84ae85a3 JR |
160 | communications cryptées securisées entre deux hôtes non fiabilisés sur |
161 | un réseau non sécurisé. Des connexions X11 et des ports TCP/IP | |
162 | arbitraires peuvent également être transmis sur le canal sécurisé. | |
aebfac88 | 163 | |
84ae85a3 | 164 | %description -l it.UTF-8 |
aebfac88 JB |
165 | OpenSSH (Secure Shell) fornisce l'accesso ad un sistema remoto. |
166 | Sostituisce telnet, rlogin, rexec, e rsh, e fornisce comunicazioni | |
167 | sicure e crittate tra due host non fidati su una rete non sicura. Le | |
168 | connessioni X11 ad una porta TCP/IP arbitraria possono essere | |
169 | inoltrate attraverso un canale sicuro. | |
170 | ||
84ae85a3 JR |
171 | %description -l pl.UTF-8 |
172 | Ssh (Secure Shell) to program służący do logowania się na zdalną | |
173 | maszynę i uruchamiania na niej aplikacji. W zamierzeniu openssh ma | |
174 | zastąpić rlogin, rsh i dostarczyć bezpieczne, szyfrowane połączenie | |
175 | pomiędzy dwoma hostami. | |
93e2d77c | 176 | |
84ae85a3 JR |
177 | Ten pakiet zawiera podstawowe pliki potrzebne zarówno po stronie |
178 | klienta jak i serwera OpenSSH. Aby był użyteczny, trzeba zainstalować | |
179 | co najmniej jeden z pakietów: openssh-clients lub openssh-server. | |
a42c5034 | 180 | |
0d5b2bd4 | 181 | %if %{with hpn} |
84ae85a3 JR |
182 | Ta wersja zawiera łaty z projektu High Performance SSH/SCP |
183 | http://www.psc.edu/networking/projects/hpn-ssh/, które mają na celu | |
a42c5034 ER |
184 | zwiększenie przepustowości transmisji dla szybkich połączeń z dużym |
185 | RTT (20-150 msec). Na stronie projektu znaleźć można odpowednie dla | |
186 | danego połączenia wartości parametru '-w' oraz opcje /proc/sys dla | |
187 | TCP. Nawiasem mówiąc w sieciach LAN RTT < 1 msec. | |
088aab43 | 188 | %endif |
aebfac88 | 189 | |
84ae85a3 | 190 | %description -l pt.UTF-8 |
aebfac88 | 191 | OpenSSH (Secure Shell) fornece acesso a um sistema remoto. Substitui o |
84ae85a3 JR |
192 | telnet, rlogin, rexec, e o rsh e fornece comunicações seguras e |
193 | cifradas entre duas máquinas sem confiança mútua sobre uma rede | |
194 | insegura. Ligações X11 e portos TCP/IP arbitrários também poder ser | |
aebfac88 JB |
195 | reenviados pelo canal seguro. |
196 | ||
84ae85a3 JR |
197 | %description -l pt_BR.UTF-8 |
198 | SSH é um programa para acessar e executar comandos em máquinas | |
199 | remotas. Ele substitui rlogin e rsh, e provem um canal de comunicação | |
200 | seguro entre dois hosts em uma rede insegura. Conexões X11 e portas | |
201 | TCP/IP arbitrárias também podem ser usadas pelo canal seguro. | |
6c34819e | 202 | |
84ae85a3 JR |
203 | OpenSSH é o resultado do trabalho da equipe do OpenBSD em continuar a |
204 | última versão gratuita do SSH, atualizando-o em termos de segurança e | |
6c34819e | 205 | recursos, assim como removendo todos os algoritmos patenteados e |
206 | colocando-os em bibliotecas separadas (OpenSSL). | |
207 | ||
84ae85a3 JR |
208 | Esse pacote contém o "port" pra Linux do OpenSSH. Você deve instalar |
209 | também ou o pacote openssh-clients, ou o openssh-server, ou ambos. | |
210 | ||
211 | %description -l ru.UTF-8 | |
212 | Ssh (Secure Shell) - это программа для "захода" (login) на удаленную | |
213 | машину и для выполнения команд на удаленной машине. Она предназначена | |
214 | для замены rlogin и rsh и обеспечивает безопасную шифрованную | |
215 | коммуникацию между двумя хостами в сети, являющейся небезопасной. | |
216 | Соединения X11 и любые порты TCP/IP могут также быть проведены через | |
217 | безопасный канал. | |
218 | ||
219 | OpenSSH - это переделка командой разработчиков OpenBSD последней | |
220 | свободной версии SSH, доведенная до современного состояния в терминах | |
221 | уровня безопасности и поддерживаемых возможностей. Все патентованные | |
222 | алгоритмы вынесены в отдельные библиотеки (OpenSSL). | |
223 | ||
224 | Этот пакет содержит файлы, необходимые как для клиента, так и для | |
225 | сервера OpenSSH. Вам нужно будет установить еще openssh-clients, | |
226 | openssh-server, или оба пакета. | |
227 | ||
228 | %description -l uk.UTF-8 | |
229 | Ssh (Secure Shell) - це програма для "заходу" (login) до віддаленої | |
230 | машини та для виконання команд на віддаленій машині. Вона призначена | |
231 | для заміни rlogin та rsh і забезпечує безпечну шифровану комунікацію | |
232 | між двома хостами в мережі, яка не є безпечною. З'єднання X11 та | |
233 | довільні порти TCP/IP можуть також бути проведені через безпечний | |
234 | канал. | |
235 | ||
236 | OpenSSH - це переробка командою розробників OpenBSD останньої вільної | |
237 | версії SSH, доведена до сучасного стану в термінах рівня безпеки та | |
238 | підтримуваних можливостей. Всі патентовані алгоритми винесені до | |
239 | окремих бібліотек (OpenSSL). | |
240 | ||
241 | Цей пакет містить файли, необхідні як для клієнта, так і для сервера | |
242 | OpenSSH. Вам потрібно буде ще встановити openssh-clients, | |
243 | openssh-server, чи обидва пакети. | |
cb086001 | 244 | |
52000378 AF |
245 | %package clients |
246 | Summary: OpenSSH Secure Shell protocol clients | |
25e16946 ER |
247 | Summary(es.UTF-8): Clientes de OpenSSH |
248 | Summary(pl.UTF-8): Klienci protokołu Secure Shell | |
249 | Summary(pt_BR.UTF-8): Clientes do OpenSSH | |
250 | Summary(ru.UTF-8): OpenSSH - клиенты протокола Secure Shell | |
251 | Summary(uk.UTF-8): OpenSSH - клієнти протоколу Secure Shell | |
52000378 | 252 | Group: Applications/Networking |
f1608a0c | 253 | Requires: %{name} |
516496e1 | 254 | Provides: ssh-clients |
a14c109c | 255 | Obsoletes: ssh-clients |
6fe24471 | 256 | |
52000378 AF |
257 | %description clients |
258 | Ssh (Secure Shell) a program for logging into a remote machine and for | |
11530f15 | 259 | executing commands in a remote machine. It is intended to replace |
260 | rlogin and rsh, and provide secure encrypted communications between | |
261 | two untrusted hosts over an insecure network. X11 connections and | |
262 | arbitrary TCP/IP ports can also be forwarded over the secure channel. | |
6fe24471 | 263 | |
11530f15 | 264 | OpenSSH is OpenBSD's rework of the last free version of SSH, bringing |
265 | it up to date in terms of security and features, as well as removing | |
266 | all patented algorithms to seperate libraries (OpenSSL). | |
52000378 | 267 | |
11530f15 | 268 | This package includes the clients necessary to make encrypted |
269 | connections to SSH servers. | |
52000378 | 270 | |
84ae85a3 | 271 | %description clients -l es.UTF-8 |
6c34819e | 272 | Este paquete incluye los clientes que se necesitan para hacer |
273 | conexiones codificadas con servidores SSH. | |
274 | ||
84ae85a3 JR |
275 | %description clients -l pl.UTF-8 |
276 | Ssh (Secure Shell) to program służący do logowania się na zdalną | |
277 | maszynę i uruchamiania na niej aplikacji. W zamierzeniu openssh ma | |
278 | zastąpić rlogin, rsh i dostarczyć bezpieczne, szyfrowane połączenie | |
279 | pomiędzy dwoma hostami. | |
93e2d77c | 280 | |
84ae85a3 | 281 | Ten pakiet zawiera klientów służących do łączenia się z serwerami SSH. |
93e2d77c | 282 | |
84ae85a3 JR |
283 | %description clients -l pt_BR.UTF-8 |
284 | Esse pacote inclui os clientes necessários para fazer conexões | |
6c34819e | 285 | encriptadas com servidores SSH. |
286 | ||
84ae85a3 JR |
287 | %description clients -l ru.UTF-8 |
288 | Ssh (Secure Shell) - это программа для "захода" (login) на удаленную | |
289 | машину и для выполнения команд на удаленной машине. | |
cb086001 | 290 | |
84ae85a3 JR |
291 | Этот пакет содержит программы-клиенты, необходимые для установления |
292 | зашифрованных соединений с серверами SSH. | |
cb086001 | 293 | |
84ae85a3 JR |
294 | %description clients -l uk.UTF-8 |
295 | Ssh (Secure Shell) - це програма для "заходу" (login) до віддаленої | |
296 | машини та для виконання команд на віддаленій машині. | |
cb086001 | 297 | |
84ae85a3 JR |
298 | Цей пакет містить програми-клієнти, необхідні для встановлення |
299 | зашифрованих з'єднань з серверами SSH. | |
cb086001 | 300 | |
8a7ba6eb AM |
301 | %package clients-agent-profile_d |
302 | Summary: OpenSSH Secure Shell agent init script | |
4944be5f | 303 | Summary(pl.UTF-8): Skrypt startowy agenta OpenSSH |
8a7ba6eb AM |
304 | Group: Applications/Networking |
305 | Requires: %{name}-clients = %{epoch}:%{version}-%{release} | |
306 | ||
307 | %description clients-agent-profile_d | |
308 | profile.d scripts for starting SSH agent. | |
309 | ||
4944be5f JB |
310 | %description clients-agent-profile_d -l pl.UTF-8 |
311 | Skrypty profile.d do uruchamiania agenta SSH. | |
312 | ||
8a7ba6eb AM |
313 | %package clients-agent-xinitrc |
314 | Summary: OpenSSH Secure Shell agent init script | |
315 | Summary(pl.UTF-8): Skrypt inicjujący agenta ssh przez xinitrc | |
316 | Group: Applications/Networking | |
317 | Requires: %{name}-clients-agent-profile_d = %{epoch}:%{version}-%{release} | |
318 | Requires: xinitrc | |
319 | ||
320 | %description clients-agent-xinitrc | |
321 | xinitrc scripts for starting SSH agent. | |
322 | ||
4944be5f JB |
323 | %description clients-agent-xinitrc -l pl.UTF-8 |
324 | Skrypty xinitrc do uruchamiania agenta SSH. | |
8a7ba6eb | 325 | |
52000378 AF |
326 | %package server |
327 | Summary: OpenSSH Secure Shell protocol server (sshd) | |
25e16946 ER |
328 | Summary(de.UTF-8): OpenSSH Secure Shell Protocol-Server (sshd) |
329 | Summary(es.UTF-8): Servidor OpenSSH para comunicaciones codificadas | |
330 | Summary(fr.UTF-8): Serveur de protocole du shell sécurisé OpenSSH (sshd) | |
331 | Summary(it.UTF-8): Server OpenSSH per il protocollo Secure Shell (sshd) | |
332 | Summary(pl.UTF-8): Serwer protokołu Secure Shell (sshd) | |
333 | Summary(pt.UTF-8): Servidor do protocolo 'Secure Shell' OpenSSH (sshd) | |
334 | Summary(pt_BR.UTF-8): Servidor OpenSSH para comunicações encriptadas | |
335 | Summary(ru.UTF-8): OpenSSH - сервер протокола Secure Shell (sshd) | |
336 | Summary(uk.UTF-8): OpenSSH - сервер протоколу Secure Shell (sshd) | |
52000378 | 337 | Group: Networking/Daemons |
2ebfbf87 | 338 | Requires(post): /sbin/chkconfig |
40cb2e83 | 339 | Requires(post): grep |
0a069c2e | 340 | Requires(post,preun): /sbin/chkconfig |
9b604401 | 341 | Requires(postun): /usr/sbin/userdel |
0a069c2e ER |
342 | Requires(pre): /bin/id |
343 | Requires(pre): /usr/sbin/useradd | |
40e0df39 | 344 | Requires(post,preun,postun): systemd-units >= 38 |
0a069c2e | 345 | Requires: %{name} = %{epoch}:%{version}-%{release} |
44144fb7 ER |
346 | # remove in 6.0, kept for flawless upgrade |
347 | Requires: %{name}-server-ldap = %{epoch}:%{version}-%{release} | |
2ebfbf87 | 348 | Requires: pam >= %{pam_ver} |
c0f446a0 | 349 | Requires: rc-scripts >= 0.4.3.0 |
40e0df39 | 350 | Requires: systemd-units >= 38 |
0a069c2e | 351 | Requires: util-linux |
0d5b2bd4 | 352 | Suggests: /bin/login |
516496e1 ER |
353 | Provides: ssh-server |
354 | Provides: user(sshd) | |
52000378 AF |
355 | |
356 | %description server | |
357 | Ssh (Secure Shell) a program for logging into a remote machine and for | |
11530f15 | 358 | executing commands in a remote machine. It is intended to replace |
359 | rlogin and rsh, and provide secure encrypted communications between | |
360 | two untrusted hosts over an insecure network. X11 connections and | |
361 | arbitrary TCP/IP ports can also be forwarded over the secure channel. | |
52000378 | 362 | |
11530f15 | 363 | OpenSSH is OpenBSD's rework of the last free version of SSH, bringing |
364 | it up to date in terms of security and features, as well as removing | |
365 | all patented algorithms to seperate libraries (OpenSSL). | |
52000378 | 366 | |
11530f15 | 367 | This package contains the secure shell daemon. The sshd is the server |
368 | part of the secure shell protocol and allows ssh clients to connect to | |
369 | your host. | |
6fe24471 | 370 | |
84ae85a3 | 371 | %description server -l de.UTF-8 |
aebfac88 JB |
372 | Dieses Paket installiert den sshd, den Server-Teil der OpenSSH. |
373 | ||
84ae85a3 | 374 | %description server -l es.UTF-8 |
6c34819e | 375 | Este paquete contiene el servidor SSH. sshd es la parte servidor del |
376 | protocolo secure shell y permite que clientes ssh se conecten a su | |
377 | servidor. | |
378 | ||
84ae85a3 | 379 | %description server -l fr.UTF-8 |
aebfac88 JB |
380 | Ce paquetage installe le 'sshd', partie serveur de OpenSSH. |
381 | ||
84ae85a3 | 382 | %description server -l it.UTF-8 |
aebfac88 JB |
383 | Questo pacchetto installa sshd, il server di OpenSSH. |
384 | ||
84ae85a3 JR |
385 | %description server -l pl.UTF-8 |
386 | Ssh (Secure Shell) to program służący do logowania się na zdalną | |
387 | maszynę i uruchamiania na niej aplikacji. W zamierzeniu openssh ma | |
388 | zastąpić rlogin, rsh i dostarczyć bezpieczne, szyfrowane połączenie | |
389 | pomiędzy dwoma hostami. | |
93e2d77c | 390 | |
84ae85a3 | 391 | Ten pakiet zawiera serwer sshd (do którego mogą łączyć się klienci |
11530f15 | 392 | ssh). |
93e2d77c | 393 | |
84ae85a3 | 394 | %description server -l pt.UTF-8 |
aebfac88 JB |
395 | Este pacote intala o sshd, o servidor do OpenSSH. |
396 | ||
84ae85a3 JR |
397 | %description server -l pt_BR.UTF-8 |
398 | Esse pacote contém o servidor SSH. O sshd é a parte servidor do | |
6c34819e | 399 | protocolo secure shell e permite que clientes ssh se conectem ao seu |
400 | host. | |
401 | ||
84ae85a3 JR |
402 | %description server -l ru.UTF-8 |
403 | Ssh (Secure Shell) - это программа для "захода" (login) на удаленную | |
404 | машину и для выполнения команд на удаленной машине. | |
cb086001 | 405 | |
84ae85a3 JR |
406 | Этот пакет содержит sshd - "демон" Secure Shell. sshd - это серверная |
407 | часть протокола Secure Shell, позволяющая клиентам ssh соединяться с | |
408 | вашим хостом. | |
cb086001 | 409 | |
84ae85a3 JR |
410 | %description server -l uk.UTF-8 |
411 | Ssh (Secure Shell) - це програма для "заходу" (login) до віддаленої | |
412 | машини та для виконання команд на віддаленій машині. | |
cb086001 | 413 | |
84ae85a3 JR |
414 | Цей пакет містить sshd - "демон" Secure Shell. sshd - це серверна |
415 | частина протоколу Secure Shell, яка дозволяє клієнтам ssh зв'язуватись | |
416 | з вашим хостом. | |
cb086001 | 417 | |
44144fb7 ER |
418 | %package server-ldap |
419 | Summary: A LDAP support for open source SSH server daemon | |
bb7a58b9 | 420 | Summary(pl.UTF-8): Wsparcie LDAP dla serwera OpenSSH |
44144fb7 | 421 | Group: Daemons |
1a0628c8 | 422 | Requires: %{name} = %{epoch}:%{version}-%{release} |
44144fb7 ER |
423 | |
424 | %description server-ldap | |
425 | OpenSSH LDAP backend is a way how to distribute the authorized tokens | |
426 | among the servers in the network. | |
427 | ||
bb7a58b9 JB |
428 | %description server-ldap -l pl.UTF-8 |
429 | Backend LDAP dla OpenSSH to metoda rozprowadzania autoryzowanych | |
430 | tokenów między serwerami w sieci. | |
431 | ||
c0f446a0 JK |
432 | %package server-upstart |
433 | Summary: Upstart job description for OpenSSH server | |
434 | Summary(pl.UTF-8): Opis zadania Upstart dla serwera OpenSSH | |
435 | Group: Daemons | |
436 | Requires: %{name}-server = %{epoch}:%{version}-%{release} | |
437 | Requires: upstart >= 0.6 | |
74f7fb64 | 438 | Conflicts: syslog-ng < 3.2.4-1 |
c0f446a0 JK |
439 | |
440 | %description server-upstart | |
441 | Upstart job description for OpenSSH. | |
442 | ||
443 | %description server-upstart -l pl.UTF-8 | |
444 | Opis zadania Upstart dla OpenSSH. | |
445 | ||
6e70f4f7 | 446 | %package gnome-askpass |
52000378 | 447 | Summary: OpenSSH GNOME passphrase dialog |
25e16946 ER |
448 | Summary(de.UTF-8): OpenSSH GNOME Passwort-Dialog |
449 | Summary(es.UTF-8): Diálogo para introducción de passphrase para GNOME | |
450 | Summary(fr.UTF-8): Dialogue pass-phrase GNOME d'OpenSSH | |
451 | Summary(it.UTF-8): Finestra di dialogo GNOME per la frase segreta di OpenSSH | |
452 | Summary(pl.UTF-8): Odpytywacz hasła OpenSSH dla GNOME | |
453 | Summary(pt.UTF-8): Diálogo de pedido de senha para GNOME do OpenSSH | |
454 | Summary(pt_BR.UTF-8): Diálogo para entrada de passphrase para GNOME | |
455 | Summary(ru.UTF-8): OpenSSH - диалог ввода ключевой фразы (passphrase) для GNOME | |
456 | Summary(uk.UTF-8): OpenSSH - діалог вводу ключової фрази (passphrase) для GNOME | |
52000378 | 457 | Group: Applications/Networking |
96f686c2 | 458 | Requires: %{name} = %{epoch}:%{version}-%{release} |
f937b661 | 459 | Obsoletes: openssh-askpass |
0a069c2e ER |
460 | Obsoletes: ssh-askpass |
461 | Obsoletes: ssh-extras | |
52000378 | 462 | |
6e70f4f7 | 463 | %description gnome-askpass |
52000378 | 464 | Ssh (Secure Shell) a program for logging into a remote machine and for |
11530f15 | 465 | executing commands in a remote machine. It is intended to replace |
466 | rlogin and rsh, and provide secure encrypted communications between | |
467 | two untrusted hosts over an insecure network. X11 connections and | |
468 | arbitrary TCP/IP ports can also be forwarded over the secure channel. | |
52000378 | 469 | |
11530f15 | 470 | OpenSSH is OpenBSD's rework of the last free version of SSH, bringing |
471 | it up to date in terms of security and features, as well as removing | |
472 | all patented algorithms to seperate libraries (OpenSSL). | |
52000378 AF |
473 | |
474 | This package contains the GNOME passphrase dialog. | |
475 | ||
84ae85a3 JR |
476 | %description gnome-askpass -l es.UTF-8 |
477 | Este paquete contiene un programa que abre una caja de diálogo para | |
6c34819e | 478 | entrada de passphrase en GNOME. |
479 | ||
84ae85a3 JR |
480 | %description gnome-askpass -l pl.UTF-8 |
481 | Ssh (Secure Shell) to program służący do logowania się na zdalną | |
482 | maszynę i uruchamiania na niej aplikacji. W zamierzeniu openssh ma | |
483 | zastąpić rlogin, rsh i dostarczyć bezpieczne, szyfrowane połączenie | |
484 | pomiędzy dwoma hostami. | |
93e2d77c | 485 | |
84ae85a3 | 486 | Ten pakiet zawiera ,,odpytywacz hasła'' dla GNOME. |
93e2d77c | 487 | |
84ae85a3 JR |
488 | %description gnome-askpass -l pt_BR.UTF-8 |
489 | Esse pacote contém um programa que abre uma caixa de diálogo para | |
6c34819e | 490 | entrada de passphrase no GNOME. |
491 | ||
84ae85a3 JR |
492 | %description gnome-askpass -l ru.UTF-8 |
493 | Ssh (Secure Shell) - это программа для "захода" (login) на удаленную | |
494 | машину и для выполнения команд на удаленной машине. | |
cb086001 | 495 | |
84ae85a3 | 496 | Этот пакет содержит диалог ввода ключевой фразы для использования под |
cb086001 | 497 | GNOME. |
498 | ||
84ae85a3 JR |
499 | %description gnome-askpass -l uk.UTF-8 |
500 | Ssh (Secure Shell) - це програма для "заходу" (login) до віддаленої | |
501 | машини та для виконання команд на віддаленій машині. | |
cb086001 | 502 | |
84ae85a3 | 503 | Цей пакет містить діалог вводу ключової фрази для використання під |
cb086001 | 504 | GNOME. |
505 | ||
b32891d6 JR |
506 | %package -n openldap-schema-openssh-lpk |
507 | Summary: OpenSSH LDAP Public Key schema | |
508 | Summary(pl.UTF-8): Schemat klucza publicznego LDAP dla OpenSSH | |
509 | Group: Networking/Daemons | |
510 | Requires(post,postun): sed >= 4.0 | |
511 | Requires: openldap-servers | |
512 | ||
513 | %description -n openldap-schema-openssh-lpk | |
514 | This package contains OpenSSH LDAP Public Key schema for openldap. | |
515 | ||
516 | %description -n openldap-schema-openssh-lpk -l pl.UTF-8 | |
0d5b2bd4 ER |
517 | Ten pakiet zawiera schemat klucza publicznego LDAP dla OpenSSH dla |
518 | openldap-a. | |
b32891d6 | 519 | |
52000378 | 520 | %prep |
ecf377a3 | 521 | %setup -q |
2ebfbf87 | 522 | %{?with_kerberos5:%patch100 -p1} |
4946f6e5 | 523 | %patch0 -p1 |
1aca01a4 | 524 | %patch2 -p1 |
200ba837 | 525 | %patch3 -p1 |
8e00389d ER |
526 | %patch4 -p1 |
527 | %patch5 -p1 | |
528 | %patch8 -p1 | |
501aed94 | 529 | %patch6 -p1 |
108bb9ae | 530 | %patch7 -p1 |
516496e1 | 531 | %{?with_hpn:%patch9 -p1} |
8d59ede4 | 532 | %patch10 -p1 |
100234b3 | 533 | %patch11 -p1 |
35844bbb | 534 | %patch12 -p1 |
92dc7c43 | 535 | %patch13 -p1 |
eefe27ae | 536 | %patch14 -p1 |
52000378 | 537 | |
a42c5034 ER |
538 | %if "%{pld_release}" == "ac" |
539 | # fix for missing x11.pc | |
540 | %{__sed} -i -e '/pkg-config/s/ x11//' contrib/Makefile | |
541 | %endif | |
542 | ||
afde20c1 AM |
543 | # hack since arc4random from openbsd-compat needs symbols from libssh and vice versa |
544 | sed -i -e 's#-lssh -lopenbsd-compat#-lssh -lopenbsd-compat -lssh#g' Makefile* | |
545 | ||
8e00389d ER |
546 | grep -rl /usr/libexec/openssh/ssh-ldap-helper . | xargs \ |
547 | %{__sed} -i -e 's,/usr/libexec/openssh/ssh-ldap-helper,%{_libexecdir}/ssh-ldap-helper,' | |
548 | ||
52000378 | 549 | %build |
64f1c35c | 550 | cp /usr/share/automake/config.sub . |
0b24ec17 | 551 | %{__aclocal} |
5c76eb87 | 552 | %{__autoconf} |
501aed94 | 553 | %{__autoheader} |
37aa5700 | 554 | CPPFLAGS="-DCHROOT" |
52000378 | 555 | %configure \ |
c59fae24 | 556 | PERL=%{__perl} \ |
26d23d17 JB |
557 | --disable-strip \ |
558 | --enable-utmpx \ | |
559 | --enable-wtmpx \ | |
93e2d77c | 560 | --with-4in6 \ |
26d23d17 JB |
561 | %{?with_audit:--with-audit=linux} \ |
562 | --with-ipaddr-display \ | |
4a5c0c7d | 563 | %{?with_kerberos5:--with-kerberos5=/usr} \ |
8e00389d | 564 | --with-ldap%{!?with_ldap:=no} \ |
26d23d17 JB |
565 | %{?with_libedit:--with-libedit} \ |
566 | --with-mantype=man \ | |
567 | --with-md5-passwords \ | |
568 | --with-pam \ | |
108bb9ae | 569 | --with-authorized-keys-command \ |
05fbd2e9 | 570 | --with-pid-dir=%{_localstatedir}/run \ |
26d23d17 JB |
571 | --with-privsep-path=%{_privsepdir} \ |
572 | %{?with_selinux:--with-selinux} \ | |
573 | --with-tcp-wrappers \ | |
2ebfbf87 | 574 | %if "%{pld_release}" == "ac" |
26d23d17 | 575 | --with-xauth=/usr/X11R6/bin/xauth |
2ebfbf87 | 576 | %else |
26d23d17 | 577 | --with-xauth=%{_bindir}/xauth |
2ebfbf87 | 578 | %endif |
82f989ae | 579 | |
b8002dec | 580 | echo '#define LOGIN_PROGRAM "/bin/login"' >>config.h |
f9bf943b | 581 | |
100832a0 | 582 | %{__make} |
475ef6df | 583 | |
6ab60e34 AM |
584 | %{?with_tests:%{__make} tests} |
585 | ||
40cb2e83 | 586 | cd contrib |
9cfed0b2 | 587 | %if %{with gnome} |
40cb2e83 JB |
588 | %{__make} gnome-ssh-askpass1 \ |
589 | CC="%{__cc} %{rpmldflags} %{rpmcflags}" | |
590 | %endif | |
9cfed0b2 | 591 | %if %{with gtk} |
40cb2e83 JB |
592 | %{__make} gnome-ssh-askpass2 \ |
593 | CC="%{__cc} %{rpmldflags} %{rpmcflags}" | |
594 | %endif | |
6fe24471 AF |
595 | |
596 | %install | |
597 | rm -rf $RPM_BUILD_ROOT | |
c0f446a0 | 598 | install -d $RPM_BUILD_ROOT{%{_sysconfdir},/etc/{init,pam.d,rc.d/init.d,sysconfig,security,env.d}} \ |
c75fc765 | 599 | $RPM_BUILD_ROOT{%{_libexecdir}/ssh,%{schemadir},%{systemdunitdir}} |
8a7ba6eb | 600 | install -d $RPM_BUILD_ROOT/etc/{profile.d,X11/xinit/xinitrc.d} |
52000378 | 601 | |
9a2a459a PG |
602 | %{__make} install \ |
603 | DESTDIR=$RPM_BUILD_ROOT | |
0d32b20f | 604 | |
486d736c | 605 | bzip2 -dc %{SOURCE1} | tar xf - -C $RPM_BUILD_ROOT%{_mandir} |
40cb2e83 | 606 | |
c75fc765 JR |
607 | cp -p %{SOURCE3} sshd.pam |
608 | install -p %{SOURCE2} sshd.init | |
609 | ||
610 | %if "%{pld_release}" == "ac" | |
611 | # not present in ac, no point searching it | |
612 | %{__sed} -i -e '/pam_keyinit.so/d' sshd.pam | |
613 | # openssl on ac does not have OPENSSL_HAS_ECC | |
614 | %{__sed} -i -e '/ecdsa/d' sshd.init | |
615 | %endif | |
616 | ||
95191792 | 617 | install -p sshd.init $RPM_BUILD_ROOT/etc/rc.d/init.d/sshd |
55c2af60 ER |
618 | cp -p sshd.pam $RPM_BUILD_ROOT/etc/pam.d/sshd |
619 | cp -p %{SOURCE4} $RPM_BUILD_ROOT/etc/sysconfig/sshd | |
620 | cp -p %{SOURCE5} $RPM_BUILD_ROOT/etc/profile.d | |
486d736c | 621 | ln -sf /etc/profile.d/ssh-agent.sh $RPM_BUILD_ROOT/etc/X11/xinit/xinitrc.d/ssh-agent.sh |
55c2af60 ER |
622 | cp -p %{SOURCE6} $RPM_BUILD_ROOT%{_sysconfdir} |
623 | cp -p %{SOURCE7} $RPM_BUILD_ROOT%{schemadir} | |
624 | cp -p %{SOURCE8} $RPM_BUILD_ROOT/etc/init/sshd.conf | |
c0f446a0 | 625 | |
c75fc765 JR |
626 | %{__sed} -e 's|@@LIBEXECDIR@@|%{_libexecdir}|g' %{SOURCE9} >$RPM_BUILD_ROOT%{systemdunitdir}/sshd.service |
627 | cp -p %{SOURCE10} $RPM_BUILD_ROOT%{_libexecdir}/sshd-keygen | |
628 | ||
84b4a299 ER |
629 | cp -p %{SOURCE11} $RPM_BUILD_ROOT%{systemdunitdir} |
630 | cp -p %{SOURCE12} $RPM_BUILD_ROOT%{systemdunitdir} | |
631 | ||
9cfed0b2 | 632 | %if %{with gnome} |
55c2af60 | 633 | install -p contrib/gnome-ssh-askpass1 $RPM_BUILD_ROOT%{_libexecdir}/ssh/ssh-askpass |
40cb2e83 | 634 | %endif |
9cfed0b2 | 635 | %if %{with gtk} |
55c2af60 | 636 | install -p contrib/gnome-ssh-askpass2 $RPM_BUILD_ROOT%{_libexecdir}/ssh/ssh-askpass |
1d1e6997 PG |
637 | %endif |
638 | %if %{with gnome} || %{with gtk} | |
6157007b | 639 | cat << 'EOF' >$RPM_BUILD_ROOT/etc/env.d/GNOME_SSH_ASKPASS_GRAB_SERVER |
1d1e6997 PG |
640 | #GNOME_SSH_ASKPASS_GRAB_SERVER="true" |
641 | EOF | |
6157007b | 642 | cat << 'EOF' >$RPM_BUILD_ROOT/etc/env.d/GNOME_SSH_ASKPASS_GRAB_POINTER |
1d1e6997 PG |
643 | #GNOME_SSH_ASKPASS_GRAB_POINTER="true" |
644 | EOF | |
4ae0bc0d | 645 | ln -s %{_libexecdir}/ssh/ssh-askpass $RPM_BUILD_ROOT%{_libexecdir}/ssh-askpass |
40cb2e83 | 646 | %endif |
6e70f4f7 | 647 | |
55c2af60 ER |
648 | install -p contrib/ssh-copy-id $RPM_BUILD_ROOT%{_bindir} |
649 | cp -p contrib/ssh-copy-id.1 $RPM_BUILD_ROOT%{_mandir}/man1 | |
0906c8d0 | 650 | |
26d23d17 | 651 | %{__rm} $RPM_BUILD_ROOT%{_mandir}/man1/slogin.1 |
5f72fe6f | 652 | echo ".so ssh.1" > $RPM_BUILD_ROOT%{_mandir}/man1/slogin.1 |
41897191 | 653 | |
ffbc041f | 654 | touch $RPM_BUILD_ROOT/etc/security/blacklist.sshd |
643dc12f | 655 | |
b8002dec | 656 | cat << 'EOF' > $RPM_BUILD_ROOT/etc/env.d/SSH_ASKPASS |
1d1e6997 PG |
657 | #SSH_ASKPASS="%{_libexecdir}/ssh-askpass" |
658 | EOF | |
659 | ||
26d23d17 | 660 | %{__rm} $RPM_BUILD_ROOT%{_mandir}/README.openssh-non-english-man-pages |
be063a4e | 661 | %{__rm} $RPM_BUILD_ROOT%{_sysconfdir}/ldap.conf |
92815192 | 662 | |
6fe24471 AF |
663 | %clean |
664 | rm -rf $RPM_BUILD_ROOT | |
665 | ||
b259ae2c ER |
666 | %post clients |
667 | %env_update | |
668 | ||
669 | %postun clients | |
670 | %env_update | |
671 | ||
672 | %post gnome-askpass | |
673 | %env_update | |
674 | ||
675 | %postun gnome-askpass | |
676 | %env_update | |
677 | ||
8a304ceb | 678 | %pre server |
0225d3b8 | 679 | %useradd -P %{name}-server -u 40 -d %{_privsepdir} -s /bin/false -c "OpenSSH PrivSep User" -g nobody sshd |
4c8ae2f8 | 680 | |
52000378 | 681 | %post server |
d7fde396 | 682 | /sbin/chkconfig --add sshd |
fb0e16d1 | 683 | %service sshd reload "OpenSSH Daemon" |
40cb2e83 JB |
684 | if ! grep -qs ssh /etc/security/passwd.conf ; then |
685 | umask 022 | |
ec00afd0 JR |
686 | echo "ssh" >> /etc/security/passwd.conf |
687 | fi | |
c75fc765 JR |
688 | NORESTART=1 |
689 | %systemd_post sshd.service | |
6fe24471 | 690 | |
52000378 | 691 | %preun server |
d7fde396 | 692 | if [ "$1" = "0" ]; then |
b054de44 | 693 | %service sshd stop |
d7fde396 | 694 | /sbin/chkconfig --del sshd |
695 | fi | |
c75fc765 | 696 | %systemd_preun sshd.service |
6fe24471 | 697 | |
9b604401 JB |
698 | %postun server |
699 | if [ "$1" = "0" ]; then | |
5f4ffc90 | 700 | %userremove sshd |
9b604401 | 701 | fi |
c75fc765 | 702 | %systemd_reload |
9b604401 | 703 | |
c75fc765 | 704 | %triggerpostun server -- %{name}-server < 2:5.9p1-8 |
3906e3c0 ER |
705 | # lpk.patch to ldap.patch |
706 | if grep -qE '^(UseLPK|Lpk)' %{_sysconfdir}/sshd_config; then | |
707 | echo >&2 "Migrating LPK patch to LDAP patch" | |
708 | cp -f %{_sysconfdir}/sshd_config{,.rpmorig} | |
709 | %{__sed} -i -e ' | |
710 | # disable old configs | |
711 | # just UseLPK/LkpLdapConf supported for now | |
712 | s/^UseLPK/## Obsolete &/ | |
ac8426db | 713 | s/^Lpk/## Obsolete &/ |
3906e3c0 | 714 | # Enable new ones, assumes /etc/ldap.conf defaults, see HOWTO.ldap-keys |
fb0e16d1 | 715 | /UseLPK/iAuthorizedKeysCommand %{_libexecdir}/ssh-ldap-wrapper |
3906e3c0 | 716 | ' %{_sysconfdir}/sshd_config |
c75fc765 JR |
717 | if [ ! -x /bin/systemd_booted ] || ! /bin/systemd_booted; then |
718 | /bin/systemctl try-restart sshd.service || : | |
719 | else | |
720 | %service -q sshd reload | |
721 | fi | |
3906e3c0 | 722 | fi |
c75fc765 | 723 | %systemd_trigger sshd.service |
76ae1815 JR |
724 | if [ -x /bin/systemd_booted ] && /bin/systemd_booted; then |
725 | %banner %{name}-server -e << EOF | |
726 | !!!!!!!!!!!!!!!!!!!!!!! WARNING !!!!!!!!!!!!!!!!!!!!!!!!! | |
727 | ! Native systemd support for sshd has been installed. ! | |
728 | ! Restarting sshd.service with systemctl WILL kill all ! | |
729 | ! active ssh sessions (daemon as such will be started). ! | |
730 | !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! | |
731 | EOF | |
732 | fi | |
3906e3c0 | 733 | |
c0f446a0 JK |
734 | %post server-upstart |
735 | %upstart_post sshd | |
736 | ||
737 | %postun server-upstart | |
738 | %upstart_postun sshd | |
739 | ||
7073aeeb JR |
740 | %post -n openldap-schema-openssh-lpk |
741 | %openldap_schema_register %{schemadir}/openssh-lpk.schema | |
742 | %service -q ldap restart | |
743 | ||
744 | %postun -n openldap-schema-openssh-lpk | |
745 | if [ "$1" = "0" ]; then | |
746 | %openldap_schema_unregister %{schemadir}/openssh-lpk.schema | |
747 | %service -q ldap restart | |
748 | fi | |
749 | ||
6fe24471 | 750 | %files |
52000378 | 751 | %defattr(644,root,root,755) |
afde20c1 | 752 | %doc TODO README OVERVIEW CREDITS Change* |
a6eef44c | 753 | %attr(755,root,root) %{_bindir}/ssh-key* |
35844bbb | 754 | %attr(755,root,root) %{_bindir}/ssh-vulnkey* |
a6eef44c | 755 | %{_mandir}/man1/ssh-key*.1* |
35844bbb | 756 | %{_mandir}/man1/ssh-vulnkey*.1* |
52000378 | 757 | %dir %{_sysconfdir} |
9df62d0f | 758 | %dir %{_libexecdir} |
52000378 AF |
759 | |
760 | %files clients | |
761 | %defattr(644,root,root,755) | |
96f686c2 JB |
762 | %attr(755,root,root) %{_bindir}/ssh |
763 | %attr(755,root,root) %{_bindir}/slogin | |
764 | %attr(755,root,root) %{_bindir}/sftp | |
765 | %attr(755,root,root) %{_bindir}/ssh-agent | |
766 | %attr(755,root,root) %{_bindir}/ssh-add | |
0906c8d0 | 767 | %attr(755,root,root) %{_bindir}/ssh-copy-id |
96f686c2 | 768 | %attr(755,root,root) %{_bindir}/scp |
794e0987 JB |
769 | %config(noreplace) %verify(not md5 mtime size) %{_sysconfdir}/ssh_config |
770 | %config(noreplace,missingok) %verify(not md5 mtime size) /etc/env.d/SSH_ASKPASS | |
52000378 AF |
771 | %{_mandir}/man1/scp.1* |
772 | %{_mandir}/man1/ssh.1* | |
41897191 | 773 | %{_mandir}/man1/slogin.1* |
a6eef44c | 774 | %{_mandir}/man1/sftp.1* |
52000378 AF |
775 | %{_mandir}/man1/ssh-agent.1* |
776 | %{_mandir}/man1/ssh-add.1* | |
0906c8d0 | 777 | %{_mandir}/man1/ssh-copy-id.1* |
902cef13 | 778 | %{_mandir}/man5/ssh_config.5* |
2b7669a6 | 779 | %lang(it) %{_mandir}/it/man1/ssh.1* |
780 | %lang(it) %{_mandir}/it/man5/ssh_config.5* | |
781 | %lang(pl) %{_mandir}/pl/man1/scp.1* | |
782 | %lang(zh_CN) %{_mandir}/zh_CN/man1/scp.1* | |
ec82f607 JB |
783 | |
784 | # for host-based auth (suid required for accessing private host key) | |
785 | #%attr(4755,root,root) %{_libexecdir}/ssh-keysign | |
786 | #%{_mandir}/man8/ssh-keysign.8* | |
52000378 | 787 | |
8a7ba6eb AM |
788 | %files clients-agent-profile_d |
789 | %defattr(644,root,root,755) | |
790 | %config(noreplace) %verify(not md5 mtime size) %{_sysconfdir}/ssh-agent.conf | |
791 | %attr(755,root,root) /etc/profile.d/ssh-agent.sh | |
792 | ||
793 | %files clients-agent-xinitrc | |
794 | %defattr(644,root,root,755) | |
795 | %attr(755,root,root) /etc/X11/xinit/xinitrc.d/ssh-agent.sh | |
796 | ||
52000378 AF |
797 | %files server |
798 | %defattr(644,root,root,755) | |
799 | %attr(755,root,root) %{_sbindir}/sshd | |
a6eef44c | 800 | %attr(755,root,root) %{_libexecdir}/sftp-server |
ad852e00 | 801 | %attr(755,root,root) %{_libexecdir}/ssh-keysign |
50835229 | 802 | %attr(755,root,root) %{_libexecdir}/ssh-pkcs11-helper |
c75fc765 | 803 | %attr(755,root,root) %{_libexecdir}/sshd-keygen |
52000378 | 804 | %{_mandir}/man8/sshd.8* |
a6eef44c | 805 | %{_mandir}/man8/sftp-server.8* |
ad852e00 | 806 | %{_mandir}/man8/ssh-keysign.8* |
50835229 | 807 | %{_mandir}/man8/ssh-pkcs11-helper.8* |
902cef13 | 808 | %{_mandir}/man5/sshd_config.5* |
78aa4c3c | 809 | %{_mandir}/man5/moduli.5* |
794e0987 JB |
810 | %attr(640,root,root) %config(noreplace) %verify(not md5 mtime size) %{_sysconfdir}/sshd_config |
811 | %attr(640,root,root) %config(noreplace) %verify(not md5 mtime size) /etc/pam.d/sshd | |
634d69b4 | 812 | %attr(640,root,root) %{_sysconfdir}/moduli |
52000378 | 813 | %attr(754,root,root) /etc/rc.d/init.d/sshd |
794e0987 JB |
814 | %attr(640,root,root) %config(noreplace) %verify(not md5 mtime size) /etc/sysconfig/sshd |
815 | %attr(640,root,root) %config(noreplace) %verify(not md5 mtime size) /etc/security/blacklist.sshd | |
c75fc765 | 816 | %{systemdunitdir}/sshd.service |
84b4a299 ER |
817 | %{systemdunitdir}/sshd.socket |
818 | %{systemdunitdir}/sshd@.service | |
52000378 | 819 | |
44144fb7 ER |
820 | %if %{with ldap} |
821 | %files server-ldap | |
822 | %defattr(644,root,root,755) | |
823 | %doc HOWTO.ldap-keys ldap.conf | |
824 | %attr(755,root,root) %{_libexecdir}/ssh-ldap-helper | |
825 | %attr(755,root,root) %{_libexecdir}/ssh-ldap-wrapper | |
826 | %{_mandir}/man5/ssh-ldap.conf.5* | |
827 | %{_mandir}/man8/ssh-ldap-helper.8* | |
828 | %endif | |
829 | ||
0d32b20f | 830 | %if %{with gnome} || %{with gtk} |
40cb2e83 JB |
831 | %files gnome-askpass |
832 | %defattr(644,root,root,755) | |
794e0987 | 833 | %config(noreplace,missingok) %verify(not md5 mtime size) /etc/env.d/GNOME_SSH_ASKPASS* |
40cb2e83 JB |
834 | %dir %{_libexecdir}/ssh |
835 | %attr(755,root,root) %{_libexecdir}/ssh/ssh-askpass | |
4ae0bc0d | 836 | %attr(755,root,root) %{_libexecdir}/ssh-askpass |
40cb2e83 | 837 | %endif |
b32891d6 JR |
838 | |
839 | %if %{with ldap} | |
840 | %files -n openldap-schema-openssh-lpk | |
841 | %defattr(644,root,root,755) | |
842 | %{schemadir}/openssh-lpk.schema | |
843 | %endif | |
c0f446a0 | 844 | |
4ec733f6 | 845 | %if "%{pld_release}" != "ti" |
c0f446a0 JK |
846 | %files server-upstart |
847 | %defattr(644,root,root,755) | |
848 | %config(noreplace) %verify(not md5 mtime size) /etc/init/sshd.conf | |
4ec733f6 | 849 | %endif |