]>
Commit | Line | Data |
---|---|---|
52000378 AF |
1 | Summary: OpenSSH free Secure Shell (SSH) implementation |
2 | Name: openssh | |
82f989ae AF |
3 | Version: 1.2.2p1 |
4 | Release: 1 | |
5d1c7089 | 5 | License: BSD |
6 | Group: Applications/Networking | |
7 | Group(pl): Aplikacje/Sieciowe | |
ec00afd0 | 8 | Source0: http://violet.ibs.com.au/openssh/files/%{name}-%{version}.tar.gz |
52000378 AF |
9 | Source1: opensshd.conf |
10 | Source2: openssh.conf | |
11 | Source3: opensshd.init | |
12 | Source4: opensshd.pamd | |
13 | Source5: openssh.sysconfig | |
ec00afd0 | 14 | Source6: passwd.pamd |
4946f6e5 JR |
15 | Patch0: openssh-PAM_NEW_AUTHTOK.patch |
16 | Patch1: openssh-libwrap.patch | |
8b6ffaee | 17 | Patch2: openssh-linux.patch |
4bb0eece | 18 | BuildRequires: openssl-devel >= 0.9.4-2 |
52000378 AF |
19 | BuildRequires: zlib-devel |
20 | BuildRequires: pam-devel | |
21 | BuildRequires: XFree86-devel | |
22 | BuildRequires: gnome-libs-devel | |
23 | BuildRoot: /tmp/%{name}-%{version}-root | |
a8f907dc | 24 | Obsoletes: ssh < %{version}, ssh > %{version} |
52000378 | 25 | |
b7b47957 | 26 | %define _sysconfdir /etc/ssh |
6fe24471 AF |
27 | |
28 | %description | |
29 | Ssh (Secure Shell) a program for logging into a remote machine and for | |
b5529f6f | 30 | executing commands in a remote machine. It is intended to replace rlogin and |
31 | rsh, and provide secure encrypted communications between two untrusted hosts | |
32 | over an insecure network. X11 connections and arbitrary TCP/IP ports can | |
33 | also be forwarded over the secure channel. | |
6fe24471 | 34 | |
b5529f6f | 35 | OpenSSH is OpenBSD's rework of the last free version of SSH, bringing it up |
36 | to date in terms of security and features, as well as removing all patented | |
37 | algorithms to seperate libraries (OpenSSL). | |
6fe24471 | 38 | |
52000378 | 39 | This package includes the core files necessary for both the OpenSSH |
b5529f6f | 40 | client and server. To make this package useful, you should also |
52000378 | 41 | install openssh-clients, openssh-server, or both. |
6fe24471 | 42 | |
52000378 AF |
43 | %package clients |
44 | Summary: OpenSSH Secure Shell protocol clients | |
45 | Requires: openssh | |
46 | Group: Applications/Networking | |
47 | Group(pl): Aplikacje/Sieciowe | |
a8f907dc | 48 | Obsoletes: ssh-clients < %{version}, ssh-clients > %{version} |
52000378 | 49 | Requires: %{name} = %{version} |
6fe24471 | 50 | |
52000378 AF |
51 | %description clients |
52 | Ssh (Secure Shell) a program for logging into a remote machine and for | |
b5529f6f | 53 | executing commands in a remote machine. It is intended to replace rlogin and |
54 | rsh, and provide secure encrypted communications between two untrusted hosts | |
55 | over an insecure network. X11 connections and arbitrary TCP/IP ports can | |
56 | also be forwarded over the secure channel. | |
6fe24471 | 57 | |
b5529f6f | 58 | OpenSSH is OpenBSD's rework of the last free version of SSH, bringing it up |
59 | to date in terms of security and features, as well as removing all patented | |
60 | algorithms to seperate libraries (OpenSSL). | |
52000378 | 61 | |
b5529f6f | 62 | This package includes the clients necessary to make encrypted connections to |
63 | SSH servers. | |
52000378 AF |
64 | |
65 | %package server | |
66 | Summary: OpenSSH Secure Shell protocol server (sshd) | |
67 | Requires: openssh chkconfig >= 0.9 | |
68 | Group: Networking/Daemons | |
69 | Group(pl): Sieciowe/Serwery | |
a8f907dc | 70 | Obsoletes: ssh-server < %{version}, ssh-server > %{version} |
52000378 | 71 | Requires: rc-scripts |
b5529f6f | 72 | Requires: /bin/login |
73 | Requires: util-linux | |
52000378 AF |
74 | Prereq: %{name} = %{version} |
75 | ||
76 | %description server | |
77 | Ssh (Secure Shell) a program for logging into a remote machine and for | |
b5529f6f | 78 | executing commands in a remote machine. It is intended to replace rlogin and |
79 | rsh, and provide secure encrypted communications between two untrusted hosts | |
80 | over an insecure network. X11 connections and arbitrary TCP/IP ports can | |
81 | also be forwarded over the secure channel. | |
52000378 | 82 | |
b5529f6f | 83 | OpenSSH is OpenBSD's rework of the last free version of SSH, bringing it up |
84 | to date in terms of security and features, as well as removing all patented | |
85 | algorithms to seperate libraries (OpenSSL). | |
52000378 | 86 | |
b5529f6f | 87 | This package contains the secure shell daemon. The sshd is the server part |
88 | of the secure shell protocol and allows ssh clients to connect to your host. | |
6fe24471 | 89 | |
6e70f4f7 | 90 | %package gnome-askpass |
52000378 AF |
91 | Summary: OpenSSH GNOME passphrase dialog |
92 | Group: Applications/Networking | |
93 | Group(pl): Aplikacje/Sieciowe | |
94 | Requires: %{name} = %{version} | |
a8f907dc | 95 | Obsoletes: ssh-extras < %{version}, ssh-extras > %{version} |
96 | Obsoletes: ssh-askpass < %{version}, ssh-askpass > %{version} | |
97 | Obsoletes: openssh-askpass < %{version}, openssh-askpass > %{version} | |
52000378 | 98 | |
6e70f4f7 | 99 | %description gnome-askpass |
52000378 | 100 | Ssh (Secure Shell) a program for logging into a remote machine and for |
b5529f6f | 101 | executing commands in a remote machine. It is intended to replace rlogin |
102 | and rsh, and provide secure encrypted communications between two untrusted | |
103 | hosts over an insecure network. X11 connections and arbitrary TCP/IP ports | |
104 | can also be forwarded over the secure channel. | |
52000378 | 105 | |
b5529f6f | 106 | OpenSSH is OpenBSD's rework of the last free version of SSH, bringing it up |
107 | to date in terms of security and features, as well as removing all patented | |
108 | algorithms to seperate libraries (OpenSSL). | |
52000378 AF |
109 | |
110 | This package contains the GNOME passphrase dialog. | |
111 | ||
52000378 AF |
112 | %prep |
113 | %setup -q | |
4946f6e5 | 114 | %patch0 -p1 |
82f989ae | 115 | %patch1 -p1 |
8b6ffaee | 116 | %patch2 -p1 |
52000378 AF |
117 | |
118 | %build | |
119 | autoconf | |
120 | %configure \ | |
f9bf943b AF |
121 | --with-gnome-askpass \ |
122 | --with-tcp-wrappers \ | |
123 | --with-md5-passwords \ | |
4946f6e5 | 124 | --with-ipaddr-display \ |
82f989ae | 125 | --enable-ipv6 \ |
f9bf943b | 126 | --enable-log-auth |
82f989ae AF |
127 | |
128 | # with ipv4-default sshd can't listen on IPv6 and IPv4 sockets | |
129 | # --with-ipv4-default \ | |
130 | # broken options | |
f9bf943b AF |
131 | # --without-kerberos4 \ |
132 | # --without-afs \ | |
133 | # --without-skey | |
134 | ||
135 | echo '#define LOGIN_PROGRAM "/bin/login"' >>config.h | |
136 | ||
52000378 | 137 | make |
6fe24471 AF |
138 | |
139 | %install | |
140 | rm -rf $RPM_BUILD_ROOT | |
6fe24471 | 141 | |
ffbc041f | 142 | install -d $RPM_BUILD_ROOT{%{_sysconfdir},/etc/{pam.d,rc.d/init.d,sysconfig,security}} |
52000378 | 143 | |
b5529f6f | 144 | make install DESTDIR="$RPM_BUILD_ROOT" |
52000378 AF |
145 | |
146 | install %{SOURCE4} $RPM_BUILD_ROOT/etc/pam.d/sshd | |
ec00afd0 | 147 | install %{SOURCE6} $RPM_BUILD_ROOT/etc/pam.d/passwdssh |
52000378 | 148 | install %{SOURCE5} $RPM_BUILD_ROOT/etc/sysconfig/sshd |
b7b47957 | 149 | install %{SOURCE3} $RPM_BUILD_ROOT/etc/rc.d/init.d/sshd |
52000378 AF |
150 | install %{SOURCE2} $RPM_BUILD_ROOT%{_sysconfdir}/ssh_config |
151 | install %{SOURCE1} $RPM_BUILD_ROOT%{_sysconfdir}/sshd_config | |
152 | ||
6e70f4f7 AF |
153 | mv -f $RPM_BUILD_ROOT%{_libexecdir}/ssh/gnome-ssh-askpass \ |
154 | $RPM_BUILD_ROOT%{_libexecdir}/ssh/ssh-askpass | |
155 | ||
52000378 AF |
156 | gzip -9fn ChangeLog OVERVIEW COPYING.Ylonen README README.Ylonen UPGRADING \ |
157 | $RPM_BUILD_ROOT/%{_mandir}/man*/* | |
ffbc041f | 158 | |
159 | touch $RPM_BUILD_ROOT/etc/security/blacklist.sshd | |
52000378 | 160 | |
6fe24471 AF |
161 | %clean |
162 | rm -rf $RPM_BUILD_ROOT | |
163 | ||
52000378 AF |
164 | %post server |
165 | /sbin/chkconfig --add sshd | |
166 | if [ ! -f /etc/ssh/ssh_host_key -o ! -s /etc/ssh/ssh_host_key ]; then | |
8b6ffaee | 167 | /usr/bin/ssh-keygen -b 1024 -f /etc/ssh/ssh_host_key -N '' 1>&2 |
6fe24471 | 168 | fi |
8b6ffaee AF |
169 | if [ -f /var/lock/subsys/sshd ]; then |
170 | /etc/rc.d/init.d/sshd restart 1>&2 | |
6fe24471 | 171 | fi |
ec00afd0 JR |
172 | if ! grep ssh /etc/security/passwd.conf >/dev/null 2>&1 ; then |
173 | echo "ssh" >> /etc/security/passwd.conf | |
174 | fi | |
6fe24471 | 175 | |
52000378 | 176 | %preun server |
b5529f6f | 177 | if [ "$1" = 0 ]; then |
8b6ffaee AF |
178 | if [ -f /var/lock/subsys/sshd ]; then |
179 | /etc/rc.d/init.d/sshd stop 1>&2 | |
b5529f6f | 180 | fi |
52000378 | 181 | /sbin/chkconfig --del sshd |
6fe24471 AF |
182 | fi |
183 | ||
184 | %files | |
52000378 AF |
185 | %defattr(644,root,root,755) |
186 | %doc {ChangeLog,OVERVIEW,COPYING.Ylonen,README,README.Ylonen,UPGRADING}.gz | |
187 | %attr(755,root,root) %{_bindir}/ssh-keygen | |
188 | %{_mandir}/man1/ssh-keygen.1* | |
189 | %dir %{_sysconfdir} | |
190 | ||
191 | %files clients | |
192 | %defattr(644,root,root,755) | |
193 | # suid root ? | |
194 | #%attr(4755,root,root) %{_bindir}/ssh | |
195 | %attr(0755,root,root) %{_bindir}/ssh | |
196 | %attr(0755,root,root) %{_bindir}/ssh-agent | |
197 | %attr(0755,root,root) %{_bindir}/ssh-add | |
198 | #%attr(0755,root,root) %{_bindir}/slogin | |
199 | %attr(755,root,root) %{_bindir}/scp | |
200 | %{_mandir}/man1/scp.1* | |
201 | %{_mandir}/man1/ssh.1* | |
202 | %{_mandir}/man1/ssh-agent.1* | |
203 | %{_mandir}/man1/ssh-add.1* | |
204 | #%{_mandir}/man1/slogin.1 | |
205 | %config(noreplace) %verify(not md5 size mtime) %{_sysconfdir}/ssh_config | |
206 | ||
207 | %files server | |
208 | %defattr(644,root,root,755) | |
209 | %attr(755,root,root) %{_sbindir}/sshd | |
210 | %{_mandir}/man8/sshd.8* | |
211 | %attr(640,root,root) %config(noreplace) %verify(not md5 size mtime) %{_sysconfdir}/sshd_config | |
212 | %attr(640,root,root) %config(noreplace) %verify(not md5 size mtime) /etc/pam.d/sshd | |
213 | %attr(754,root,root) /etc/rc.d/init.d/sshd | |
214 | %attr(640,root,root) %config(noreplace) %verify(not md5 size mtime) /etc/sysconfig/sshd | |
ffbc041f | 215 | %attr(640,root,root) %config(noreplace) %verify(not md5 size mtime) /etc/security/blacklist.sshd |
52000378 | 216 | |
6e70f4f7 | 217 | %files gnome-askpass |
52000378 AF |
218 | %defattr(644,root,root,755) |
219 | %dir %{_libexecdir}/ssh | |
220 | %attr(755,root,root) %{_libexecdir}/ssh/ssh-askpass |