]>
Commit | Line | Data |
---|---|---|
1 | Summary: OpenSSH free Secure Shell (SSH) implementation | |
2 | Name: openssh | |
3 | Version: 2.1.0 | |
4 | Release: 1 | |
5 | License: BSD | |
6 | Group: Applications/Networking | |
7 | Group(pl): Aplikacje/Sieciowe | |
8 | Source0: ftp://ftp.ca.openbsd.org/pub/OpenBSD/OpenSSH/portable/%{name}-%{version}.tar.gz | |
9 | Source1: opensshd.conf | |
10 | Source2: openssh.conf | |
11 | Source3: opensshd.init | |
12 | Source4: opensshd.pamd | |
13 | Source5: openssh.sysconfig | |
14 | Source6: passwd.pamd | |
15 | Patch0: openssh-PAM_NEW_AUTHTOK.patch | |
16 | Patch1: openssh-libwrap.patch | |
17 | BuildRequires: openssl-devel >= 0.9.4-2 | |
18 | BuildRequires: rpm >= 3.0.4 | |
19 | BuildRequires: zlib-devel | |
20 | BuildRequires: pam-devel | |
21 | BuildRequires: XFree86-devel | |
22 | BuildRequires: gnome-libs-devel | |
23 | BuildRequires: gtk+-devel | |
24 | BuildRoot: %{tmpdir}/%{name}-%{version}-root-%(id -u -n) | |
25 | Prereq: openssl >= 0.9.4-2 | |
26 | Obsoletes: ssh < %{version}, ssh > %{version} | |
27 | ||
28 | %define _sysconfdir /etc/ssh | |
29 | ||
30 | %description | |
31 | Ssh (Secure Shell) a program for logging into a remote machine and for | |
32 | executing commands in a remote machine. It is intended to replace rlogin | |
33 | and rsh, and provide secure encrypted communications between two untrusted | |
34 | hosts over an insecure network. X11 connections and arbitrary TCP/IP ports | |
35 | can also be forwarded over the secure channel. | |
36 | ||
37 | OpenSSH is OpenBSD's rework of the last free version of SSH, bringing it up | |
38 | to date in terms of security and features, as well as removing all patented | |
39 | algorithms to seperate libraries (OpenSSL). | |
40 | ||
41 | This package includes the core files necessary for both the OpenSSH client | |
42 | and server. To make this package useful, you should also install | |
43 | openssh-clients, openssh-server, or both. | |
44 | ||
45 | %package clients | |
46 | Summary: OpenSSH Secure Shell protocol clients | |
47 | Requires: openssh | |
48 | Group: Applications/Networking | |
49 | Group(pl): Aplikacje/Sieciowe | |
50 | Obsoletes: ssh-clients < %{version}, ssh-clients > %{version} | |
51 | Requires: %{name} = %{version} | |
52 | ||
53 | %description clients | |
54 | Ssh (Secure Shell) a program for logging into a remote machine and for | |
55 | executing commands in a remote machine. It is intended to replace rlogin | |
56 | and rsh, and provide secure encrypted communications between two untrusted | |
57 | hosts over an insecure network. X11 connections and arbitrary TCP/IP ports | |
58 | can also be forwarded over the secure channel. | |
59 | ||
60 | OpenSSH is OpenBSD's rework of the last free version of SSH, bringing it up | |
61 | to date in terms of security and features, as well as removing all patented | |
62 | algorithms to seperate libraries (OpenSSL). | |
63 | ||
64 | This package includes the clients necessary to make encrypted connections | |
65 | to SSH servers. | |
66 | ||
67 | %package server | |
68 | Summary: OpenSSH Secure Shell protocol server (sshd) | |
69 | Requires: openssh chkconfig >= 0.9 | |
70 | Group: Networking/Daemons | |
71 | Group(pl): Sieciowe/Serwery | |
72 | Obsoletes: ssh-server < %{version}, ssh-server > %{version} | |
73 | Requires: rc-scripts | |
74 | Requires: /bin/login | |
75 | Requires: util-linux | |
76 | Prereq: %{name} = %{version} | |
77 | ||
78 | %description server | |
79 | Ssh (Secure Shell) a program for logging into a remote machine and for | |
80 | executing commands in a remote machine. It is intended to replace rlogin | |
81 | and rsh, and provide secure encrypted communications between two untrusted | |
82 | hosts over an insecure network. X11 connections and arbitrary TCP/IP ports | |
83 | can also be forwarded over the secure channel. | |
84 | ||
85 | OpenSSH is OpenBSD's rework of the last free version of SSH, bringing it up | |
86 | to date in terms of security and features, as well as removing all patented | |
87 | algorithms to seperate libraries (OpenSSL). | |
88 | ||
89 | This package contains the secure shell daemon. The sshd is the server part | |
90 | of the secure shell protocol and allows ssh clients to connect to your | |
91 | host. | |
92 | ||
93 | %package gnome-askpass | |
94 | Summary: OpenSSH GNOME passphrase dialog | |
95 | Group: Applications/Networking | |
96 | Group(pl): Aplikacje/Sieciowe | |
97 | Requires: %{name} = %{version} | |
98 | Obsoletes: ssh-extras < %{version}, ssh-extras > %{version} | |
99 | Obsoletes: ssh-askpass < %{version}, ssh-askpass > %{version} | |
100 | Obsoletes: openssh-askpass < %{version}, openssh-askpass > %{version} | |
101 | ||
102 | %description gnome-askpass | |
103 | Ssh (Secure Shell) a program for logging into a remote machine and for | |
104 | executing commands in a remote machine. It is intended to replace rlogin | |
105 | and rsh, and provide secure encrypted communications between two untrusted | |
106 | hosts over an insecure network. X11 connections and arbitrary TCP/IP ports | |
107 | can also be forwarded over the secure channel. | |
108 | ||
109 | OpenSSH is OpenBSD's rework of the last free version of SSH, bringing it up | |
110 | to date in terms of security and features, as well as removing all patented | |
111 | algorithms to seperate libraries (OpenSSL). | |
112 | ||
113 | This package contains the GNOME passphrase dialog. | |
114 | ||
115 | %prep | |
116 | %setup -q | |
117 | %patch0 -p1 | |
118 | %patch1 -p1 | |
119 | ||
120 | %build | |
121 | autoconf | |
122 | %configure \ | |
123 | --with-gnome-askpass \ | |
124 | --with-tcp-wrappers \ | |
125 | --with-md5-passwords \ | |
126 | --with-ipaddr-display \ | |
127 | --enable-ipv6 \ | |
128 | --enable-log-auth | |
129 | ||
130 | # with ipv4-default sshd can't listen on IPv6 and IPv4 sockets | |
131 | # --with-ipv4-default \ | |
132 | # broken options | |
133 | # --without-kerberos4 \ | |
134 | # --without-afs \ | |
135 | # --without-skey | |
136 | ||
137 | echo '#define LOGIN_PROGRAM "/bin/login"' >>config.h | |
138 | ||
139 | make | |
140 | cd contrib && gcc `gnome-config --cflags gnome gnomeui` \ | |
141 | gnome-ssh-askpass.c -o gnome-ssh-askpass \ | |
142 | `gnome-config --libs gnome gnomeui` | |
143 | ||
144 | %install | |
145 | rm -rf $RPM_BUILD_ROOT | |
146 | ||
147 | install -d $RPM_BUILD_ROOT{%{_sysconfdir},/etc/{pam.d,rc.d/init.d,sysconfig,security}} | |
148 | ||
149 | make install DESTDIR="$RPM_BUILD_ROOT" | |
150 | ||
151 | install %{SOURCE4} $RPM_BUILD_ROOT/etc/pam.d/sshd | |
152 | install %{SOURCE6} $RPM_BUILD_ROOT/etc/pam.d/passwdssh | |
153 | install %{SOURCE5} $RPM_BUILD_ROOT/etc/sysconfig/sshd | |
154 | install %{SOURCE3} $RPM_BUILD_ROOT/etc/rc.d/init.d/sshd | |
155 | install %{SOURCE2} $RPM_BUILD_ROOT%{_sysconfdir}/ssh_config | |
156 | install %{SOURCE1} $RPM_BUILD_ROOT%{_sysconfdir}/sshd_config | |
157 | install -d $RPM_BUILD_ROOT%{_libexecdir}/ssh | |
158 | install contrib/gnome-ssh-askpass $RPM_BUILD_ROOT%{_libexecdir}/ssh/ssh-askpass | |
159 | ||
160 | gzip -9nf ChangeLog OVERVIEW COPYING.Ylonen README README.Ylonen UPGRADING \ | |
161 | $RPM_BUILD_ROOT/%{_mandir}/man*/* | |
162 | ||
163 | touch $RPM_BUILD_ROOT/etc/security/blacklist.sshd | |
164 | ||
165 | %clean | |
166 | rm -rf $RPM_BUILD_ROOT | |
167 | ||
168 | %post server | |
169 | /sbin/chkconfig --add sshd | |
170 | if [ ! -f /etc/ssh/ssh_host_key -o ! -s /etc/ssh/ssh_host_key ]; then | |
171 | /usr/bin/ssh-keygen -b 1024 -f /etc/ssh/ssh_host_key -N '' 1>&2 | |
172 | fi | |
173 | if [ -f /var/lock/subsys/sshd ]; then | |
174 | /etc/rc.d/init.d/sshd restart 1>&2 | |
175 | else | |
176 | echo "Run \"/etc/rc.d/init.d/sshd start\" to start openssh daemon." | |
177 | fi | |
178 | if ! grep ssh /etc/security/passwd.conf >/dev/null 2>&1 ; then | |
179 | echo "ssh" >> /etc/security/passwd.conf | |
180 | fi | |
181 | ||
182 | %preun server | |
183 | if [ "$1" = 0 ]; then | |
184 | if [ -f /var/lock/subsys/sshd ]; then | |
185 | /etc/rc.d/init.d/sshd stop 1>&2 | |
186 | fi | |
187 | /sbin/chkconfig --del sshd | |
188 | fi | |
189 | ||
190 | %files | |
191 | %defattr(644,root,root,755) | |
192 | %doc {ChangeLog,OVERVIEW,COPYING.Ylonen,README,README.Ylonen,UPGRADING}.gz | |
193 | %attr(755,root,root) %{_bindir}/ssh-keygen | |
194 | %{_mandir}/man1/ssh-keygen.1* | |
195 | %dir %{_sysconfdir} | |
196 | ||
197 | %files clients | |
198 | %defattr(644,root,root,755) | |
199 | # suid root ? | |
200 | #%attr(4755,root,root) %{_bindir}/ssh | |
201 | %attr(0755,root,root) %{_bindir}/ssh | |
202 | %attr(0755,root,root) %{_bindir}/ssh-agent | |
203 | %attr(0755,root,root) %{_bindir}/ssh-add | |
204 | #%attr(0755,root,root) %{_bindir}/slogin | |
205 | %attr(755,root,root) %{_bindir}/scp | |
206 | %{_mandir}/man1/scp.1* | |
207 | %{_mandir}/man1/ssh.1* | |
208 | %{_mandir}/man1/ssh-agent.1* | |
209 | %{_mandir}/man1/ssh-add.1* | |
210 | #%{_mandir}/man1/slogin.1 | |
211 | %config(noreplace) %verify(not md5 size mtime) %{_sysconfdir}/ssh_config | |
212 | ||
213 | %files server | |
214 | %defattr(644,root,root,755) | |
215 | %attr(755,root,root) %{_sbindir}/sshd | |
216 | %{_mandir}/man8/sshd.8* | |
217 | %attr(640,root,root) %config(noreplace) %verify(not md5 size mtime) %{_sysconfdir}/sshd_config | |
218 | %attr(640,root,root) %config(noreplace) %verify(not md5 size mtime) /etc/pam.d/sshd | |
219 | %attr(754,root,root) /etc/rc.d/init.d/sshd | |
220 | %attr(640,root,root) %config(noreplace) %verify(not md5 size mtime) /etc/sysconfig/sshd | |
221 | %attr(640,root,root) %config(noreplace) %verify(not md5 size mtime) /etc/security/blacklist.sshd | |
222 | ||
223 | %files gnome-askpass | |
224 | %defattr(644,root,root,755) | |
225 | %dir %{_libexecdir}/ssh | |
226 | %attr(755,root,root) %{_libexecdir}/ssh/ssh-askpass |