1 # Default values for additional components 2 %define build_x11_askpass 1 3 4 # Define the UID/GID to use for privilege separation 5 %define sshd_gid 65 6 %define sshd_uid 71 7 8 # The version of x11-ssh-askpass to use 9 %define xversion 1.2.4.1 10 11 # Allow the ability to override defaults with -D skip_xxx=1 12 %{?skip_x11_askpass:%define build_x11_askpass 0} 13 14 Summary: OpenSSH, a free Secure Shell (SSH) protocol implementation 15 Name: openssh 16 Version: 5.9p1 17 URL: http://www.openssh.com/ 18 Release: 1 19 Source0: openssh-%{version}.tar.gz 20 Source1: x11-ssh-askpass-%{xversion}.tar.gz 21 License: BSD 22 Group: Productivity/Networking/SSH 23 BuildRoot: %{_tmppath}/openssh-%{version}-buildroot 24 PreReq: openssl 25 Obsoletes: ssh 26 Provides: ssh 27 # 28 # (Build[ing] Prereq[uisites] only work for RPM 2.95 and newer.) 29 # building prerequisites -- stuff for 30 # OpenSSL (openssl-devel), 31 # TCP Wrappers (tcpd-devel), 32 # and Gnome (glibdev, gtkdev, and gnlibsd) 33 # 34 BuildPrereq: openssl 35 BuildPrereq: tcpd-devel 36 BuildPrereq: zlib-devel 37 #BuildPrereq: glibdev 38 #BuildPrereq: gtkdev 39 #BuildPrereq: gnlibsd 40 41 %package askpass 42 Summary: A passphrase dialog for OpenSSH and the X window System. 43 Group: Productivity/Networking/SSH 44 Requires: openssh = %{version} 45 Obsoletes: ssh-extras 46 Provides: openssh:${_libdir}/ssh/ssh-askpass 47 48 %if %{build_x11_askpass} 49 BuildPrereq: XFree86-devel 50 %endif 51 52 %description 53 Ssh (Secure Shell) is a program for logging into a remote machine and for 54 executing commands in a remote machine. It is intended to replace 55 rlogin and rsh, and provide secure encrypted communications between 56 two untrusted hosts over an insecure network. X11 connections and 57 arbitrary TCP/IP ports can also be forwarded over the secure channel. 58 59 OpenSSH is OpenBSD's rework of the last free version of SSH, bringing it 60 up to date in terms of security and features, as well as removing all 61 patented algorithms to seperate libraries (OpenSSL). 62 63 This package includes all files necessary for both the OpenSSH 64 client and server. 65 66 %description askpass 67 Ssh (Secure Shell) is a program for logging into a remote machine and for 68 executing commands in a remote machine. It is intended to replace 69 rlogin and rsh, and provide secure encrypted communications between 70 two untrusted hosts over an insecure network. X11 connections and 71 arbitrary TCP/IP ports can also be forwarded over the secure channel. 72 73 OpenSSH is OpenBSD's rework of the last free version of SSH, bringing it 74 up to date in terms of security and features, as well as removing all 75 patented algorithms to seperate libraries (OpenSSL). 76 77 This package contains an X Window System passphrase dialog for OpenSSH. 78 79 %changelog 80 * Wed Oct 26 2005 Iain Morgan <imorgan@nas.nasa.gov> 81 - Removed accidental inclusion of --without-zlib-version-check 82 * Tue Oct 25 2005 Iain Morgan <imorgan@nas.nasa.gov> 83 - Overhaul to deal with newer versions of SuSE and OpenSSH 84 * Mon Jun 12 2000 Damien Miller <djm@mindrot.org> 85 - Glob manpages to catch compressed files 86 * Wed Mar 15 2000 Damien Miller <djm@ibs.com.au> 87 - Updated for new location 88 - Updated for new gnome-ssh-askpass build 89 * Sun Dec 26 1999 Chris Saia <csaia@wtower.com> 90 - Made symlink to gnome-ssh-askpass called ssh-askpass 91 * Wed Nov 24 1999 Chris Saia <csaia@wtower.com> 92 - Removed patches that included /etc/pam.d/sshd, /sbin/init.d/rc.sshd, and 93 /var/adm/fillup-templates/rc.config.sshd, since Damien merged these into 94 his released tarfile 95 - Changed permissions on ssh_config in the install procedure to 644 from 600 96 even though it was correct in the %files section and thus right in the RPMs 97 - Postinstall script for the server now only prints "Generating SSH host 98 key..." if we need to actually do this, in order to eliminate a confusing 99 message if an SSH host key is already in place 100 - Marked all manual pages as %doc(umentation) 101 * Mon Nov 22 1999 Chris Saia <csaia@wtower.com> 102 - Added flag to configure daemon with TCP Wrappers support 103 - Added building prerequisites (works in RPM 3.0 and newer) 104 * Thu Nov 18 1999 Chris Saia <csaia@wtower.com> 105 - Made this package correct for SuSE. 106 - Changed instances of pam_pwdb.so to pam_unix.so, since it works more properly 107 with SuSE, and lib_pwdb.so isn't installed by default. 108 * Mon Nov 15 1999 Damien Miller <djm (at] mindrot.org> 109 - Split subpackages further based on patch from jim knoble <jmknoble (at] pobox.com> 110 * Sat Nov 13 1999 Damien Miller <djm (at] mindrot.org> 111 - Added 'Obsoletes' directives 112 * Tue Nov 09 1999 Damien Miller <djm (at] ibs.com.au> 113 - Use make install 114 - Subpackages 115 * Mon Nov 08 1999 Damien Miller <djm (at] ibs.com.au> 116 - Added links for slogin 117 - Fixed perms on manpages 118 * Sat Oct 30 1999 Damien Miller <djm (at] ibs.com.au> 119 - Renamed init script 120 * Fri Oct 29 1999 Damien Miller <djm (at] ibs.com.au> 121 - Back to old binary names 122 * Thu Oct 28 1999 Damien Miller <djm (at] ibs.com.au> 123 - Use autoconf 124 - New binary names 125 * Wed Oct 27 1999 Damien Miller <djm (at] ibs.com.au> 126 - Initial RPMification, based on Jan "Yenya" Kasprzak's <kas@fi.muni.cz> spec. 127 128 %prep 129 130 %if %{build_x11_askpass} 131 %setup -q -a 1 132 %else 133 %setup -q 134 %endif 135 136 %build 137 CFLAGS="$RPM_OPT_FLAGS" \ 138 %configure --prefix=/usr \ 139 --sysconfdir=%{_sysconfdir}/ssh \ 140 --mandir=%{_mandir} \ 141 --with-privsep-path=/var/lib/empty \ 142 --with-pam \ 143 --with-tcp-wrappers \ 144 --libexecdir=%{_libdir}/ssh 145 make 146 147 %if %{build_x11_askpass} 148 cd x11-ssh-askpass-%{xversion} 149 %configure --mandir=/usr/X11R6/man \ 150 --libexecdir=%{_libdir}/ssh 151 xmkmf -a 152 make 153 cd .. 154 %endif 155 156 %install 157 rm -rf $RPM_BUILD_ROOT 158 make install DESTDIR=$RPM_BUILD_ROOT/ 159 install -d $RPM_BUILD_ROOT/etc/pam.d/ 160 install -d $RPM_BUILD_ROOT/etc/init.d/ 161 install -d $RPM_BUILD_ROOT/var/adm/fillup-templates 162 install -m644 contrib/sshd.pam.generic $RPM_BUILD_ROOT/etc/pam.d/sshd 163 install -m744 contrib/suse/rc.sshd $RPM_BUILD_ROOT/etc/init.d/sshd 164 install -m744 contrib/suse/sysconfig.ssh \ 165 $RPM_BUILD_ROOT/var/adm/fillup-templates 166 167 %if %{build_x11_askpass} 168 cd x11-ssh-askpass-%{xversion} 169 make install install.man BINDIR=%{_libdir}/ssh DESTDIR=$RPM_BUILD_ROOT/ 170 rm -f $RPM_BUILD_ROOT/usr/share/Ssh.bin 171 %endif 172 173 %clean 174 rm -rf $RPM_BUILD_ROOT 175 176 %pre 177 /usr/sbin/groupadd -g %{sshd_gid} -o -r sshd 2> /dev/null || : 178 /usr/sbin/useradd -r -o -g sshd -u %{sshd_uid} -s /bin/false -c "SSH Privilege Separation User" -d /var/lib/sshd sshd 2> /dev/null || : 179 180 %post 181 /usr/bin/ssh-keygen -A 182 %{fillup_and_insserv -n -y ssh sshd} 183 %run_permissions 184 185 %verifyscript 186 %verify_permissions -e /etc/ssh/sshd_config -e /etc/ssh/ssh_config -e /usr/bin/ssh 187 188 %preun 189 %stop_on_removal sshd 190 191 %postun 192 %restart_on_update sshd 193 %{insserv_cleanup} 194 195 %files 196 %defattr(-,root,root) 197 %doc ChangeLog OVERVIEW README* PROTOCOL* 198 %doc TODO CREDITS LICENCE 199 %attr(0755,root,root) %dir %{_sysconfdir}/ssh 200 %attr(0644,root,root) %config(noreplace) %{_sysconfdir}/ssh/ssh_config 201 %attr(0600,root,root) %config(noreplace) %{_sysconfdir}/ssh/sshd_config 202 %attr(0600,root,root) %config(noreplace) %{_sysconfdir}/ssh/moduli 203 %attr(0644,root,root) %config(noreplace) /etc/pam.d/sshd 204 %attr(0755,root,root) %config /etc/init.d/sshd 205 %attr(0755,root,root) %{_bindir}/ssh-keygen 206 %attr(0755,root,root) %{_bindir}/scp 207 %attr(0755,root,root) %{_bindir}/ssh 208 %attr(-,root,root) %{_bindir}/slogin 209 %attr(0755,root,root) %{_bindir}/ssh-agent 210 %attr(0755,root,root) %{_bindir}/ssh-add 211 %attr(0755,root,root) %{_bindir}/ssh-keyscan 212 %attr(0755,root,root) %{_bindir}/sftp 213 %attr(0755,root,root) %{_sbindir}/sshd 214 %attr(0755,root,root) %dir %{_libdir}/ssh 215 %attr(0755,root,root) %{_libdir}/ssh/sftp-server 216 %attr(4711,root,root) %{_libdir}/ssh/ssh-keysign 217 %attr(0755,root,root) %{_libdir}/ssh/ssh-pkcs11-helper 218 %attr(0644,root,root) %doc %{_mandir}/man1/scp.1* 219 %attr(0644,root,root) %doc %{_mandir}/man1/sftp.1* 220 %attr(-,root,root) %doc %{_mandir}/man1/slogin.1* 221 %attr(0644,root,root) %doc %{_mandir}/man1/ssh.1* 222 %attr(0644,root,root) %doc %{_mandir}/man1/ssh-add.1* 223 %attr(0644,root,root) %doc %{_mandir}/man1/ssh-agent.1* 224 %attr(0644,root,root) %doc %{_mandir}/man1/ssh-keygen.1* 225 %attr(0644,root,root) %doc %{_mandir}/man1/ssh-keyscan.1* 226 %attr(0644,root,root) %doc %{_mandir}/man5/moduli.5* 227 %attr(0644,root,root) %doc %{_mandir}/man5/ssh_config.5* 228 %attr(0644,root,root) %doc %{_mandir}/man5/sshd_config.5* 229 %attr(0644,root,root) %doc %{_mandir}/man8/sftp-server.8* 230 %attr(0644,root,root) %doc %{_mandir}/man8/ssh-keysign.8* 231 %attr(0644,root,root) %doc %{_mandir}/man8/ssh-pkcs11-helper.8* 232 %attr(0644,root,root) %doc %{_mandir}/man8/sshd.8* 233 %attr(0644,root,root) /var/adm/fillup-templates/sysconfig.ssh 234 235 %if %{build_x11_askpass} 236 %files askpass 237 %defattr(-,root,root) 238 %doc x11-ssh-askpass-%{xversion}/README 239 %doc x11-ssh-askpass-%{xversion}/ChangeLog 240 %doc x11-ssh-askpass-%{xversion}/SshAskpass*.ad 241 %attr(0755,root,root) %{_libdir}/ssh/ssh-askpass 242 %attr(0755,root,root) %{_libdir}/ssh/x11-ssh-askpass 243 %attr(0644,root,root) %doc /usr/X11R6/man/man1/ssh-askpass.1x* 244 %attr(0644,root,root) %doc /usr/X11R6/man/man1/x11-ssh-askpass.1x* 245 %attr(0644,root,root) %config /usr/X11R6/lib/X11/app-defaults/SshAskpass 246 %endif 247
