[Momonga-devel.ja:00493] openssh version and ssh-keysign

From: KOMATSU Shinichiro <koma2@xxxxxxxxxxxxxxxxxxxx>
Date: Sun, 22 Sep 2002 10:18:50 +0900

$B>.>>$G$9!#(B
(B
$B$$$D$N:"$+$i$+!"(Bopenssh $B$N(B rpm version $B$+$i(B
(Bportable $BHG$N(B version (3.4p1 $B$N(B p1 $B$H$+(B)$B$,Mn$A$F$^$9$M!#(B
(Bportable $BHG$N(B version$BHV9f$r4^$a$F!"%^%:%$$3$H$H$+$"$k$G$7$g$&$+!)(B
$B!t(B $BMW$9$k$K!":#(B openssh-3.4-4m $B$H$J$C$F$$$k$N$r(B
$B!t(B openssh-3.4p1-4m $B$H$7$?$$!#(B
(B
$B$"$H!"(B/usr/libexec/ssh/ssh-keysign $B$,(B %files $B$+$iO3$l$F$^$9!#(B
$B$?$@!"$3$l$O(B ssh2 $B$N(B hostbased authentication $B$N;~$K$@$1;H$o$l$k$N$G(B
$B$U$D$&$O;H$&5!2q$,$J$$$H;W$&>e$K!"(Bsetuid root $B$J$s$G$9$h$M!#(B
$B$@$+$i!";H$o$J$$?M$OF~$l$?$/$J$$$H;W$&$N$G(B
(Bopenssh-keysign $B$H$$$&(B sub package $B$K$7$h$&$H;W$$$^$9!#(B
$B$3$l$K$D$$$F0U8+$J$I$"$j$^$7$?$i$h$m$7$/$*4j$$$7$^$9!#(B
(B
$B$H$j$"$($:(B spec $B$N(B diff $B$r$D$1$F$*$-$^$9!#(B
$B>e5-(B2$BE@0J30$K$b!"(Brsh support $B$r30$7$?$j(B($B$9$G$K(B obsolete $B$5$l$F$$$k(B)$B!"(B
(Bssh_config(5) $B$N(B man $B$,H4$1$F$?$j$7$?$N$rD>$7$F$"$j$^$9!#(B
(B
$BFC$K2?$b$J$1$l$P!":#Lk$K$G$b(B commit $B$9$k!"$H$$$&$3$H$G!#(B
(B
(B-- 
(B---------------------------------------
$BEl5~Bg3XBg3X1!Am9gJ82=8&5f2J(B
$B9-0h2J3X@l96Aj4X4pAC2J3X7O(B 
(B  $B:4!98&5f<<(B  $BGn;N#3G/(B
(B    $B>.>>(B  $B?80lO/(B            
(Bkoma2@xxxxxxxxxxxxxxxxxxxx
(Bkoma2@xxxxxxxxxxxxxxxxx
(Bhttp://kamuy.c.u-tokyo.ac.jp/~koma2/
(B---------------------------------------

Index: openssh.spec
===================================================================
RCS file: /home/cvs/pkgs/openssh/openssh.spec,v
retrieving revision 1.55
diff -u -u -r1.55 openssh.spec
--- openssh.spec	2002/08/01 10:22:49	1.55
+++ openssh.spec	2002/09/22 01:17:55
@@ -5,18 +5,25 @@
 # Version of ssh-askpass
 %define aversion 1.2.4.1
 
+### include local configuration
+%{?include_specopt}
+
+### default configurations
+#  If you'd like to change these configurations, please copy them to
+# /etc/rpm/specopt/openssh.specopt and edit it.
+
 # Do we want to disable building of x11-askpass? (1=yes 0=no)
-%define no_x11_askpass 0
+%{!?no_x11_askpass:%define no_x11_askpass 0}
 
 # Do we want to disable building of gnome-askpass? (1=yes 0=no)
-%define no_gnome_askpass 0
+%{!?no_gnome_askpass:%define no_gnome_askpass 0}
 
 Summary: OpenSSH free Secure Shell (SSH) implementation
 Name: openssh
-Version: %{over}
-Release: 4m
+Version: %{over}p%{pver}
+Release: 5m
 URL: http://www.openssh.com/
-Source0: ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-%{over}p%{pver}.tar.gz
+Source0: ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-%{version}.tar.gz
 NoSource: 0
 %if ! %{no_x11_askpass}
 Source1: http://www.ntrnet.net/~jmknoble/software/x11-ssh-askpass/x11-ssh-askpass-%{aversion}.tar.gz
@@ -33,7 +40,7 @@
 Provides: ssh
 Prereq: openssl >= 0.9.6c
 BuildPreReq: perl, openssl-devel >= 0.9.6c, tcp_wrappers, glibc-devel
-BuildPreReq: util-linux, rsh, pam-devel
+BuildPreReq: util-linux, pam-devel
 %if ! %{no_gnome_askpass}
 BuildPreReq: gnome-libs-devel
 %endif
@@ -66,6 +73,11 @@
 Obsoletes: ssh-extras
 Provides: ssh-extras
 
+%package keysign
+Summary: OpenSSH helper program for hostbased authentication
+Group: Applications/Internet
+Requires: openssh = %{version}-%{release}, openssh-clients = %{version}-%{release}
+
 %description
 Ssh (Secure Shell) a program for logging into a remote machine and for
 executing commands in a remote machine.  It is intended to replace
@@ -137,6 +149,14 @@
 
 This package contains the GNOME passphrase dialog.
 
+%description keysign
+Ssh-keysign is used by ssh(1) to access the local host keys and generate
+the digital signature required during hostbased authentication with SSH
+protocol version 2.
+
+Since ssh-keysign is a setuid programm, installing it is not recommended
+if you do not use hostbased authentication with ssh2.
+
 %prep
 if [ %{version} == "3.4" ]; then
 	if md5sum %{SOURCE0} | grep -s -v "459c1d0262e939d6432f193c7a4ba8a8" ;  then
@@ -156,9 +176,9 @@
 fi
 
 %if ! %{no_x11_askpass}
-%setup -q -a 1 -n %{name}-%{over}p%{pver}
+%setup -q -a 1
 %else
-%setup -q -n %{name}-%{over}p%{pver}
+%setup -q
 %endif
 %if ! %{no_gnome_askpass}
 #%patch10 -p1 -b .gnome-askpass
@@ -177,7 +197,6 @@
 %configure --sysconfdir=%{_sysconfdir}/ssh \
 	--libexecdir=%{_libexecdir}/ssh \
 	--with-tcp-wrappers \
-	--with-rsh=/usr/bin/rsh \
 	--without-kerberos4 \
 %if ! %{_ipv6}
 	--with-ipv4-default \
@@ -295,6 +314,7 @@
 %attr(0644,root,root) %{_mandir}/man1/scp.1*
 %attr(0644,root,root) %{_mandir}/man1/ssh-keygen.1*
 %attr(0644,root,root) %{_mandir}/man1/ssh-keyscan.1*
+%attr(0644,root,root) %{_mandir}/man5/ssh_config.5*
 %attr(0755,root,root) %dir %{_sysconfdir}/ssh
 %attr(0755,root,root) %dir %{_libexecdir}/ssh
 %attr(0600,root,root) %config(noreplace) %{_sysconfdir}/ssh/moduli
@@ -328,6 +348,11 @@
 %attr(0755,root,root) %config %{_initscriptdir}/sshd
 %attr(0755,root,sys) %{_var}/empty
 
+%files keysign
+%defattr(-,root,root)
+%attr(4711,root,root) %{_libexecdir}/ssh/ssh-keysign
+%{_mandir}/man8/ssh-keysign.8*
+
 %if ! %{no_x11_askpass}
 %files askpass
 %defattr(-,root,root)
@@ -350,6 +375,19 @@
 %endif
 
 %changelog
+* Fri Sep 20 2002 KOMATSU Shinichiro <koma2@xxxxxxxxxxxxxxxxxxxx>
+- (3.4p1-5m)
+- add portable version to Version:
+- %%no_x11_askpass and %%no_gnome_askpass can now be defined
+  by command line arguments.
+- add %%{?include_specopt}
+- rsh support was deprecated, so remove BuildPrereq: rsh
+- add ssh_config(5) man page
+- add ssh-keysign sub package.
+  since ssh-keysign(8) is a setuid programm and only needed
+  during hostbased authentication with protocol version 2,
+  installing it is not recommened.
+
 * Thu Aug  1 2002 HOSONO Hidetomo <h@xxxxxxxx>
 - (3.4-4m)
 - correct some wrong spelling of trojan(ed)

Follow-Ups:
- [Momonga-devel.ja:00494] Re: openssh version and ssh-keysign
  - From: YAMAZAKI Makoto

Prev by Date: [Momonga-devel.ja:00492] Re: $B%b(B$B%b%s%,FCM-$N%^%/%m(B (Re: Re: kernel-2.4.18-116m $B$G$NJQ99(B($B%3%^%s%I%i%$%s$+$i@_Dj(B$BJQ99(B))
Next by Date: [Momonga-devel.ja:00494] Re: openssh version and ssh-keysign
Previous by thread: [Momonga-devel.ja:00491] Re: default image viewer
Next by thread: [Momonga-devel.ja:00494] Re: openssh version and ssh-keysign
Index(es):
- Date
- Thread