wok-4.x view openssh-pam/receipt @ rev 12454
openssh: CVE-2016-0777 and CVE-2016-0778
author | Pascal Bellard <pascal.bellard@slitaz.org> |
---|---|
date | Thu Jan 14 18:37:13 2016 +0100 (2016-01-14) |
parents | f1de57e663eb |
children |
line source
1 # SliTaz package receipt.
3 PACKAGE="openssh-pam"
4 VERSION="5.9p1"
5 CATEGORY="security"
6 SHORT_DESC="Openbsd Secure Shell using PAM."
7 MAINTAINER="pascal.bellard@slitaz.org"
8 SOURCE="openssh"
9 TARBALL="$SOURCE-$VERSION.tar.gz"
10 WEB_SITE="http://www.openssh.org/"
11 WGET_URL="ftp://ftp.fr.openbsd.org/pub/OpenBSD/OpenSSH/portable/$TARBALL"
12 DEPENDS="sftp-server libcrypto zlib pam"
13 BUILD_DEPENDS="libcrypto-dev zlib-dev openssl-dev pam pam-dev"
14 PROVIDE="openssh:pam ssh:pam"
16 # Rules to configure and make the package.
17 compile_rules()
18 {
19 cd $src
20 ./configure --prefix=/usr --sysconfdir=/etc/ssh --with-pam \
21 --with-privsep-user=nobody --with-privsep-path=/var/run/sshd \
22 --with-xauth=/usr/bin/xauth --libexecdir=/usr/sbin \
23 $CONFIGURE_ARGS &&
24 make &&
25 make DESTDIR=$DESTDIR install
26 }
28 # Rules to gen a SliTaz package suitable for Tazpkg.
29 genpkg_rules()
30 {
31 mkdir -p $fs/usr $fs/etc/init.d $fs/etc/ssh $fs/var/run/sshd
32 cp -a $_pkg/usr/sbin $_pkg/usr/bin $fs/usr
33 rm -f $fs/usr/sbin/sftp-server
34 cp -a $_pkg/etc $fs
35 cp ../$SOURCE/stuff/openssh $fs/etc/init.d
36 sed -i 's/.*UsePAM.*/UsePAM yes/' $fs/etc/ssh/sshd_config
38 # client bug CVE-2016-0777 and CVE-2016-0778
39 echo -e '\nHost *\nUseRoaming no' >> $fs/etc/ssh/ssh_config
40 }
42 # Pre and post install commands for Tazpkg.
43 post_install()
44 {
45 while read dropbear openssh ; do
46 [ -s $1$dropbear ] || continue
47 dropbearconvert dropbear openssh $1$dropbear $1$openssh
48 dropbearkey -y -f $1$dropbear | grep ssh > $1$openssh.pub
49 dropbearkey -y -f $1$dropbear | grep Fingerprint
50 done <<EOT
51 /etc/dropbear/dropbear_rsa_host_key /etc/ssh/ssh_host_rsa_key
52 /etc/dropbear/dropbear_dss_host_key /etc/ssh/ssh_host_dsa_key
53 EOT
54 }