1 |
# $Id: e-smith-proftpd.spec,v 1.15 2021/03/16 18:36:37 jpp Exp $ |
2 |
|
3 |
Summary: e-smith specific proftpd configuration files and templates |
4 |
%define name e-smith-proftpd |
5 |
Name: %{name} |
6 |
%define version 2.6.0 |
7 |
%define release 15 |
8 |
Version: %{version} |
9 |
Release: %{release}%{?dist} |
10 |
License: GPL |
11 |
Group: Networking/Daemons |
12 |
Source: %{name}-%{version}.tar.xz |
13 |
Patch0: e-smith-proftpd-2.6.0-TLS.patch |
14 |
Patch1: e-smith-proftpd-2.6.0-bz11106_11150_systemd_update_event.patch |
15 |
Patch2: e-smith-proftpd-2.6.0-bz11106_11150_remove_supervise_ftp.patch |
16 |
Patch3: e-smith-proftpd-2.6.0-bz11245_runit_required.patch |
17 |
Patch4: e-smith-proftpd-2.6.0-bz11106_protect_from_proftpd.patch |
18 |
Patch5: e-smith-proftpd-2.6.0-bz11316-testSSLfiles.patch |
19 |
Patch6: e-smith-proftpd-2.6.0-bz11357-rmConflcits.patch |
20 |
Patch7: e-smith-proftpd-2.6.0-bz11384-logging.patch |
21 |
Patch8: e-smith-proftpd-2.6.0-bz9692-cleanup.patch |
22 |
Patch9: e-smith-proftpd-2.6.0-bz11603-ssl-update.patch |
23 |
|
24 |
BuildRoot: /var/tmp/%{name}-%{version}-%{release}-buildroot |
25 |
BuildArchitectures: noarch |
26 |
BuildRequires: e-smith-devtools |
27 |
Requires: e-smith-base >= 4.15.0-05, proftpd |
28 |
Requires: e-smith-lib >= 1.15.1-33 |
29 |
Requires: iptables |
30 |
AutoReqProv: no |
31 |
|
32 |
%changelog |
33 |
* Mon May 31 2021 Jean-Philippe Pialasse <tests@pialasse.com> 2.6.0-15.sme |
34 |
- restart proftpd on ssl-update [SME: 11603] |
35 |
|
36 |
* Tue Mar 16 2021 Jean-Philippe Pialasse <tests@pialasse.com> 2.6.0-14.sme |
37 |
- cleanup in /etc/rc.d [SME: 9692] |
38 |
|
39 |
* Wed Mar 03 2021 Jean-Philipe Pialasse <tests@pialasse.com> 2.6.0-13.sme |
40 |
- redirect log away from message [SME: 11384] |
41 |
|
42 |
* Thu Feb 18 2021 Jean-Philipe Pialasse <tests@pialasse.com> 2.6.0-12.sme |
43 |
- fix circular Conflict with proftpd [SME: 11357] |
44 |
|
45 |
* Thu Jan 14 2021 Jean-Philipe Pialasse <tests@pialasse.com> 2.6.0-11.sme |
46 |
- improve protect from proftpd.service running [SME: 11106] |
47 |
|
48 |
* Fri Jan 08 2021 Jean-Philipe Pialasse <tests@pialasse.com> 2.6.0-10.sme |
49 |
- protect from proftpd.service running in place of ftp.service [SME: 11106] |
50 |
- remove system-preset file from usr [SME: 10958] |
51 |
- SSL crt and key to self signed if path does not exist [SME: 11316] |
52 |
|
53 |
* Thu Dec 10 2020 Michel Begue <mab974@gmail.com> 2.6.0-8.sme |
54 |
- add Requires=runit.service [SME: 11245] |
55 |
|
56 |
* Thu Dec 03 2020 Jean-Philipe Pialasse <tests@pialasse.com> 2.6.0-7.sme |
57 |
- execute systemd-reload before service adjust in events [SME: 11228] |
58 |
- remove S95reset-unsavedflag [SME: 11229] |
59 |
|
60 |
* Wed Nov 25 2020 Michel Begue <mab974@gmail.com> 2.6.0-6.sme |
61 |
- Remove ftp from 'init.d/supervise' [SME: 11106] [SME: 11150] |
62 |
|
63 |
* Wed Nov 25 2020 Michel Begue <mab974@gmail.com> 2.6.0-5.sme |
64 |
- Move ftp service to systemd [SME: 11106] |
65 |
- Create e-smith-proftpd-update event [SME: 11150] |
66 |
|
67 |
* Wed Aug 03 2016 Jean-Philipe Pialasse <tests@pialasse.com> 2.6.0-4.sme |
68 |
- fix typos [SME: 6804] |
69 |
- set default as required |
70 |
- NB: client must be set as active connection, not passive |
71 |
|
72 |
* Fri Jun 17 2016 Jean-Philipe Pialasse <tests@pialasse.com> 2.6.0-3.sme |
73 |
- updated patch for certificate chain |
74 |
- Thanks to Daniel Berteaud |
75 |
|
76 |
* Fri Jun 17 2016 Jean-Philipe Pialasse <tests@pialasse.com> 2.6.0-2.sme |
77 |
- Adding TLS support to proftp configuration [SME: 6804] |
78 |
- default is enabled but not required, only TLSv1.1 and v1.2 |
79 |
|
80 |
* Fri Feb 05 2016 stephane de Labrusse <stephdl@de-labrusse.fr> 2.6.0-1.sme |
81 |
- Initial release to sme10 |
82 |
|
83 |
* Fri Jun 7 2013 Daniel Berteaud <daniel@firewall-services.com> 2.4.0-3.sme |
84 |
- Also remove the empty template-begin file in pam.d/proftpd templates [SME: 7660] |
85 |
|
86 |
* Fri Jun 7 2013 Daniel Berteaud <daniel@firewall-services.com> 2.4.0-2.sme |
87 |
- Remove unused pam templates [SME: 7660] |
88 |
|
89 |
* Wed Feb 13 2013 Shad L. Lords <slords@mail.com> 2.4.0-1.sme |
90 |
- Roll new stream for sme9 |
91 |
|
92 |
* Fri Feb 8 2013 Ian Wells <esmith@wellsi.com> 2.2.0-6.sme |
93 |
- Ensure Deny from all is on its own line in 15LimitLOGIN [SME: 7327] |
94 |
|
95 |
* Wed Jan 23 2013 Ian Wells <esmith@wellsi.com> 2.2.0-5.sme |
96 |
- Workaround a deficiency in the proftpd package where it doesn't |
97 |
handle long lines correctly in its configuration file. |
98 |
Fix submitted by Charlie Brady [SME: 6949] |
99 |
|
100 |
* Tue Jan 22 2013 Ian Wells <esmith@wellsi.com> 2.2.0-4.sme |
101 |
- Remove previous change [SME: 7129] |
102 |
|
103 |
* Wed Dec 19 2012 Ian Wells <esmith@wellsi.com> 2.2.0-3.sme |
104 |
- Add VRoot engine to avoid pam log error [SME: 7129] |
105 |
|
106 |
* Wed Sep 22 2010 Daniel Berteaud <daniel@firewall-services.com> 2.2.0-2.sme |
107 |
- Add PersistentPasswd directive to force proftpd to use pam [SME: 6219] |
108 |
|
109 |
* Tue Oct 7 2008 Shad L. Lords <slords@mail.com> 2.2.0-1.sme |
110 |
- Roll new stream to separate sme7/sme8 trees [SME: 4633] |
111 |
|
112 |
* Wed Jan 09 2008 Stephen Noble <support@dungog.net> 1.12.0-11 |
113 |
- ShowSymlinks off [SME: 993] |
114 |
|
115 |
* Wed Oct 31 2007 Gavin Weight <gweight@gmail.com> 1.12.0-10 |
116 |
- Rename DisplayFirstChdir to DisplayChdir. [SME: 3479] |
117 |
|
118 |
* Tue Jun 26 2007 Gavin Weight <gweight@gmail.com> 1.12.0-9 |
119 |
- Create pam.d directory and move ftp/proftpd templates into pam.d. |
120 |
[SME: 2762] |
121 |
|
122 |
* Sun Apr 29 2007 Shad L. Lords <slords@mail.com> |
123 |
- Clean up spec so package can be built by koji/plague |
124 |
|
125 |
* Fri Apr 06 2007 Shad L. Lords <slords@mail.com> 1.12.0-8 |
126 |
- Change perms for ftpusers file. [SME: 2841] |
127 |
|
128 |
* Fri Apr 06 2007 Shad L. Lords <slords@mail.com> 1.12.0-7 |
129 |
- Rename log directory from proftpd to ftp [SME: 2706] |
130 |
|
131 |
* Wed Jan 10 2007 Shad L. Lords <slords@mail.com> 1.12.0-6 |
132 |
- Add global override for chroot path. [SME: 590] |
133 |
|
134 |
* Wed Jan 03 2007 Shad L. Lords <slords@mail.com> 1.12.0-5 |
135 |
- Add fixed chroot patch back in. [SME: 590] |
136 |
|
137 |
* Thu Dec 07 2006 Shad L. Lords <slords@mail.com> |
138 |
- Update to new release naming. No functional changes. |
139 |
- Make Packager generic |
140 |
|
141 |
* Thu Sep 21 2006 Gavin Weight <gweight@gmail.com> 1.12.0-03 |
142 |
- Expand /etc/ftpusers if user is locked/password reset. [SME: 1921] |
143 |
|
144 |
* Tue Apr 18 2006 Gordon Rowell <gordonr@gormand.com.au> 1.12.0-02 |
145 |
- Force permissions on /var/log/proftpd in log/run script [SME: 1267] |
146 |
|
147 |
* Thu Mar 16 2006 Charlie Brady <charlie_brady@mitel.com> 1.12.0-01 |
148 |
- Roll stable stream version. [SME: 1016] |
149 |
|
150 |
* Tue Feb 28 2006 Charlie Brady <charlie_brady@mitel.com> 1.11.0-29 |
151 |
- Back out the chroot patch for now. [SME: 590] |
152 |
|
153 |
* Fri Jan 27 2006 Shad L. Lords <slords@mail.com> 1.11.0-28 |
154 |
- Disable anonymous ibays if globally disabled. |
155 |
|
156 |
* Fri Jan 27 2006 Shad L. Lords <slords@mail.com> 1.11.0-27 |
157 |
- Add chroot for users [SME: 590] |
158 |
- Add ability to disable anonymous access [SME: 591] |
159 |
|
160 |
* Wed Nov 30 2005 Gordon Rowell <gordonr@gormand.com.au> 1.11.0-26 |
161 |
- Bump release number only |
162 |
|
163 |
* Wed Oct 12 2005 Charlie Brady <charlieb@e-smith.com> |
164 |
- [1.11.0-25] |
165 |
- Filter out comments in peers files, to avoid log noise from |
166 |
tcpsvd. Fix name of peers/local templates.metadata file. |
167 |
[SF: 1324719] |
168 |
|
169 |
* Wed Jul 27 2005 Shad Lords <slords@mail.com> |
170 |
- [1.11.0-24] |
171 |
- Move masq fragement from template to db [SF: 1241416] |
172 |
|
173 |
* Tue Jun 14 2005 Charlie Brady <charlieb@e-smith.com> |
174 |
- [1.11.0-23] |
175 |
- Re-expand peers/{0,local} in remoteaccess-update, as permissions |
176 |
may have changed. [SF: 1220510] |
177 |
|
178 |
* Tue Mar 29 2005 Charlie Brady <charlieb@e-smith.com> |
179 |
- [1.11.0-22] |
180 |
- Create empty template-begin template fragments for tcpsvd |
181 |
ACL files. |
182 |
|
183 |
* Tue Mar 29 2005 Charlie Brady <charlieb@e-smith.com> |
184 |
- [1.11.0-21] |
185 |
- Don't use sigusr1 in bootstrap-console-save, as the service is not |
186 |
up, and sigusr1 will be ignored. Instead, call ./control/1 from run |
187 |
script. |
188 |
|
189 |
* Wed Mar 23 2005 Charlie Brady <charlieb@e-smith.com> |
190 |
- [1.11.0-20] |
191 |
- Use sigusr1 in remoteaccess-update. This will generate the network ACL |
192 |
symlinks. 'adjust-services' implicitly starts any service which |
193 |
should be running. |
194 |
|
195 |
* Wed Mar 16 2005 Charlie Brady <charlieb@e-smith.com> |
196 |
- [1.11.0-19] |
197 |
- Use tcpsvd in place of tcpserver. Manage network access lists |
198 |
using new esmith::tcpsvd library. Update e-smith-lib depenency. |
199 |
- Add symlink /var/service/ftp -> proftpd. |
200 |
- Add zero length template-begin files to peers/{0,local}, to avoid |
201 |
log noise from comment lines. |
202 |
|
203 |
* Wed Mar 16 2005 Charlie Brady <charlieb@e-smith.com> |
204 |
- [1.11.0-18] |
205 |
- Add missing templates for peers/{0,local}. |
206 |
|
207 |
* Wed Mar 16 2005 Charlie Brady <charlieb@e-smith.com> |
208 |
- [1.11.0-17] |
209 |
- Optimise template expansions versus events - only expand files |
210 |
which may have changed. |
211 |
|
212 |
* Tue Mar 15 2005 Charlie Brady <charlieb@e-smith.com> |
213 |
- [1.11.0-16] |
214 |
- Fix service name in adjust-services symlink. [MN00065576] |
215 |
|
216 |
* Sun Mar 13 2005 Charlie Brady <charlieb@e-smith.com> |
217 |
- [1.11.0-15] |
218 |
- Replace proftp-startstop action with call to 'adjust-services'. |
219 |
Update e-smith-lib version dependency. [MN00065576] |
220 |
- Use generic_template_expand action in place of proftpd-conf. |
221 |
[MN00064130] |
222 |
- Re-add missing restart patch to config. |
223 |
|
224 |
* Thu Mar 10 2005 Charlie Brady <charlieb@e-smith.com> |
225 |
- [1.11.0-14] |
226 |
- Allow restarts of retreive and store. Patch from Shad. [MN00073802] |
227 |
- Avoid duplicate Primary section in config. Patch from Shad. [MN00073804] |
228 |
|
229 |
* Wed Feb 9 2005 Charlie Brady <charlieb@e-smith.com> |
230 |
- [1.11.0-13] |
231 |
- Remove migrate fragment for very old FTPServerMode property. [MN00065931] |
232 |
- Clean BuildRequires. [charlieb MN00043055] |
233 |
|
234 |
* Fri Sep 3 2004 Michael Soulier <msoulier@e-smith.com> |
235 |
- [1.11.0-12] |
236 |
- Backout of user-create/delete addition. Wrong way to go. |
237 |
[msoulier MN00035806] |
238 |
|
239 |
* Fri Sep 3 2004 Michael Soulier <msoulier@e-smith.com> |
240 |
- [1.11.0-11] |
241 |
- Added proftpd-conf and startstop to user-create/delete. |
242 |
[msoulier MN00035806] |
243 |
|
244 |
* Wed Aug 4 2004 Michael Soulier <msoulier@e-smith.com> |
245 |
- [1.11.0-10] |
246 |
- Updated startstop to use esmith::util::serviceControl. [msoulier MN00031530] |
247 |
|
248 |
* Mon Sep 22 2003 Michael Soulier <msoulier@e-smith.com> |
249 |
- [1.11.0-09] |
250 |
- Fixed network spec format. CIDR format expected. [msoulier 10069] |
251 |
|
252 |
* Fri Sep 5 2003 Charlie Brady <charlieb@e-smith.com> |
253 |
- [1.11.0-08] |
254 |
- Fix c&p error in tcprules template fragment. [charlieb 9547] |
255 |
|
256 |
* Fri Sep 5 2003 Charlie Brady <charlieb@e-smith.com> |
257 |
- [1.11.0-07] |
258 |
- Add requires for correct version of e-smith-base. [charlieb 9547] |
259 |
|
260 |
* Fri Sep 5 2003 Charlie Brady <charlieb@e-smith.com> |
261 |
- [1.11.0-06] |
262 |
- Remove hosts.allow and xinetd.conf template fragments. |
263 |
[charlieb 9547] |
264 |
|
265 |
* Fri Sep 5 2003 Charlie Brady <charlieb@e-smith.com> |
266 |
- [1.11.0-05] |
267 |
- Fix a couple of run time errors. [charlieb 9547] |
268 |
|
269 |
* Fri Sep 5 2003 Charlie Brady <charlieb@e-smith.com> |
270 |
- [1.11.0-04] |
271 |
- Service directory and rc7.d symlinks must be called ftp, since that is |
272 |
the service record name. Use /etc/rc.d/init.d/supervise directory, to |
273 |
avoid potential clash with stock init script. [charlieb 9547,9930] |
274 |
|
275 |
* Fri Sep 5 2003 Charlie Brady <charlieb@e-smith.com> |
276 |
- [1.11.0-03] |
277 |
- Use new createlinks library to reduce code. [charlieb 9809] |
278 |
|
279 |
* Fri Sep 5 2003 Charlie Brady <charlieb@e-smith.com> |
280 |
- [1.11.0-02] |
281 |
- Run proftpd under supervise and tcpserver. [charlieb 9547] |
282 |
|
283 |
* Fri Sep 5 2003 Charlie Brady <charlieb@e-smith.com> |
284 |
- [1.11.0-01] |
285 |
- Changing version to development stream number - 1.11.0 |
286 |
|
287 |
* Thu Jun 26 2003 Charlie Brady <charlieb@e-smith.com> |
288 |
- [1.10.0-01] |
289 |
- Changing version to stable stream number - 1.10.0 |
290 |
|
291 |
* Tue Apr 29 2003 Gordon Rowell <gordonr@e-smith.com> |
292 |
- [1.9.0-14] |
293 |
- Modify xinetd.conf/30ftp to properly handle enabled/disabled/missing cases [gordonr 8609] |
294 |
|
295 |
* Mon Apr 21 2003 Mark Knox <markk@e-smith.com> |
296 |
- [1.9.0-13] |
297 |
- Force 0640 on proftpd.conf [markk 8408] |
298 |
|
299 |
* Tue Apr 8 2003 Charlie Brady <charlieb@e-smith.com> |
300 |
- [1.9.0-12] |
301 |
- Fix typo in path for anonymous login. [charlieb 5652] |
302 |
- Remove selective binding to interfaces for now - it requires |
303 |
a full xinetd restart, which we don't do in remoteaccess-update. |
304 |
[charlieb 951] |
305 |
- Change ScoreboardPath to ScoreboardFile - the former is deprecated |
306 |
(with extreme prejudice) in current proftpd. [charlieb 5411] |
307 |
|
308 |
* Tue Apr 8 2003 Charlie Brady <charlieb@e-smith.com> |
309 |
- [1.9.0-11] |
310 |
- Add ScoreboardPath directive to config file templates [charlieb 5411] |
311 |
|
312 |
* Tue Mar 18 2003 Charlie Brady <charlieb@e-smith.com> |
313 |
- [1.9.0-10] |
314 |
- Add config migration fragment to migrate old ftp access properties |
315 |
to new. [charlieb 7683] |
316 |
- Change Copyright header to License. [charlieb] |
317 |
|
318 |
* Thu Mar 13 2003 Charlie Brady <charlieb@e-smith.com> |
319 |
- [1.9.0-09] |
320 |
- Use LoginAccess property to control ftp login access - this replaces the |
321 |
"acccess" semantics of 5.5 and earlier. [charlieb 7466] |
322 |
- Add back the special case for Primary i-bay, as it's needed for anonymous |
323 |
ftp. [charlieb 5652] |
324 |
|
325 |
* Fri Mar 7 2003 Charlie Brady <charlieb@e-smith.com> |
326 |
- [1.9.0-08] |
327 |
- esmith::utils::processTemplate => esmith::templates::processTemplate. |
328 |
[charlieb 7466] |
329 |
|
330 |
* Thu Mar 6 2003 Charlie Brady <charlieb@e-smith.com> |
331 |
- [1.9.0-07] |
332 |
- Escape braces in logrotate.d template fragment [charlieb 6438] |
333 |
|
334 |
* Thu Mar 6 2003 Charlie Brady <charlieb@e-smith.com> |
335 |
- [1.9.0-06] |
336 |
- Fix missed accessLimits => access change in ftp masq fragment [charlieb 7466] |
337 |
|
338 |
* Thu Mar 6 2003 Charlie Brady <charlieb@e-smith.com> |
339 |
- [1.9.0-05] |
340 |
- Fix migrate fragment problem. [charlieb 1507] |
341 |
- Remove legacy code from proftpd config templates, and simplify. [charlieb 7466] |
342 |
|
343 |
* Mon Mar 3 2003 Charlie Brady <charlieb@e-smith.com> |
344 |
- [1.9.0-04] |
345 |
- Template /etc/logrotate.d/proftpd and remove postrotate sigHUP. [charlieb 6438] |
346 |
- Add default config db fragments to set type/access/status [charlieb 1507] |
347 |
- Replace migrate script in post-upgrade event with template fragment in |
348 |
db/configuration/migrate directory. [charlieb 1507] |
349 |
- Use "access" rather than "accessLimits" to control access to ftp from |
350 |
outside LAN. [charlieb 7466] |
351 |
- Bind to local interface only if access is private. [charlieb 951] |
352 |
|
353 |
* Fri Feb 28 2003 Charlie Brady <charlieb@e-smith.com> |
354 |
- [1.9.0-03] |
355 |
- Re-do hosts.allow template to use esmith::ConfigDB::hosts_allow_spec. |
356 |
Add dependency on up-to-date e-smith-lib. |
357 |
TODO: fix accessLimits v access issue. [charlieb 5650] |
358 |
|
359 |
* Wed Jan 29 2003 Charlie Brady <charlieb@e-smith.com> |
360 |
- [1.9.0-02] |
361 |
- Remove special cases for primary in proftpd.conf - primary |
362 |
is now a pre-defined i-bay. [charlieb 5652] |
363 |
|
364 |
* Wed Jan 29 2003 Charlie Brady <charlieb@e-smith.com> |
365 |
- [1.9.0-01] |
366 |
- Rolling development stream to 1.9.0 |
367 |
|
368 |
* Fri Oct 11 2002 Charlie Brady <charlieb@e-smith.com> |
369 |
- [1.8.0-01] |
370 |
- Roll to maintained version number to 1.8.0 |
371 |
|
372 |
* Wed Oct 2 2002 Mark Knox <markk@e-smith.com> |
373 |
- [1.7.3-05] |
374 |
- Removed stray braces in get_all_by_prop [markk 3786] |
375 |
|
376 |
* Mon Sep 23 2002 Mark Knox <markk@e-smith.com> |
377 |
- [1.7.3-04] |
378 |
- Fix proftpd.conf template breakage [markk 3786] |
379 |
|
380 |
* Mon Sep 23 2002 Charlie Brady <charlieb@e-smith.com> |
381 |
- [1.7.3-03] |
382 |
- Fix hosts.allow template breakage [charlieb 3786] |
383 |
|
384 |
* Thu Sep 19 2002 Charlie Brady <charlieb@e-smith.com> |
385 |
- [1.7.3-02] |
386 |
- Fix i-bay section of proftpd.conf [charlieb 4950] |
387 |
|
388 |
* Thu Sep 12 2002 Charlie Brady <charlieb@e-smith.com> |
389 |
- [1.7.3-01] |
390 |
- Preparing for rebuild as-source, to get rid of some patch detritus - see |
391 |
bug 4825. [charlieb 4793] |
392 |
|
393 |
* Thu Sep 12 2002 Charlie Brady <charlieb@e-smith.com> |
394 |
- [1.7.2-05] |
395 |
- Add missing 10LimitSiteChmod template fragment [charlieb 4793] |
396 |
|
397 |
* Thu Sep 12 2002 Charlie Brady <charlieb@e-smith.com> |
398 |
- [1.7.2-04] |
399 |
- Replace deprecate AllowChmod with <Limit SITE_CHMOD>, which requires some |
400 |
fragment shuffling. Remove unnecessary template-{begin,end}, move |
401 |
10localAccess to 00localAccess. [charlieb 4793] |
402 |
|
403 |
* Wed Sep 11 2002 Charlie Brady <charlieb@e-smith.com> |
404 |
- [1.7.2-03] |
405 |
- Fix esmith::Networks => esmith::NetworksDB snafu in /etc/proftpd.conf |
406 |
template. [charlieb 3786] |
407 |
|
408 |
* Tue Sep 10 2002 Mark Knox <markk@e-smith.com> |
409 |
- [1.7.2-02] |
410 |
- Change use of allow_tcp_in() function to allow dynamic reconfig. |
411 |
[charlieb 4501] |
412 |
- Remove deprecated split on pipe [markk 3786] |
413 |
|
414 |
* Thu Aug 8 2002 Charlie Brady <charlieb@e-smith.com> |
415 |
- [1.7.2-01] |
416 |
- Remove 46AllowFTPActive masq template fragment, allow port 21 inbound |
417 |
access and allow netfilter connection tracking to do the rest of the |
418 |
job of FTP access control. [charlieb 4499] |
419 |
|
420 |
* Wed Jul 17 2002 Charlie Brady <charlieb@e-smith.com> |
421 |
- [1.7.1-01] |
422 |
- Change masq script fragment to use iptables. [charlieb 1268] |
423 |
|
424 |
* Wed Jun 5 2002 Charlie Brady <charlieb@e-smith.com> |
425 |
- [1.7.0-01] |
426 |
- Changing version to development stream number - 1.7.0 |
427 |
|
428 |
* Fri May 31 2002 Charlie Brady <charlieb@e-smith.com> |
429 |
- [1.6.0-01] |
430 |
- Changing version to maintained stream number to 1.6.0 |
431 |
|
432 |
* Thu May 23 2002 Gordon Rowell <gordonr@e-smith.com> |
433 |
- [1.5.5-01] |
434 |
- RPM rebuild forced by cvsroot2rpm |
435 |
|
436 |
* Fri May 3 2002 Charlie Brady <charlieb@e-smith.com> |
437 |
- [1.5.4-01] |
438 |
- Disable reverse DNS and ident lookups [charlieb 339] |
439 |
|
440 |
* Fri May 3 2002 Charlie Brady <charlieb@e-smith.com> |
441 |
- [1.5.3-01] |
442 |
- Once more with feeling! (I missed one). |
443 |
|
444 |
* Fri May 3 2002 Charlie Brady <charlieb@e-smith.com> |
445 |
- [1.5.2-01] |
446 |
- Fix createlinks problems with missing directories and $event scope. |
447 |
|
448 |
* Fri May 3 2002 Charlie Brady <charlieb@e-smith.com> |
449 |
- [1.5.1-01] |
450 |
- Test build to verify CVS conversion. |
451 |
|
452 |
* Fri May 3 2002 Charlie Brady <charlieb@e-smith.com> |
453 |
- [1.5.0-01] |
454 |
- rollRPM: Rolled version number to 1.5.0-01. Includes patches up to 1.4.0-08. |
455 |
|
456 |
* Wed Dec 05 2001 Jason Miller <jmiller@e-smith.com> |
457 |
- [1.4.0-08] |
458 |
- Fix 45AllowFTP masq template to handle case where status=disabled |
459 |
|
460 |
* Fri Nov 16 2001 Charlie Brady <charlieb@e-smith.com> |
461 |
- [1.4.0-07] |
462 |
- Be sure to regenerate /etc/ftpusers during password-modify event, to allow |
463 |
access to password protected i-bays. |
464 |
- Remove proftpd-conf actions from post-install and post-upgrade events - |
465 |
bootstrap-console-save is sufficient. |
466 |
|
467 |
* Thu Nov 08 2001 Charlie Brady <charlieb@e-smith.com> |
468 |
- [1.4.0-06] |
469 |
- Fix xinetd.conf template fragment so that status=disabled is honoured. |
470 |
|
471 |
* Mon Oct 22 2001 Charlie Brady <charlieb@e-smith.com> |
472 |
- [1.4.0-05] |
473 |
- Add missing bootstrap-console-save symlink. |
474 |
|
475 |
* Tue Aug 21 2001 Gordon Rowell <gordonr@e-smith.com> |
476 |
- [1.4.0-04] |
477 |
- Fixed e-smith-base dependency |
478 |
|
479 |
* Tue Aug 21 2001 Gordon Rowell <gordonr@e-smith.com> |
480 |
- [1.4.0-03] |
481 |
- Removed "public" from /etc/ftpusers |
482 |
- Removed post-restore event |
483 |
- Added Vendor tag |
484 |
|
485 |
* Fri Aug 17 2001 gordonr |
486 |
- [1.4.0-02] |
487 |
- Autorebuild by rebuildRPM |
488 |
|
489 |
* Wed Aug 8 2001 Charlie Brady <charlieb@e-smith.com> |
490 |
- [1.4.0-01] |
491 |
- Rolled version number to 1.4.0-01. Includes patches upto 1.3.0-03. |
492 |
|
493 |
* Fri Jul 6 2001 Peter Samuel <peters@e-smith.com> |
494 |
- [1.3.0-03] |
495 |
- Changed license to GPL |
496 |
|
497 |
* Fri Jun 29 2001 Gordon Rowell <gordonr@e-smith.com> |
498 |
- [1.3.0-02] |
499 |
- Make use of /etc/e-smith/pam/accounts.deny as template for /etc/ftpusers |
500 |
|
501 |
* Fri Jun 29 2001 Gordon Rowell <gordonr@e-smith.com> |
502 |
- [1.3.0-01] |
503 |
- Rolled version number to 1.3.0-01. Includes patches upto 1.2.0-07. |
504 |
|
505 |
* Tue Mar 27 2001 Charlie Brady <charlieb@e-smith.com> |
506 |
- [1.2.0-07] |
507 |
- Avoid proftp DoS attack with wildcards |
508 |
- Allow FTP ports, with optional "ForcePassive|yes" property, defaulting to no |
509 |
|
510 |
* Thu Feb 8 2001 Adrian Chung <adrianc@e-smith.com> |
511 |
- [1.2.0-06] |
512 |
- Rolling release number for GPG signing. |
513 |
|
514 |
* Tue Jan 30 2001 Jason Miller <jmiller@e-smith.com> |
515 |
- [1.2.0-05] |
516 |
- Changed 'use smith::db' to 'use esmith::db'. |
517 |
|
518 |
* Tue Jan 30 2001 Charlie Brady <charlieb@e-smith.com> |
519 |
- [1.2.0-04] |
520 |
- And "use esmith::db" is reuqired. |
521 |
|
522 |
* Mon Jan 29 2001 Charlie Brady <charlieb@e-smith.com> |
523 |
- [1.2.0-03] |
524 |
- Fixed syntax error in previous fix :-) |
525 |
|
526 |
* Fri Jan 26 2001 Charlie Brady <charlieb@e-smith.com> |
527 |
- [1.2.0-02] |
528 |
- Fix reference to legacy config variable in proftpd.conf fragment |
529 |
|
530 |
* Fri Jan 26 2001 Peter Samuel <peters@e-smith.com> |
531 |
- [1.2.0-01] |
532 |
- Rolled version number to 1.2.0-01. Includes patches upto 1.1.0-13. |
533 |
|
534 |
* Thu Jan 25 2001 Adrian Chung <adrianc@e-smith.com> |
535 |
- [1.1.0-13] |
536 |
- Added default for accessLimits in proftpd-conf |
537 |
|
538 |
* Wed Jan 24 2001 Charlie Brady <charlieb@e-smith.com> |
539 |
- [1.1.0-12] |
540 |
- Added AllowFTP fragment for /etc/rc.d/init.d/masq. |
541 |
- Remove %post action |
542 |
|
543 |
* Thu Jan 18 2001 Adrian Chung <adrianc@e-smith.com> |
544 |
- [1.1.0-11] |
545 |
- FTP now uses a new setting FTP access limits in remote access |
546 |
which completely governs access control to the service. |
547 |
- The old FTP setting governs only user logins. |
548 |
- updated xinetd.conf/ftp fragment to use new value |
549 |
|
550 |
* Wed Jan 17 2001 Jason Miller <jmiller@e-smith.com> |
551 |
- removed %postun deletion of ftp line in configuration |
552 |
to comply with the sillyness of rpm upgrade |
553 |
|
554 |
* Fri Jan 12 2001 Gordon Rowell <gordonr@e-smith.com> |
555 |
- ftpd != ftp :-( |
556 |
|
557 |
* Fri Jan 12 2001 Gordon Rowell <gordonr@e-smith.com> |
558 |
- Migrate FTPServerMode variable |
559 |
|
560 |
* Sat Jan 6 2001 Charlie Brady <charlieb@e-smith.com> |
561 |
- [1.1.0-7] |
562 |
- Only run %post and %postun scripts if in runlevel 7 |
563 |
|
564 |
* Fri Jan 5 2001 Adrian Chung <adrianc@e-smith.com> |
565 |
- [1.1.0-6] |
566 |
- add selective bind back in. |
567 |
|
568 |
* Fri Jan 5 2001 Adrian Chung <adrianc@e-smith.com> |
569 |
- [1.1.0-5] |
570 |
- backed out bind local interface code, needs to be rethought |
571 |
to allow access to localhost |
572 |
|
573 |
* Thu Jan 4 2001 Adrian Chung <adrianc@e-smith.com> |
574 |
- [1.1.0-4] |
575 |
- changed 30ftp to only expand if ftp service is enabled. |
576 |
- if ftp access is set to private, only bind to LocalIP in |
577 |
xinetd.conf |
578 |
|
579 |
* Sun Dec 17 2000 Charlie Brady <charlieb@e-smith.com> |
580 |
- [1.1.0-3] |
581 |
- Delete /etc/rc.d/init.d/masq template fragment. |
582 |
|
583 |
* Mon Dec 4 2000 Adrian Chung <adrianc@e-smith.com> |
584 |
- Added link for post-install. |
585 |
|
586 |
* Fri Dec 1 2000 Adrian Chung <adrianc@e-smith.com> |
587 |
- initial release |
588 |
|
589 |
%description |
590 |
Configuration files and templates for the ProFTPd ftp server. |
591 |
|
592 |
%prep |
593 |
%setup |
594 |
%patch0 -p1 |
595 |
%patch1 -p1 |
596 |
%patch2 -p1 |
597 |
%patch3 -p1 |
598 |
%patch4 -p1 |
599 |
%patch5 -p1 |
600 |
%patch6 -p1 |
601 |
%patch7 -p1 |
602 |
%patch8 -p1 |
603 |
%patch9 -p1 |
604 |
|
605 |
# Remove the empty template-begin and the directory |
606 |
rm -rf root/etc/e-smith/templates/etc/pam.d/proftpd/ |
607 |
|
608 |
%build |
609 |
perl createlinks |
610 |
|
611 |
%install |
612 |
rm -rf $RPM_BUILD_ROOT |
613 |
(cd root ; find . -depth -print | cpio -dump $RPM_BUILD_ROOT) |
614 |
rm -f %{name}-%{version}-%{release}-filelist |
615 |
/sbin/e-smith/genfilelist $RPM_BUILD_ROOT \ |
616 |
--dir /var/service/proftpd 'attr(01755,root,root)' \ |
617 |
--file /var/service/proftpd/down 'attr(0644,root,root)' \ |
618 |
--file /var/service/proftpd/run 'attr(0755,root,root)' \ |
619 |
--file /var/service/proftpd/control/1 'attr(0755,root,root)' \ |
620 |
--dir /var/service/proftpd/log 'attr(0755,root,root)' \ |
621 |
--dir /var/service/proftpd/log/supervise 'attr(0700,root,root)' \ |
622 |
--dir /var/service/proftpd/supervise 'attr(0700,root,root)' \ |
623 |
--file /var/service/proftpd/log/run 'attr(0755,root,root)' \ |
624 |
--dir /var/log/ftp 'attr(2750,smelog,smelog)' \ |
625 |
> %{name}-%{version}-%{release}-filelist |
626 |
echo "%doc COPYING" >> %{name}-%{version}-%{release}-filelist |
627 |
|
628 |
%clean |
629 |
rm -rf $RPM_BUILD_ROOT |
630 |
|
631 |
%pre |
632 |
/sbin/e-smith/create-system-user smelog 1002 \ |
633 |
'sme log user' /var/log/smelog /bin/false |
634 |
|
635 |
%files -f %{name}-%{version}-%{release}-filelist |
636 |
%defattr(-,root,root) |