| 1 |
unnilennium |
1.1 |
Name: rssh |
| 2 |
|
|
Version: 2.3.4 |
| 3 |
|
|
Release: 1%{?dist} |
| 4 |
|
|
Summary: Restricted shell for use with OpenSSH, allowing only scp and/or sftp |
| 5 |
|
|
Group: Applications/Internet |
| 6 |
|
|
License: BSD |
| 7 |
|
|
URL: http://www.pizzashack.org/rssh/ |
| 8 |
|
|
Source0: http://downloads.sourceforge.net/%{name}/%{name}-%{version}.tar.gz |
| 9 |
|
|
Source1: http://downloads.sourceforge.net/%{name}/%{name}-%{version}.tar.gz.sig |
| 10 |
|
|
Patch0: rssh-2.3.4-makefile.patch |
| 11 |
|
|
Patch1: rssh-2.3.4-rsync-protocol.patch |
| 12 |
|
|
Patch2: rssh-2.3.4-command-line-error.patch |
| 13 |
|
|
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n) |
| 14 |
|
|
|
| 15 |
|
|
BuildRequires: openssh-server, openssh-clients |
| 16 |
|
|
BuildRequires: cvs rsync rdist |
| 17 |
|
|
Requires: openssh-server |
| 18 |
|
|
Requires(pre): shadow-utils |
| 19 |
|
|
|
| 20 |
|
|
%description |
| 21 |
|
|
rssh is a restricted shell for use with OpenSSH, allowing only scp |
| 22 |
|
|
and/or sftp. For example, if you have a server which you only want |
| 23 |
|
|
to allow users to copy files off of via scp, without providing shell |
| 24 |
|
|
access, you can use rssh to do that. It is a alternative to scponly. |
| 25 |
|
|
|
| 26 |
|
|
|
| 27 |
|
|
%prep |
| 28 |
|
|
%setup -q |
| 29 |
|
|
%patch0 -p1 -b .makefile |
| 30 |
|
|
%patch1 -p1 -b .rsync3 |
| 31 |
|
|
%patch2 -p1 -b .cmdline-error |
| 32 |
|
|
|
| 33 |
|
|
chmod 644 conf_convert.sh |
| 34 |
|
|
chmod 644 mkchroot.sh |
| 35 |
|
|
|
| 36 |
|
|
|
| 37 |
|
|
%build |
| 38 |
|
|
%configure |
| 39 |
|
|
make %{?_smp_mflags} |
| 40 |
|
|
|
| 41 |
|
|
|
| 42 |
|
|
%install |
| 43 |
|
|
rm -rf %{buildroot} |
| 44 |
|
|
make install INSTALL="%{__install} -p" DESTDIR=%{buildroot} |
| 45 |
|
|
# since rssh 2.3.4, default config is installed as rssh.conf.default, |
| 46 |
|
|
# rename it for packaging in rpm |
| 47 |
|
|
mv %{buildroot}/%{_sysconfdir}/rssh.conf{.default,} |
| 48 |
|
|
|
| 49 |
|
|
%clean |
| 50 |
|
|
rm -rf %{buildroot} |
| 51 |
|
|
|
| 52 |
|
|
%pre |
| 53 |
|
|
getent group rsshusers >/dev/null || groupadd -r rsshusers |
| 54 |
|
|
exit 0 |
| 55 |
|
|
|
| 56 |
|
|
|
| 57 |
|
|
%files |
| 58 |
|
|
%defattr(-, root, root, -) |
| 59 |
|
|
%doc AUTHORS ChangeLog CHROOT COPYING NEWS README SECURITY TODO |
| 60 |
|
|
%doc conf_convert.sh mkchroot.sh |
| 61 |
|
|
%doc %{_mandir}/man1/rssh.1* |
| 62 |
|
|
%doc %{_mandir}/man5/rssh.conf.5* |
| 63 |
|
|
%config(noreplace) %{_sysconfdir}/rssh.conf |
| 64 |
|
|
%attr(750, root, rsshusers) %{_bindir}/rssh |
| 65 |
|
|
%attr(4750, root, rsshusers) %{_libexecdir}/rssh_chroot_helper |
| 66 |
|
|
|
| 67 |
|
|
|
| 68 |
|
|
%changelog |
| 69 |
|
|
* Mon Dec 10 2012 Tomas Hoger <thoger@fedoraproject.org> - 2.3.4-1 |
| 70 |
|
|
- Update to upstream version 2.3.4, which fixes CVE-2012-3478 and CVE-2012-2252 |
| 71 |
|
|
- Updated rsync-protocol.patch to fix CVE-2012-2251, and to apply on top of the |
| 72 |
|
|
CVE-2012-3478 and CVE-2012-2252 fixes. |
| 73 |
|
|
- Updated makefile.patch to preserve RPM CFLAGS. |
| 74 |
|
|
- Added command-line-error.patch (from Debian), correcting error message |
| 75 |
|
|
generated when insecure command line option is used (CVE-2012-3478 fix |
| 76 |
|
|
regression). |
| 77 |
|
|
|
| 78 |
|
|
* Sat Jul 21 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.3.3-4 |
| 79 |
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild |
| 80 |
|
|
|
| 81 |
|
|
* Mon Feb 6 2012 Daniel Drake <dsd@laptop.org> - 2.3.3-3 |
| 82 |
|
|
- Add patch for rsync3 compat (#485946) |
| 83 |
|
|
|
| 84 |
|
|
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.3.3-2 |
| 85 |
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild |
| 86 |
|
|
|
| 87 |
|
|
* Thu May 19 2011 Rahul Sundaram <sundaram@fedoraproject.org> - 2.3.3-1 |
| 88 |
|
|
- Upstream security fix release. Resolves rhbz#705904 |
| 89 |
|
|
|
| 90 |
|
|
* Wed Feb 09 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.3.2-8 |
| 91 |
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild |
| 92 |
|
|
|
| 93 |
|
|
* Sun Jul 26 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.3.2-7 |
| 94 |
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild |
| 95 |
|
|
|
| 96 |
|
|
* Wed Feb 25 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.3.2-6 |
| 97 |
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild |
| 98 |
|
|
|
| 99 |
|
|
* Thu Oct 30 2008 Ian Weller <ianweller@gmail.com> - 2.3.2-5 |
| 100 |
|
|
- Remove pre and post scripts |
| 101 |
|
|
- https://bugzilla.redhat.com/show_bug.cgi?id=456182#c17 |
| 102 |
|
|
|
| 103 |
|
|
* Mon Aug 11 2008 Rahul Sundaram <sundaram@fedoraproject.org> - 2.3.2-4 |
| 104 |
|
|
- Fix review issues and apply patch |
| 105 |
|
|
|
| 106 |
|
|
* Thu Aug 07 2008 Rahul Sundaram <sundaram@fedoraproject.org> - 2.3.2-3 |
| 107 |
|
|
- Fix postun to remove rssh shell |
| 108 |
|
|
|
| 109 |
|
|
* Wed Jul 30 2008 Rahul Sundaram <sundaram@fedoraproject.org> - 2.3.2-2 |
| 110 |
|
|
- Fix BR and defattr. Added a group and shell |
| 111 |
|
|
|
| 112 |
|
|
* Tue Jul 22 2008 Rahul Sundaram <sundaram@fedoraproject.org> - 2.3.2-1 |
| 113 |
|
|
- initial spec |
| 114 |
|
|
|
Parent Directory
| 
Revision Log
| 
Revision Graph
