Context Navigation

source: postlfs/security/ssh-askpass.xml@ 2c7e9c4f

Visit:

ken/TL2024 lazarus trunk

Last change on this file since 2c7e9c4f was 5461893, checked in by Bruce Dubbs <bdubbs@…>, 5 months ago
Tag security chapter and qemu
Property mode set to `100644`
File size: 5.0 KB

Rev	Line
[ab4fdfc]	1	<?xml version="1.0" encoding="UTF-8"?>
[7a5b2e77]	2	<!DOCTYPE sect1 PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
	3	"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
	4	<!ENTITY % general-entities SYSTEM "../../general.ent">
	5	%general-entities;
	6
	7	<!ENTITY ssh-askpass-download-http
[c6b192c]	8	"https://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-&ssh-askpass-version;.tar.gz">
[28d1edf]	9	<!ENTITY ssh-askpass-download-ftp " ">
[bed8f3ef]	10	<!ENTITY ssh-askpass-md5sum "&openssh-md5sum;">
[41557a5]	11	<!ENTITY ssh-askpass-size "1.8 MB">
[075cb1e]	12	<!ENTITY ssh-askpass-buildsize "10 MB">
[953fa69]	13	<!ENTITY ssh-askpass-time "less than 0.1 SBU">
[7a5b2e77]	14	]>
	15
	16	<sect1 id="ssh-askpass" xreflabel="ssh-askpass-&ssh-askpass-version;">
[41f3ac3]	17	<?dbhtml filename="ssh-askpass.html"?>
[7a5b2e77]	18
	19
	20	<title>ssh-askpass-&ssh-askpass-version;</title>
	21
	22	<indexterm zone="ssh-askpass">
	23	<primary sortas="a-ssh-askpass">ssh-askpass</primary>
	24	</indexterm>
	25
	26	<sect2 role="package">
	27	<title>Introduction to ssh-askpass</title>
	28
	29	<para>
	30	The <application>ssh-askpass</application> is a generic executable name for
	31	many packages, with similar names, that provide a interactive X service to
	32	grab password for packages requiring administrative privileges to be run.
	33	It prompts the user with a window box where the necessary password can be
	34	inserted. Here, we choose Damien Miller's package distributed in the
	35	<application>OpenSSH</application> tarball.</para>
	36
[5461893]	37	&lfs121_checked;
[7a5b2e77]	38
	39	<bridgehead renderas="sect3">Package Information</bridgehead>
	40	<itemizedlist spacing="compact">
	41	<listitem>
	42	<para>
	43	Download (HTTP): <ulink url="&ssh-askpass-download-http;"/>
	44	</para>
	45	</listitem>
	46	<listitem>
	47	<para>
	48	Download (FTP): <ulink url="&ssh-askpass-download-ftp;"/>
	49	</para>
	50	</listitem>
	51	<listitem>
	52	<para>
	53	Download MD5 sum: &ssh-askpass-md5sum;
	54	</para>
	55	</listitem>
	56	<listitem>
	57	<para>
	58	Download size: &ssh-askpass-size;
	59	</para>
	60	</listitem>
	61	<listitem>
	62	<para>
	63	Estimated disk space required: &ssh-askpass-buildsize;
	64	</para>
	65	</listitem>
	66	<listitem>
	67	<para>
	68	Estimated build time: &ssh-askpass-time;
	69	</para>
	70	</listitem>
	71	</itemizedlist>
	72
	73	<bridgehead renderas="sect3">ssh-askpass Dependencies</bridgehead>
	74
	75	<bridgehead renderas="sect4">Required</bridgehead>
	76	<para role="required">
[579c512]	77	<xref linkend="gtk3"/>,
[96e9478]	78	<xref role="runtime" linkend="sudo"/> (runtime),
	79	<xref linkend="xorg7-lib"/>, and
	80	<xref role="runtime" linkend="x-window-system"/> (runtime)
	81	</para>
[7a5b2e77]	82
	83	</sect2>
	84
	85	<sect2 role="installation">
	86	<title>Installation of ssh-askpass</title>
	87
	88	<para>
	89	Install <application>ssh-askpass</application> by running the following
	90	commands:
	91	</para>
	92
	93	<screen><userinput>cd contrib &&
[579c512]	94	make gnome-ssh-askpass3</userinput></screen>
[7a5b2e77]	95
	96	<para>
	97	Now, as the <systemitem class="username">root</systemitem> user:
	98	</para>
	99
[8394f7d1]	100	<screen role="root"><userinput>install -v -d -m755 /usr/libexec/openssh/contrib &&
[579c512]	101	install -v -m755 gnome-ssh-askpass3 /usr/libexec/openssh/contrib &&
	102	ln -sv -f contrib/gnome-ssh-askpass3 /usr/libexec/openssh/ssh-askpass</userinput></screen>
[7a5b2e77]	103
	104	<para>
[b9d56ad4]	105	The use of /usr/libexec/openssh/contrib and a symlink is justified by the
[7a5b2e77]	106	eventual necessity of a different program for that service.
	107	</para>
	108
	109	</sect2>
	110
	111	<sect2 role="configuration">
	112	<title>Configuring ssh-askpass</title>
	113
	114	<sect3 id="ssh-askpass-config">
[9d92be58]	115	<title>Configuration Information</title>
[7a5b2e77]	116
	117	<para>
	118	As the <systemitem class="username">root</systemitem> user, configure
	119	<xref linkend="sudo"/> to use <application>ssh-askpass</application>:
	120	</para>
	121
	122	<screen role="root"><userinput>cat >> /etc/sudo.conf << "EOF" &&
	123	<literal># Path to askpass helper program
[b9d56ad4]	124	Path askpass /usr/libexec/openssh/ssh-askpass</literal>
[7a5b2e77]	125	EOF
	126	chmod -v 0644 /etc/sudo.conf</userinput></screen>
	127
	128	<para>
[9d92be58]	129	If a given graphical <application> requires administrative
	130	privileges, use <command>sudo -A <application></command> from an
	131	x-terminal, from a Window Manager menu and/or replace
	132	"Exec=<application> ..." by
	133	"Exec=sudo -A <application> ..." in the
[6c6990c]	134	<application>.desktop file.
	135	</para>
[7a5b2e77]	136
	137	</sect3>
	138
	139	</sect2>
	140
	141	<sect2 role="content">
	142	<title>Contents</title>
	143
	144	<segmentedlist>
	145	<segtitle>Installed Programs</segtitle>
[9d92be58]	146	<segtitle>Installed Library</segtitle>
	147	<segtitle>Installed Directory</segtitle>
[7a5b2e77]	148
	149	<seglistitem>
	150	<seg>
[54d58907]	151	gnome-ssh-askpass3, ssh-askpass (symlink to
[579c512]	152	<filename>gnome-ssh-askpass3</filename>)
[7a5b2e77]	153	</seg>
	154	<seg>
	155	None
	156	</seg>
	157	<seg>
[b9d56ad4]	158	/usr/libexec/openssh/contrib
[7a5b2e77]	159	</seg>
	160	</seglistitem>
	161	</segmentedlist>
	162
	163	</sect2>
	164
	165	</sect1>

Note: See TracBrowser for help on using the repository browser.

Download in other formats: