Changeset 1ae11c9

Timestamp:

03/26/2008 05:18:33 PM (16 years ago)

Author:

Randy McMurchy <randy@…>

Branches:

10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 12.0, 12.1, 6.3, 6.3-rc1, 6.3-rc2, 6.3-rc3, 7.10, 7.4, 7.5, 7.6, 7.6-blfs, 7.6-systemd, 7.7, 7.8, 7.9, 8.0, 8.1, 8.2, 8.3, 8.4, 9.0, 9.1, basic, bdubbs/svn, elogind, gnome, kde5-13430, kde5-14269, kde5-14686, kea, ken/TL2024, ken/inkscape-core-mods, ken/tuningfonts, krejzi/svn, lazarus, lxqt, nosym, perl-modules, plabs/newcss, plabs/python-mods, python3.11, qt5new, rahul/power-profiles-daemon, renodr/vulkan-addition, systemd-11177, systemd-13485, trunk, upgradedb, xry111/intltool, xry111/llvm18, xry111/soup3, xry111/test-20220226, xry111/xf86-video-removal

Children:

206b7a1

Parents:

dd9a2ad8

Message:

Updated to Stunnel-4.21

git-svn-id: svn://svn.linuxfromscratch.org/BLFS/trunk/BOOK@7317 af4574ff-66df-0310-9fd7-8a98e5e911e0

Files:

• general.ent (modified) (2 diffs)
• introduction/welcome/changelog.xml (modified) (1 diff)
• postlfs/security/stunnel.xml (modified) (10 diffs)

general.ent

@@ -45 +45 @@
 <!-- End LFS versions -->
 
-<!ENTITY blfs-bootscripts-version     "20080315">
+<!ENTITY blfs-bootscripts-version     "20080326">
 <!ENTITY blfs-bootscripts-download    "&downloads-root;/blfs-bootscripts-&blfs-bootscripts-version;.tar.bz2">
 
@@ -68 +68 @@
 <!ENTITY mitkrb-version               "1.6">
 <!ENTITY cyrus-sasl-version           "2.1.22">
-<!ENTITY stunnel-version              "4.20">
+<!ENTITY stunnel-version              "4.21">
 <!ENTITY sudo-version                 "1.6.9p12">
 <!ENTITY nss-version                  "3.11.7">

introduction/welcome/changelog.xml

@@ -45 +45 @@
       <para>March 26th, 2008</para>
       <itemizedlist>
+        <listitem>
+          <para>[randy] - Updated to Stunnel-4.21.</para>
+        </listitem>
         <listitem>
           <para>[randy] - Added a parameter to the libgnome configure command

postlfs/security/stunnel.xml

@@ -7 +7 @@
   <!ENTITY stunnel-download-http "http://www.stunnel.org/download/stunnel/src/stunnel-&stunnel-version;.tar.gz">
   <!ENTITY stunnel-download-ftp  "ftp://stunnel.mirt.net/stunnel/stunnel-&stunnel-version;.tar.gz">
-  <!ENTITY stunnel-md5sum        "cf9940395d3503018f721c962528d2ec">
-  <!ENTITY stunnel-size          "513 KB">
-  <!ENTITY stunnel-buildsize     "4.5 MB">
+  <!ENTITY stunnel-md5sum        "1eaec5228979beca4d548f453304e311">
+  <!ENTITY stunnel-size          "528 KB">
+  <!ENTITY stunnel-buildsize     "5 MB">
   <!ENTITY stunnel-time          "0.1 SBU">
 ]>
@@ -61 +61 @@
     </itemizedlist>
 
+    <bridgehead renderas="sect3">Additional Downloads</bridgehead>
+    <itemizedlist spacing="compact">
+      <listitem>
+        <para>Required patch: <ulink
+        url="ftp://stunnel.mirt.net/stunnel/setuid.patch"/></para>
+      </listitem>
+    </itemizedlist>
+
     <bridgehead renderas="sect3">Stunnel Dependencies</bridgehead>
 
@@ -79 +87 @@
     <para>The <command>stunnel</command> daemon will be run in a
     <command>chroot</command> jail by an unprivileged user. Create the
-    new user, group and <command>chroot</command> home directory structure
-    using the following commands as the
+    new user and group using the following commands as the
     <systemitem class="username">root</systemitem> user:</para>
 
 <screen role="root"><userinput>groupadd -g 51 stunnel &amp;&amp;
 useradd -c "Stunnel Daemon" -d /var/lib/stunnel \
-        -g stunnel -s /bin/false -u 51 stunnel &amp;&amp;
-install -v -m 1770 -o stunnel -g stunnel -d /var/lib/stunnel/run</userinput></screen>
+        -g stunnel -s /bin/false -u 51 stunnel</userinput></screen>
 
     <note>
@@ -110 +116 @@
     commands:</para>
 
-<screen><userinput>sed -i 's|nogroup|stunnel|g' configure &amp;&amp;
+<screen><userinput>pushd src
+    patch -Np0 -i ../../setuid.patch
+popd
+
+sed -i 's|nogroup|stunnel|g' configure &amp;&amp;
 sed -i 's|$(prefix)/var/lib|$(localstatedir)|' tools/Makefile.in &amp;&amp;
-sed -i 's|doc/stunnel|&amp;-$(VERSION)|' {,doc/,tools/}Makefile.in &amp;&amp;
 
 ./configure --prefix=/usr \
@@ -124 +133 @@
     <para>Now, as the <systemitem class="username">root</systemitem> user:</para>
 
-<screen role="root"><userinput>make install</userinput></screen>
+<screen role="root"><userinput>make docdir=/usr/share/doc/stunnel-&stunnel-version; install</userinput></screen>
 
   </sect2>
@@ -142 +151 @@
     <filename class='directory'>/usr/var/lib/stunnel</filename>.</para>
 
-    <para><command>sed -i '...' {,doc/,tools/}Makefile.in</command>: This
-    command modifies the location of the installed documentation files to a
-    versioned directory.</para>
-
     <para><parameter>--sysconfdir=/etc</parameter>: This parameter forces
     the configuration directory to <filename class='directory'>/etc</filename>
@@ -160 +165 @@
     the parameter if <application>tcpwrappers</application> is installed.</para>
 
-    <para><command>make install</command>: This command installs the package
-    and, if you did not copy an <filename>stunnel.pem</filename> file to the
+    <para><command>make docdir=... install</command>: This command installs the
+    package, changes the documentation installation directory to standard
+    naming conventions and, if you did not copy an
+    <filename>stunnel.pem</filename> file to the
     <filename class='directory'>/etc/stunnel</filename> directory, prompts you
     for the necessary information to create one. Ensure you reply to the</para>
@@ -189 +196 @@
       <title>Configuration Information</title>
 
-      <para>Create a basic <filename>/etc/stunnel/stunnel.conf</filename>
-      configuration file using the following commands:</para>
+      <para>As the <systemitem class="username">root</systemitem> user,
+      create the directory used for the
+      <filename class='extension'>.pid</filename> file that is created
+      when the <application>Stunnel</application> daemon starts:</para>
+
+<screen role="root"><userinput>install -v -m750 -o stunnel -g stunnel -d /var/lib/stunnel/run</userinput></screen>
+
+      <para>Next, create a basic <filename>/etc/stunnel/stunnel.conf</filename>
+      configuration file using the following commands as the
+      <systemitem class="username">root</systemitem> user:</para>
 
 <screen role="root"><userinput>cat &gt;/etc/stunnel/stunnel.conf &lt;&lt; "EOF" &amp;&amp;
-<literal># File: /etc/stunnel/stunnel.conf
-
-pid = /run/stunnel.pid
+<literal>; File: /etc/stunnel/stunnel.conf
+
+pid    = /run/stunnel.pid
 chroot = /var/lib/stunnel
 client = no
@@ -204 +219 @@
 chmod -v 644 /etc/stunnel/stunnel.conf</userinput></screen>
 
-    <para>Next, you need to add the service(s) you wish to encrypt to the
-    configuration file. The format is as follows:</para>
+      <para>Finally, you need to add the service(s) you wish to encrypt to the
+      configuration file. The format is as follows:</para>
 
 <screen><literal>[<replaceable>&lt;service&gt;</replaceable>]
@@ -255 +270 @@
         <seg>stunnel and stunnel3</seg>
         <seg>libstunnel.so</seg>
-        <seg>/etc/stunnel, /var/lib/stunnel and
-        /usr/share/doc/stunnel-&stunnel-version;</seg>
+        <seg>/etc/stunnel, /usr/lib/stunnel,
+        /usr/share/doc/stunnel-&stunnel-version; and
+        /var/lib/stunnel</seg>
       </seglistitem>
     </segmentedlist>