Ignore:
File:
1 edited

Legend:

Unmodified
Added
Removed

  • postlfs/security/openssh.xml

    rcdf6da3 ra934691  
    66
    77  <!ENTITY openssh-download-http
    8            "https://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-&openssh-version;.tar.gz">
     8           "http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-&openssh-version;.tar.gz">
    99  <!ENTITY openssh-download-ftp
    1010           " "> <!-- at the moment, unable to connect via ftp: ken
    1111           "ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-&openssh-version;.tar.gz"> -->
    12   <!ENTITY openssh-md5sum        "f545230799f131aecca04da56e61990a">
     12  <!ENTITY openssh-md5sum        "8f897870404c088e4aa7d1c1c58b526b">
    1313  <!ENTITY openssh-size          "1.7 MB">
    14   <!ENTITY openssh-buildsize     "48 MB (add 18 MB for tests)">
    15   <!ENTITY openssh-time          "0.3 SBU (Using parallelism=4;
     14  <!ENTITY openssh-buildsize     "48 MB (add 17 MB for tests)">
     15  <!ENTITY openssh-time          "0.2 SBU (Using parallelism=4;
    1616                                  running the tests takes 20+ minutes,
    1717                                  irrespective of processor speed)">
     
    2222
    2323  <sect1info>
     24    <othername>$LastChangedBy$</othername>
    2425    <date>$Date$</date>
    2526  </sect1info>
     
    4344    </para>
    4445
    45     &lfs110a_checked;
     46    &lfs10_checked;
    4647
    4748    <bridgehead renderas="sect3">Package Information</bridgehead>
     
    144145<screen><userinput remap="pre">patch -Np1 -i ../openssh-&openssh-version;-glibc_2.31_fix-1.patch</userinput></screen>
    145146-->   
    146 
    147 <!-- Applied in 8.5p1
    148     <para>
    149       First, adapt <application>ssh-copy-id</application> to changes
    150       in bash-5.1:
    151     </para>
    152 
    153 <screen><userinput remap="pre">sed -e '/INSTALLKEYS_SH/s/)//' -e '260a\  )' -i contrib/ssh-copy-id</userinput></screen>
    154 
    155     <para>
    156       Next, fix an issue on platforms other than x86_64:
    157     </para>
    158     <screen><userinput remap="pre">if [ "$(uname -m)" != "x86_64" ]; then
    159     l1="#ifdef __NR_pselect6_time64"
    160     l2="    SC_ALLOW(__NR_pselect6_time64),"
    161     l3="#endif"
    162     sed -e "/^#ifdef __NR_read$/ i $l1\n$l2\n$l3" \
    163         -i sandbox-seccomp-filter.c
    164 fi</userinput></screen>
    165 -->
    166147    <para>
    167148      Install <application>OpenSSH</application> by running the following
     
    169150    </para>
    170151
    171 <screen><userinput>./configure --prefix=/usr                            \
    172             --sysconfdir=/etc/ssh                    \
    173             --with-md5-passwords                     \
    174             --with-privsep-path=/var/lib/sshd        \
    175             --with-default-path=/usr/bin             \
    176             --with-superuser-path=/usr/sbin:/usr/bin \
    177             --with-pid-dir=/run
     152<screen><userinput>./configure --prefix=/usr                     \
     153            --sysconfdir=/etc/ssh             \
     154            --with-md5-passwords              \
     155            --with-privsep-path=/var/lib/sshd &amp;&amp;
    178156make</userinput></screen>
    179157
     
    235213      <parameter>--with-md5-passwords</parameter>: This enables the use of MD5
    236214      passwords.
    237     </para>
    238 
    239     <para>
    240       <parameter>--with-default-path=/usr/bin</parameter> and
    241       <parameter>--with-superuser-path=/usr/sbin:/usr/bin</parameter>:
    242       These set <envar>PATH</envar> consistent with LFS and BLFS
    243       <application>Shadow</application> package.
    244     </para>
    245 
    246     <para>
    247       <parameter>--with-pid-dir=/run</parameter>: This prevents
    248       <application>OpenSSH</application> from refering to deprecated
    249       <filename class="directory">/var/run</filename>.
    250215    </para>
    251216
     
    394359      <seglistitem>
    395360        <seg>
    396           scp, sftp, <!--slogin (symlink to ssh),--> ssh, ssh-add, ssh-agent,
     361          scp, sftp, slogin (symlink to ssh), ssh, ssh-add, ssh-agent,
    397362          ssh-copy-id, ssh-keygen, ssh-keyscan, and sshd
    398363        </seg>
     
    418383          <para>
    419384            is a file copy program that acts like <command>rcp</command> except
    420             it uses an encrypted protocol
     385            it uses an encrypted protocol.
    421386          </para>
    422387          <indexterm zone="openssh scp">
     
    430395        <listitem>
    431396          <para>
    432             is an FTP-like program that works over the SSH1 and SSH2 protocols
     397            is an FTP-like program that works over the SSH1 and SSH2 protocols.
    433398          </para>
    434399          <indexterm zone="openssh sftp">
     
    437402        </listitem>
    438403      </varlistentry>
    439 <!-- Not installed anymore as of 8.5p1
     404
    440405      <varlistentry id="slogin">
    441406        <term><command>slogin</command></term>
    442407        <listitem>
    443408          <para>
    444             is a symlink to <command>ssh</command>
     409            is a symlink to <command>ssh</command>.
    445410          </para>
    446411          <indexterm zone="openssh slogin">
     
    449414        </listitem>
    450415      </varlistentry>
    451 -->
     416
    452417      <varlistentry id="ssh">
    453418        <term><command>ssh</command></term>
     
    455420          <para>
    456421            is an <command>rlogin</command>/<command>rsh</command>-like client
    457             program except it uses an encrypted protocol
     422            program except it uses an encrypted protocol.
    458423          </para>
    459424          <indexterm zone="openssh ssh">
     
    467432        <listitem>
    468433          <para>
    469             is a daemon that listens for <command>ssh</command> login requests
     434            is a daemon that listens for <command>ssh</command> login requests.
    470435          </para>
    471436          <indexterm zone="openssh sshd">
     
    479444        <listitem>
    480445          <para>
    481             is a tool which adds keys to the <command>ssh-agent</command>
     446            is a tool which adds keys to the <command>ssh-agent</command>.
    482447          </para>
    483448          <indexterm zone="openssh ssh-add">
     
    491456        <listitem>
    492457          <para>
    493             is an authentication agent that can store private keys
     458            is an authentication agent that can store private keys.
    494459          </para>
    495460          <indexterm zone="openssh ssh-agent">
     
    503468        <listitem>
    504469          <para>
    505             is a script that enables logins on remote machines using local keys
     470            is a script that enables logins on remote machine using local keys.
    506471          </para>
    507472          <indexterm zone="openssh ssh-copy-id">
     
    515480        <listitem>
    516481          <para>
    517             is a key generation tool
     482            is a key generation tool.
    518483          </para>
    519484          <indexterm zone="openssh ssh-keygen">
     
    527492        <listitem>
    528493          <para>
    529             is a utility for gathering public host keys from a number of hosts
     494            is a utility for gathering public host keys from a number of hosts.
    530495          </para>
    531496          <indexterm zone="openssh ssh-keyscan">
     
    537502    </variablelist>
    538503  </sect2>
    539 
    540504</sect1>
Note: See TracChangeset for help on using the changeset viewer.