Changes in postlfs/security/openssh.xml [cdf6da3:a934691]
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
postlfs/security/openssh.xml
rcdf6da3 ra934691 6 6 7 7 <!ENTITY openssh-download-http 8 "http s://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-&openssh-version;.tar.gz">8 "http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-&openssh-version;.tar.gz"> 9 9 <!ENTITY openssh-download-ftp 10 10 " "> <!-- at the moment, unable to connect via ftp: ken 11 11 "ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-&openssh-version;.tar.gz"> --> 12 <!ENTITY openssh-md5sum " f545230799f131aecca04da56e61990a">12 <!ENTITY openssh-md5sum "8f897870404c088e4aa7d1c1c58b526b"> 13 13 <!ENTITY openssh-size "1.7 MB"> 14 <!ENTITY openssh-buildsize "48 MB (add 1 8MB for tests)">15 <!ENTITY openssh-time "0. 3SBU (Using parallelism=4;14 <!ENTITY openssh-buildsize "48 MB (add 17 MB for tests)"> 15 <!ENTITY openssh-time "0.2 SBU (Using parallelism=4; 16 16 running the tests takes 20+ minutes, 17 17 irrespective of processor speed)"> … … 22 22 23 23 <sect1info> 24 <othername>$LastChangedBy$</othername> 24 25 <date>$Date$</date> 25 26 </sect1info> … … 43 44 </para> 44 45 45 &lfs1 10a_checked;46 &lfs10_checked; 46 47 47 48 <bridgehead renderas="sect3">Package Information</bridgehead> … … 144 145 <screen><userinput remap="pre">patch -Np1 -i ../openssh-&openssh-version;-glibc_2.31_fix-1.patch</userinput></screen> 145 146 --> 146 147 <!-- Applied in 8.5p1148 <para>149 First, adapt <application>ssh-copy-id</application> to changes150 in bash-5.1:151 </para>152 153 <screen><userinput remap="pre">sed -e '/INSTALLKEYS_SH/s/)//' -e '260a\ )' -i contrib/ssh-copy-id</userinput></screen>154 155 <para>156 Next, fix an issue on platforms other than x86_64:157 </para>158 <screen><userinput remap="pre">if [ "$(uname -m)" != "x86_64" ]; then159 l1="#ifdef __NR_pselect6_time64"160 l2=" SC_ALLOW(__NR_pselect6_time64),"161 l3="#endif"162 sed -e "/^#ifdef __NR_read$/ i $l1\n$l2\n$l3" \163 -i sandbox-seccomp-filter.c164 fi</userinput></screen>165 -->166 147 <para> 167 148 Install <application>OpenSSH</application> by running the following … … 169 150 </para> 170 151 171 <screen><userinput>./configure --prefix=/usr \ 172 --sysconfdir=/etc/ssh \ 173 --with-md5-passwords \ 174 --with-privsep-path=/var/lib/sshd \ 175 --with-default-path=/usr/bin \ 176 --with-superuser-path=/usr/sbin:/usr/bin \ 177 --with-pid-dir=/run 152 <screen><userinput>./configure --prefix=/usr \ 153 --sysconfdir=/etc/ssh \ 154 --with-md5-passwords \ 155 --with-privsep-path=/var/lib/sshd && 178 156 make</userinput></screen> 179 157 … … 235 213 <parameter>--with-md5-passwords</parameter>: This enables the use of MD5 236 214 passwords. 237 </para>238 239 <para>240 <parameter>--with-default-path=/usr/bin</parameter> and241 <parameter>--with-superuser-path=/usr/sbin:/usr/bin</parameter>:242 These set <envar>PATH</envar> consistent with LFS and BLFS243 <application>Shadow</application> package.244 </para>245 246 <para>247 <parameter>--with-pid-dir=/run</parameter>: This prevents248 <application>OpenSSH</application> from refering to deprecated249 <filename class="directory">/var/run</filename>.250 215 </para> 251 216 … … 394 359 <seglistitem> 395 360 <seg> 396 scp, sftp, <!--slogin (symlink to ssh),-->ssh, ssh-add, ssh-agent,361 scp, sftp, slogin (symlink to ssh), ssh, ssh-add, ssh-agent, 397 362 ssh-copy-id, ssh-keygen, ssh-keyscan, and sshd 398 363 </seg> … … 418 383 <para> 419 384 is a file copy program that acts like <command>rcp</command> except 420 it uses an encrypted protocol 385 it uses an encrypted protocol. 421 386 </para> 422 387 <indexterm zone="openssh scp"> … … 430 395 <listitem> 431 396 <para> 432 is an FTP-like program that works over the SSH1 and SSH2 protocols 397 is an FTP-like program that works over the SSH1 and SSH2 protocols. 433 398 </para> 434 399 <indexterm zone="openssh sftp"> … … 437 402 </listitem> 438 403 </varlistentry> 439 <!-- Not installed anymore as of 8.5p1 404 440 405 <varlistentry id="slogin"> 441 406 <term><command>slogin</command></term> 442 407 <listitem> 443 408 <para> 444 is a symlink to <command>ssh</command> 409 is a symlink to <command>ssh</command>. 445 410 </para> 446 411 <indexterm zone="openssh slogin"> … … 449 414 </listitem> 450 415 </varlistentry> 451 --> 416 452 417 <varlistentry id="ssh"> 453 418 <term><command>ssh</command></term> … … 455 420 <para> 456 421 is an <command>rlogin</command>/<command>rsh</command>-like client 457 program except it uses an encrypted protocol 422 program except it uses an encrypted protocol. 458 423 </para> 459 424 <indexterm zone="openssh ssh"> … … 467 432 <listitem> 468 433 <para> 469 is a daemon that listens for <command>ssh</command> login requests 434 is a daemon that listens for <command>ssh</command> login requests. 470 435 </para> 471 436 <indexterm zone="openssh sshd"> … … 479 444 <listitem> 480 445 <para> 481 is a tool which adds keys to the <command>ssh-agent</command> 446 is a tool which adds keys to the <command>ssh-agent</command>. 482 447 </para> 483 448 <indexterm zone="openssh ssh-add"> … … 491 456 <listitem> 492 457 <para> 493 is an authentication agent that can store private keys 458 is an authentication agent that can store private keys. 494 459 </para> 495 460 <indexterm zone="openssh ssh-agent"> … … 503 468 <listitem> 504 469 <para> 505 is a script that enables logins on remote machine s using local keys470 is a script that enables logins on remote machine using local keys. 506 471 </para> 507 472 <indexterm zone="openssh ssh-copy-id"> … … 515 480 <listitem> 516 481 <para> 517 is a key generation tool 482 is a key generation tool. 518 483 </para> 519 484 <indexterm zone="openssh ssh-keygen"> … … 527 492 <listitem> 528 493 <para> 529 is a utility for gathering public host keys from a number of hosts 494 is a utility for gathering public host keys from a number of hosts. 530 495 </para> 531 496 <indexterm zone="openssh ssh-keyscan"> … … 537 502 </variablelist> 538 503 </sect2> 539 540 504 </sect1>
Note:
See TracChangeset
for help on using the changeset viewer.