From e185d37b6df8297eb30cb630c3ff7417a33efb5b Mon Sep 17 00:00:00 2001 From: Paul Menzel Date: Fri, 3 Jun 2016 15:23:38 +0200 Subject: [PATCH] openssh: Add version 7.1 Several security issues are fixed as well new features added. Please note the change below in OpenSSH 6.8. > * sshd(8): UseDNS now defaults to 'no'. Configurations that match > against the client host name (via sshd_config or authorized_keys) > may need to re-enable it or convert to matching against addresses. It should be set to `yes` in our setup again. Everybody should start using the ED25519 [1]. ``` $ ssh-keygen -t ed25519 ``` Additionally, the new host keys should be generated with `ssh-keygen -A`. The utility `ssh-copy-id` and meta files are installed now, according to the Linux from Scratch documentation [3]. [1] http://www.openssh.com/txt/release-6.8 [2] https://de.wikipedia.org/wiki/Curve25519 [3] http://www.linuxfromscratch.org/blfs/view/7.9/postlfs/openssh.html --- openssh-7.1_p2-0.bee | 26 ++++++++++++++++++++++++++ 1 file changed, 26 insertions(+) create mode 100755 openssh-7.1_p2-0.bee diff --git a/openssh-7.1_p2-0.bee b/openssh-7.1_p2-0.bee new file mode 100755 index 000000000..a1f5b5545 --- /dev/null +++ b/openssh-7.1_p2-0.bee @@ -0,0 +1,26 @@ +#!/bin/env beesh + +SRCURL[0]="http://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-${PKGVERSION}${PKGEXTRAVERSION}.tar.gz" + +SYSCONFDIR=/etc/ssh +DATADIR=/usr/share/sshd +LIBEXECDIR=/usr/lib/openssh + +mee_configure() { + bee_configure \ + --sysconfdir=${SYSCONFDIR} \ + --with-md5-passwords \ + --with-privsep-path=/var/lib/sshd \ + --with-pam +} + +mee_install_post() { + mv ${D}${SYSCONFDIR}/ssh_config ${D}${SYSCONFDIR}/ssh_config.example + mv ${D}${SYSCONFDIR}/sshd_config ${D}${SYSCONFDIR}/sshd_config.example + install -v -m755 ${S}/contrib/ssh-copy-id ${D}/${BINDIR} + install -v -m644 contrib/ssh-copy-id.1 \ + ${MANDIR}/man1 + install -v -m755 -d ${DOCDIR} + install -v -m644 ${S}/{INSTALL,LICENCE,OVERVIEW,README*} \ + ${DOCDIR} +}