Date: Tue, 17 Apr 2001 16:28:06 +0600 (YEKST) From: anton@urc.ac.ru To: FreeBSD-gnats-submit@freebsd.org Subject: ports/28796: New port: russian/tac+ia Message-ID: <200104171028.f3HAS6T12520@belle.rnoc.urc.ac.ru>
next in thread | raw e-mail | index | archive | help
>Number: 28796
>Category: ports
>Synopsis: New port: russian/tac+ia
>Confidential: no
>Severity: non-critical
>Priority: high
>Responsible: freebsd-ports
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: change-request
>Submitter-Id: current-users
>Arrival-Date: Sat Jul 07 14:10:00 PDT 2001
>Closed-Date:
>Last-Modified:
>Originator: Anton Voronin
>Release: FreeBSD 4.2-STABLE i386
>Organization:
Southern Ural State University, Chelyabinsk, Russia
>Environment:
>Description:
tac+ia is improved tacacs server based on tac_plus package.
Unfortunately, it is documented in Russian only, that's why it's proposed
for "russian" category.
Additional features:
- improved configuration syntax
- acls
- time limits
- more variable substitutions in configuration file and messages
- allow/deny lists
- tty lists
- host and port aliasing
- time intervals
- dynamic ip-address assignment
- passing uucp connections to uucico without rlogind authentication
and many other...
>How-To-Repeat:
>Fix:
# This is a shell archive. Save it in a file, remove anything before
# this line, and then unpack it by entering "sh file". Note, it may
# create directories; files and directories will be owned by you and
# have default permissions.
#
# This archive contains:
#
# tac+ia
# tac+ia/distinfo
# tac+ia/files
# tac+ia/files/patch-aa
# tac+ia/files/tac_plus.sh
# tac+ia/files/patch-maxsess
# tac+ia/pkg-plist
# tac+ia/pkg-descr
# tac+ia/pkg-comment
# tac+ia/Makefile
#
echo c - tac+ia
mkdir -p tac+ia > /dev/null 2>&1
echo x - tac+ia/distinfo
sed 's/^X//' >tac+ia/distinfo << 'END-of-tac+ia/distinfo'
XMD5 (tac+ia-0.96pre9.3.tar.gz) = be29256121479cc7e4a576684aa2ff42
END-of-tac+ia/distinfo
echo c - tac+ia/files
mkdir -p tac+ia/files > /dev/null 2>&1
echo x - tac+ia/files/patch-aa
sed 's/^X//' >tac+ia/files/patch-aa << 'END-of-tac+ia/files/patch-aa'
X--- tac_plus/Makefile.in.orig Tue Sep 5 16:39:12 2000
X+++ tac_plus/Makefile.in Fri Apr 13 12:41:54 2001
X@@ -42,7 +42,7 @@
X OBJS = $(SRC:.c=.o)
X SRCS = $(SRC:%=$(srcdir)/%)
X
X-all: tac_plus generate_passwd tdb @DYN@dynipd
X+all: tac_plus generate_passwd @DYN@tdb dynipd
X
X dynipd: dynipd.o sockread.o allow.o
X $(CC) -o dynipd $(LDFLAGS) dynipd.o sockread.o allow.o @LIBDB@ @LIBNSL@ @LIBSOCKET@ @LIBBIND@
X@@ -81,8 +81,8 @@
X
X install:
X $(INSTALL_PROGRAM) tac_plus $(sbindir)
X- $(INSTALL_DATA) $(srcdir)/tac_plus.1 $(mandir)/man1
X- $(INSTALL_PROGRAM) tdb $(sbindir)
X+ $(INSTALL_DATA) $(srcdir)/tac_plus.8 $(mandir)/man8
X+@DYN@ $(INSTALL_PROGRAM) tdb $(sbindir)
X @DYN@ $(INSTALL_PROGRAM) dynipd $(sbindir)
X
X depend-gcc:
END-of-tac+ia/files/patch-aa
echo x - tac+ia/files/tac_plus.sh
sed 's/^X//' >tac+ia/files/tac_plus.sh << 'END-of-tac+ia/files/tac_plus.sh'
X#!/bin/sh
X
Xif ! PREFIX=$(expr $0 : "\(/.*\)/etc/rc\.d/$(basename $0)\$"); then
X echo "$0: Cannot determine the PREFIX" >&2
X exit 1
Xfi
X
Xcase "$1" in
Xstart)
X [ -x ${PREFIX}/sbin/tac_plus -a -f ${PREFIX}/etc/tac_plus/tac_plus.conf ] && ${PREFIX}/sbin/tac_plus -L \
X && [ -x ${PREFIX}/sbin/acctd ] && ${PREFIX}/sbin/acctd \
X && echo -n ' tac_plus'
X ;;
Xstop)
X killall tac_plus acctd && echo -n ' tac_plus'
X echo
X ;;
X*)
X echo "Usage: `basename $0` {start|stop}" >&2
X ;;
Xesac
X
Xexit 0
END-of-tac+ia/files/tac_plus.sh
echo x - tac+ia/files/patch-maxsess
sed 's/^X//' >tac+ia/files/patch-maxsess << 'END-of-tac+ia/files/patch-maxsess'
X--- tac_plus/maxsess.c.orig Mon Sep 25 16:41:35 2000
X+++ tac_plus/maxsess.c Tue Apr 17 01:29:41 2001
X@@ -741,7 +741,8 @@
X }
X
X /* If it's really too high, don't authorize more services */
X- if (sess >= maxsess) {
X+/* if (sess >= maxsess) { */
X+ if (sess > maxsess) { /* NAS reports the current attempt as an opened session too */
X char buf[80];
X
X sprintf(buf,
END-of-tac+ia/files/patch-maxsess
echo x - tac+ia/pkg-plist
sed 's/^X//' >tac+ia/pkg-plist << 'END-of-tac+ia/pkg-plist'
Xetc/rc.d/tac_plus.sh
Xetc/tac_plus/tac_plus.conf.example
Xetc/tac_plus/ttys.example
Xetc/tac_plus/aliases.example
Xsbin/acctd
Xsbin/killuser
Xsbin/lasttac
Xsbin/logtac
Xsbin/macct
Xsbin/tac_plus
Xsbin/unlogtac
Xsbin/whotac
Xshare/doc/tac_plus/README
Xshare/doc/tac_plus/users_guide
X@dirrm etc/tac_plus
X@dirrm share/doc/tac_plus
X@cwd /var/adm
X@exec mkdir /var/adm/tac_plus
X@exec mkdir /var/adm/tac_plus/deny
X@exec mkdir /var/adm/tac_plus/allow
X@exec mkdir /var/adm/tac_plus/parrot
X@dirrm tac_plus/deny
X@dirrm tac_plus/allow
X@dirrm tac_plus/parrot
X@dirrm tac_plus
X@cwd /var/log
X@dirrm tac_plus
END-of-tac+ia/pkg-plist
echo x - tac+ia/pkg-descr
sed 's/^X//' >tac+ia/pkg-descr << 'END-of-tac+ia/pkg-descr'
Xtacacs+ is program that allow authorization and authentication via net on
Xremote access servers. Authnticate users, authorize commands and log
Xaccounting information.
X
Xtac+ia is improved tacacs server based on tac_plus package.
X
XAdditional features:
X- improved configuration syntax
X- acls
X- time limits
X- more variable substitutions in configuration file and messages
X- allow/deny lists
X- tty lists
X- host and port aliasing
X- time intervals
X- dynamic ip-address assignment
X- passing uucp connections to uucico without rlogind authentication
Xand many other...
END-of-tac+ia/pkg-descr
echo x - tac+ia/pkg-comment
sed 's/^X//' >tac+ia/pkg-comment << 'END-of-tac+ia/pkg-comment'
XThe Cisco remote aaa server (inet-admins edition)
END-of-tac+ia/pkg-comment
echo x - tac+ia/Makefile
sed 's/^X//' >tac+ia/Makefile << 'END-of-tac+ia/Makefile'
X# New ports collection makefile for: tas
X# Date created: 11 Jan 2001
X# Whom: Anton Voronin <anton@urc.ac.ru>
X#
X# $FreeBSD$
X#
X
XPORTNAME= tac+ia
XPORTVERSION= 0.96p9.3
XCATEGORIES= russian net
XMASTER_SITES= ftp://ftp.vsu.ru/pub/hardware/cisco/tacacs/
XDISTNAME= tac+ia-0.96pre9.3
X
XMAINTAINER= anton@urc.ac.ru
X
XWRKSRC= ${WRKDIR}/tac+ia-${PORTVERSION}
X
XMANCOMPRESSED= no
XMAN1= macct.1 parrot.1
XMAN8= tac_plus.8
X
XHAS_CONFIGURE= yes
X
X# Default prefix for config files
XCONFIGURE_ARGS+= --enable-confpath=${PREFIX}/etc/tac_plus
X# Default prefix for pid files
XCONFIGURE_ARGS+= --enable-runpath=/var/run
X# Default prefix for log files
XCONFIGURE_ARGS+= --enable-logpath=/var/log/tac_plus
X#
XCONFIGURE_ARGS+= --enable-ttysfile=${PREFIX}/etc/tac_plus/ttys
X# This file tac+ will use for accounting records.
X# Can be redefined in config file ('accounting file' directive)
XCONFIGURE_ARGS+= --enable-acctfile=/var/log/tac_plus/tac_plus.acct
X# If you want to block access for users, which not exist in base
XCONFIGURE_ARGS+= --enable-db-strict
X#
XCONFIGURE_ARGS+= --enable-aliasesfile=${PREFIX}/etc/tac_plus/aliases
X# register NAS users on SIGUSR1
XCONFIGURE_ARGS+= --enable-regnas
X# Support for ACL
XCONFIGURE_ARGS+= --enable-acl
X#
XCONFIGURE_ARGS+= --disable-deny
XCONFIGURE_ARGS+= --disable-cron
X
Xpost-build:
X @mv ${WRKSRC}/tac_plus/tac_plus.1 ${WRKSRC}/tac_plus/tac_plus.8
X
Xpost-install:
X @if [ ! -f ${PREFIX}/etc/rc.d/tac_plus.sh ]; then \
X ${ECHO} "Installing ${PREFIX}/etc/rc.d/tac_plus.sh startup file."; \
X ${INSTALL_SCRIPT} -m 751 ${FILESDIR}/tac_plus.sh ${PREFIX}/etc/rc.d/tac_plus.sh; \
X fi
X ${INSTALL_SCRIPT} -m 644 ${WRKSRC}/lib/libutil/ttys ${PREFIX}/etc/tac_plus/ttys.example
X ${INSTALL_SCRIPT} -m 644 ${WRKSRC}/tac_plus/aliases ${PREFIX}/etc/tac_plus/aliases.example
X ${INSTALL_SCRIPT} -m 644 ${WRKSRC}/tac_plus/tac_plus.conf ${PREFIX}/etc/tac_plus/tac_plus.conf.example
X -@mkdir -p ${PREFIX}/share/doc/tac_plus
X ${INSTALL_SCRIPT} -m 644 ${WRKSRC}/tac_plus/users_guide ${PREFIX}/share/doc/tac_plus/users_guide
X ${INSTALL_SCRIPT} -m 644 ${WRKSRC}/README ${PREFIX}/share/doc/tac_plus/README
X
X.include <bsd.port.mk>
END-of-tac+ia/Makefile
exit
>Release-Note:
>Audit-Trail:
>Unformatted:
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ports" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200104171028.f3HAS6T12520>