From owner-freebsd-ports Sat Jul 7 14:10:16 2001 Delivered-To: freebsd-ports@hub.freebsd.org Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id 34EFC37B405 for ; Sat, 7 Jul 2001 14:10:02 -0700 (PDT) (envelope-from gnats@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.11.3/8.11.3) id f67LA2C45606; Sat, 7 Jul 2001 14:10:02 -0700 (PDT) (envelope-from gnats) Received: from belle.rnoc.urc.ac.ru (belle.rnoc.urc.ac.ru [193.233.85.10]) by hub.freebsd.org (Postfix) with ESMTP id E349237B403 for ; Sat, 7 Jul 2001 14:02:08 -0700 (PDT) (envelope-from anton@belle.rnoc.urc.ac.ru) Received: (from anton@localhost) by belle.rnoc.urc.ac.ru (8.11.1/8.11.1) id f3HAS6T12520; Tue, 17 Apr 2001 16:28:06 +0600 (YEKST) (envelope-from anton) Message-Id: <200104171028.f3HAS6T12520@belle.rnoc.urc.ac.ru> Date: Tue, 17 Apr 2001 16:28:06 +0600 (YEKST) From: anton@urc.ac.ru Reply-To: anton@urc.ac.ru To: FreeBSD-gnats-submit@freebsd.org X-Send-Pr-Version: 3.2 Subject: ports/28796: New port: russian/tac+ia Sender: owner-freebsd-ports@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org >Number: 28796 >Category: ports >Synopsis: New port: russian/tac+ia >Confidential: no >Severity: non-critical >Priority: high >Responsible: freebsd-ports >State: open >Quarter: >Keywords: >Date-Required: >Class: change-request >Submitter-Id: current-users >Arrival-Date: Sat Jul 07 14:10:00 PDT 2001 >Closed-Date: >Last-Modified: >Originator: Anton Voronin >Release: FreeBSD 4.2-STABLE i386 >Organization: Southern Ural State University, Chelyabinsk, Russia >Environment: >Description: tac+ia is improved tacacs server based on tac_plus package. Unfortunately, it is documented in Russian only, that's why it's proposed for "russian" category. Additional features: - improved configuration syntax - acls - time limits - more variable substitutions in configuration file and messages - allow/deny lists - tty lists - host and port aliasing - time intervals - dynamic ip-address assignment - passing uucp connections to uucico without rlogind authentication and many other... >How-To-Repeat: >Fix: # This is a shell archive. Save it in a file, remove anything before # this line, and then unpack it by entering "sh file". Note, it may # create directories; files and directories will be owned by you and # have default permissions. # # This archive contains: # # tac+ia # tac+ia/distinfo # tac+ia/files # tac+ia/files/patch-aa # tac+ia/files/tac_plus.sh # tac+ia/files/patch-maxsess # tac+ia/pkg-plist # tac+ia/pkg-descr # tac+ia/pkg-comment # tac+ia/Makefile # echo c - tac+ia mkdir -p tac+ia > /dev/null 2>&1 echo x - tac+ia/distinfo sed 's/^X//' >tac+ia/distinfo << 'END-of-tac+ia/distinfo' XMD5 (tac+ia-0.96pre9.3.tar.gz) = be29256121479cc7e4a576684aa2ff42 END-of-tac+ia/distinfo echo c - tac+ia/files mkdir -p tac+ia/files > /dev/null 2>&1 echo x - tac+ia/files/patch-aa sed 's/^X//' >tac+ia/files/patch-aa << 'END-of-tac+ia/files/patch-aa' X--- tac_plus/Makefile.in.orig Tue Sep 5 16:39:12 2000 X+++ tac_plus/Makefile.in Fri Apr 13 12:41:54 2001 X@@ -42,7 +42,7 @@ X OBJS = $(SRC:.c=.o) X SRCS = $(SRC:%=$(srcdir)/%) X X-all: tac_plus generate_passwd tdb @DYN@dynipd X+all: tac_plus generate_passwd @DYN@tdb dynipd X X dynipd: dynipd.o sockread.o allow.o X $(CC) -o dynipd $(LDFLAGS) dynipd.o sockread.o allow.o @LIBDB@ @LIBNSL@ @LIBSOCKET@ @LIBBIND@ X@@ -81,8 +81,8 @@ X X install: X $(INSTALL_PROGRAM) tac_plus $(sbindir) X- $(INSTALL_DATA) $(srcdir)/tac_plus.1 $(mandir)/man1 X- $(INSTALL_PROGRAM) tdb $(sbindir) X+ $(INSTALL_DATA) $(srcdir)/tac_plus.8 $(mandir)/man8 X+@DYN@ $(INSTALL_PROGRAM) tdb $(sbindir) X @DYN@ $(INSTALL_PROGRAM) dynipd $(sbindir) X X depend-gcc: END-of-tac+ia/files/patch-aa echo x - tac+ia/files/tac_plus.sh sed 's/^X//' >tac+ia/files/tac_plus.sh << 'END-of-tac+ia/files/tac_plus.sh' X#!/bin/sh X Xif ! PREFIX=$(expr $0 : "\(/.*\)/etc/rc\.d/$(basename $0)\$"); then X echo "$0: Cannot determine the PREFIX" >&2 X exit 1 Xfi X Xcase "$1" in Xstart) X [ -x ${PREFIX}/sbin/tac_plus -a -f ${PREFIX}/etc/tac_plus/tac_plus.conf ] && ${PREFIX}/sbin/tac_plus -L \ X && [ -x ${PREFIX}/sbin/acctd ] && ${PREFIX}/sbin/acctd \ X && echo -n ' tac_plus' X ;; Xstop) X killall tac_plus acctd && echo -n ' tac_plus' X echo X ;; X*) X echo "Usage: `basename $0` {start|stop}" >&2 X ;; Xesac X Xexit 0 END-of-tac+ia/files/tac_plus.sh echo x - tac+ia/files/patch-maxsess sed 's/^X//' >tac+ia/files/patch-maxsess << 'END-of-tac+ia/files/patch-maxsess' X--- tac_plus/maxsess.c.orig Mon Sep 25 16:41:35 2000 X+++ tac_plus/maxsess.c Tue Apr 17 01:29:41 2001 X@@ -741,7 +741,8 @@ X } X X /* If it's really too high, don't authorize more services */ X- if (sess >= maxsess) { X+/* if (sess >= maxsess) { */ X+ if (sess > maxsess) { /* NAS reports the current attempt as an opened session too */ X char buf[80]; X X sprintf(buf, END-of-tac+ia/files/patch-maxsess echo x - tac+ia/pkg-plist sed 's/^X//' >tac+ia/pkg-plist << 'END-of-tac+ia/pkg-plist' Xetc/rc.d/tac_plus.sh Xetc/tac_plus/tac_plus.conf.example Xetc/tac_plus/ttys.example Xetc/tac_plus/aliases.example Xsbin/acctd Xsbin/killuser Xsbin/lasttac Xsbin/logtac Xsbin/macct Xsbin/tac_plus Xsbin/unlogtac Xsbin/whotac Xshare/doc/tac_plus/README Xshare/doc/tac_plus/users_guide X@dirrm etc/tac_plus X@dirrm share/doc/tac_plus X@cwd /var/adm X@exec mkdir /var/adm/tac_plus X@exec mkdir /var/adm/tac_plus/deny X@exec mkdir /var/adm/tac_plus/allow X@exec mkdir /var/adm/tac_plus/parrot X@dirrm tac_plus/deny X@dirrm tac_plus/allow X@dirrm tac_plus/parrot X@dirrm tac_plus X@cwd /var/log X@dirrm tac_plus END-of-tac+ia/pkg-plist echo x - tac+ia/pkg-descr sed 's/^X//' >tac+ia/pkg-descr << 'END-of-tac+ia/pkg-descr' Xtacacs+ is program that allow authorization and authentication via net on Xremote access servers. Authnticate users, authorize commands and log Xaccounting information. X Xtac+ia is improved tacacs server based on tac_plus package. X XAdditional features: X- improved configuration syntax X- acls X- time limits X- more variable substitutions in configuration file and messages X- allow/deny lists X- tty lists X- host and port aliasing X- time intervals X- dynamic ip-address assignment X- passing uucp connections to uucico without rlogind authentication Xand many other... END-of-tac+ia/pkg-descr echo x - tac+ia/pkg-comment sed 's/^X//' >tac+ia/pkg-comment << 'END-of-tac+ia/pkg-comment' XThe Cisco remote aaa server (inet-admins edition) END-of-tac+ia/pkg-comment echo x - tac+ia/Makefile sed 's/^X//' >tac+ia/Makefile << 'END-of-tac+ia/Makefile' X# New ports collection makefile for: tas X# Date created: 11 Jan 2001 X# Whom: Anton Voronin X# X# $FreeBSD$ X# X XPORTNAME= tac+ia XPORTVERSION= 0.96p9.3 XCATEGORIES= russian net XMASTER_SITES= ftp://ftp.vsu.ru/pub/hardware/cisco/tacacs/ XDISTNAME= tac+ia-0.96pre9.3 X XMAINTAINER= anton@urc.ac.ru X XWRKSRC= ${WRKDIR}/tac+ia-${PORTVERSION} X XMANCOMPRESSED= no XMAN1= macct.1 parrot.1 XMAN8= tac_plus.8 X XHAS_CONFIGURE= yes X X# Default prefix for config files XCONFIGURE_ARGS+= --enable-confpath=${PREFIX}/etc/tac_plus X# Default prefix for pid files XCONFIGURE_ARGS+= --enable-runpath=/var/run X# Default prefix for log files XCONFIGURE_ARGS+= --enable-logpath=/var/log/tac_plus X# XCONFIGURE_ARGS+= --enable-ttysfile=${PREFIX}/etc/tac_plus/ttys X# This file tac+ will use for accounting records. X# Can be redefined in config file ('accounting file' directive) XCONFIGURE_ARGS+= --enable-acctfile=/var/log/tac_plus/tac_plus.acct X# If you want to block access for users, which not exist in base XCONFIGURE_ARGS+= --enable-db-strict X# XCONFIGURE_ARGS+= --enable-aliasesfile=${PREFIX}/etc/tac_plus/aliases X# register NAS users on SIGUSR1 XCONFIGURE_ARGS+= --enable-regnas X# Support for ACL XCONFIGURE_ARGS+= --enable-acl X# XCONFIGURE_ARGS+= --disable-deny XCONFIGURE_ARGS+= --disable-cron X Xpost-build: X @mv ${WRKSRC}/tac_plus/tac_plus.1 ${WRKSRC}/tac_plus/tac_plus.8 X Xpost-install: X @if [ ! -f ${PREFIX}/etc/rc.d/tac_plus.sh ]; then \ X ${ECHO} "Installing ${PREFIX}/etc/rc.d/tac_plus.sh startup file."; \ X ${INSTALL_SCRIPT} -m 751 ${FILESDIR}/tac_plus.sh ${PREFIX}/etc/rc.d/tac_plus.sh; \ X fi X ${INSTALL_SCRIPT} -m 644 ${WRKSRC}/lib/libutil/ttys ${PREFIX}/etc/tac_plus/ttys.example X ${INSTALL_SCRIPT} -m 644 ${WRKSRC}/tac_plus/aliases ${PREFIX}/etc/tac_plus/aliases.example X ${INSTALL_SCRIPT} -m 644 ${WRKSRC}/tac_plus/tac_plus.conf ${PREFIX}/etc/tac_plus/tac_plus.conf.example X -@mkdir -p ${PREFIX}/share/doc/tac_plus X ${INSTALL_SCRIPT} -m 644 ${WRKSRC}/tac_plus/users_guide ${PREFIX}/share/doc/tac_plus/users_guide X ${INSTALL_SCRIPT} -m 644 ${WRKSRC}/README ${PREFIX}/share/doc/tac_plus/README X X.include END-of-tac+ia/Makefile exit >Release-Note: >Audit-Trail: >Unformatted: To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message