From owner-freebsd-ports Sun May 20 3:12:16 2001 Delivered-To: freebsd-ports@freebsd.org Received: from ringworld.nanolink.com (diskworld.nanolink.com [195.24.48.189]) by hub.freebsd.org (Postfix) with SMTP id 83CE937B422 for ; Sun, 20 May 2001 03:11:38 -0700 (PDT) (envelope-from roam@ringworld.nanolink.com) Received: (qmail 11071 invoked by uid 1000); 20 May 2001 10:10:45 -0000 Date: Sun, 20 May 2001 13:10:45 +0300 From: Peter Pentchev To: Bob K Cc: ports@freebsd.org, bastard@yip.org Subject: Re: socksified client-side identliciousness (fwd) Message-ID: <20010520131045.A459@ringworld.oblivion.bg> Mail-Followup-To: Bob K , ports@freebsd.org, bastard@yip.org References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: ; from melange@yip.org on Thu, May 17, 2001 at 10:45:23PM -0400 Sender: owner-freebsd-ports@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Hi, Thanks for forwarding this message. I'm trying to follow the directions for building a SOCKS5 with auth/ident support as we speak. On Thu, May 17, 2001 at 10:45:23PM -0400, Bob K wrote: > I figured this may or may not be of interest to the socks5 port > maintainer. Since the Makefile lists ports@freebsd.org, well, here. [snip, quoting from 's forwarded message] > Okay, well, socks5 does, in fact, have means of supporting retrieval of > ident info from socksified clients which connect to it, but the support is > very poorly documented and broken by default (even when explicitly > enabled). First of all, libident needs to be installed on the system > before compiling socks5, so I made and installed it. Then socks5 need to > have it's configuration script passed the "--with-ident" feature. Did > that, via the top-level port makefile, then compiled. Didn't work. The > script couldn't find ident.h, even though it was in the current path. Had > a look the goodies whut makes de script go, and it's statically coded to > look for it in /usr/include. ln -s'd it from /usr/local/include. Script > then found it, but now ld cannot pass -lident. /usr/local/lib/libident.a > is in library path, though, so I untar the socks5 distfile and have a look > at the socks5-v1.0r11/server Makefile for goodness. It's looking for the > lib statically, of course (yay dumbness, etc.). So, I symlink the real lib > to the /usr/lib dir, then try make again. It works. socks5 is now compiled > with client-retrieved ident support. I test it, and it works, with this > socks5.conf: Just as a kind of a progress report, all this can be overcome by giving an argument to the --with-ident option - the argument is the directory under which to look for include/ident.h and lib/libident. The attached patch to the SOCKS5 port accomplishes this if WITH_IDENT is defined at configure time. I'm working my way further down the directions.. G'luck, Peter -- .siht ekil ti gnidaer eb d'uoy ,werbeH ni erew ecnetnes siht fI Index: ports/net/socks5/Makefile =================================================================== RCS file: /home/ncvs/ports/net/socks5/Makefile,v retrieving revision 1.39 diff -u -r1.39 Makefile --- ports/net/socks5/Makefile 2001/05/17 07:34:47 1.39 +++ ports/net/socks5/Makefile 2001/05/20 10:06:01 @@ -36,6 +36,11 @@ MAN5= libsocks5.conf.5 socks5.conf.5 socks5.passwd.5 CONFIGURE_ENV= LIBS=-lcrypt +.if defined(WITH_IDENT) +CONFIGURE_ARGS+= --with-ident=${LOCALBASE} +BUILD_DEPENDS+= ${LOCALBASE}/lib/libident.a:${PORTSDIR}/security/libident +.endif + .if !defined(NOPORTDOCS) post-install: @${MKDIR} ${PREFIX}/share/examples/socks5 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message