summaryrefslogtreecommitdiffstats
path: root/monkeysphere.spec
blob: 0257c76dc8011b2d3bee394ee619f53d7b279e45 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
# SpecFileLicense: GPLv3+

Name: monkeysphere
Summary: Use the OpenPGP web of trust to verify SSH connections
Version: 0.35
Release: 6%{?dist}
License: GPLv3+
Group: Applications/Internet
URL: http://web.monkeysphere.info/

Source: http://archive.monkeysphere.info/debian/pool/%{name}/m/%{name}/%{name}_%{version}.orig.tar.gz
Patch0: %{name}.sutosudo.patch

BuildArch: noarch

Requires(pre): shadow-utils
Requires: gnupg
Requires: openssh-clients
Requires: perl


%description
SSH key-based authentication is tried-and-true, but it lacks a true
Public Key Infrastructure for key certification, revocation and
expiration.  Monkeysphere is a framework that uses the OpenPGP web of
trust for these PKI functions.  It can be used in both directions: for
users to get validated host keys, and for hosts to authenticate users.


%prep
%setup -q
%patch0 -p0

%build
%{__make} %{?_smp_mflags}


%install
rm -rf %{buildroot}
make DESTDIR=%{buildroot} install
mkdir -p %{buildroot}%{_var}/lib/%{name}/authorized_keys
rm -r %{buildroot}%{_datadir}/%{name}/transitions/
chmod -cR 0644 %{buildroot}%{_mandir}/*/*
chmod -cR 0644 src/transitions/*
chmod -cR 0755 %{buildroot}%{_var}/lib/%{name}/


%clean
rm -rf %{buildroot}


%pre
getent group %{name} >/dev/null || groupadd -r %{name}
getent passwd %{name} >/dev/null || \
    useradd -r -g %{name} -d %{_var}/lib/%{name} -s /sbin/nologin \
    -c "Monkeysphere authentication user" %{name}
exit 0


%files
%defattr(-,root,root,-)
%doc COPYING README Changelog src/transitions/
%doc %dir %{_docdir}/%{name}
%doc %{_docdir}/%{name}/Changelog
%doc %{_docdir}/%{name}/examples/crontab
%doc %{_docdir}/%{name}/examples/ssh_config
%doc %{_docdir}/%{name}/examples/sshd_config

%dir %{_sysconfdir}/%{name}
%config(noreplace) %{_sysconfdir}/%{name}/%{name}-authentication.conf
%config(noreplace) %{_sysconfdir}/%{name}/%{name}-host.conf
%config(noreplace) %{_sysconfdir}/%{name}/%{name}.conf
%{_bindir}/%{name}
%{_bindir}/openpgp2ssh
%{_bindir}/pem2openpgp
%{_sbindir}/%{name}-authentication
%{_sbindir}/%{name}-host

%{_datadir}/%{name}/VERSION
%{_datadir}/%{name}/checkperms
%{_datadir}/%{name}/common
%{_datadir}/%{name}/defaultenv
%{_datadir}/%{name}/keytrans
%{_datadir}/%{name}/%{name}-authentication-keys-for-user
%{_datadir}/%{name}/m
%{_datadir}/%{name}/ma
%{_datadir}/%{name}/mh

%{_mandir}/*/*

%attr(-,root,root) %dir %{_var}/lib/%{name}
%attr(-,root,root) %dir %{_var}/lib/%{name}/authorized_keys


%changelog
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.35-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild

* Wed Jul 18 2012 Patrick Uiterwijk <puiterwijk@gmail.com> - 0.35-5
- Set owner correctly for /var/lib/monkeysphere and /var/lib/monkeysphere/authorized_keys for sshd to read them (RHBZ #732203)
- Make monkeysphere use sudo instead of su to make it able to execute privileged operations with /sbin/nologin login shell (RHBZ #732191)

* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.35-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild

* Thu May 19 2011 Bernie Innocenti <bernie@codewiz.org> - 0.35-3
- Add license meta-tag for spec file
- Import in Fedora

* Tue May 03 2011 Bernie Innocenti <bernie@codewiz.org> - 0.35-2
- Fix permissions on manpages
- Remove BuildRoot

* Tue May  3 2011 Michal Nowak <mnowak@redhat.com> - 0.35-1
- 0.35 bump
- guidelines fixes

* Sun Sep 12 2010 Bernie Innocenti <bernie@codewiz.org> - 0.31-2
- Fix problems identified by reviewer

* Sun Sep 12 2010 Bernie Innocenti <bernie@codewiz.org> - 0.31-1
- Update to 0.31

* Thu Apr 01 2010 Bernie Innocenti <bernie@codewiz.org> - 0.28-4
- Add /var/lib/monkeysphere/authorized_keys

* Tue Mar 30 2010 Bernie Innocenti <bernie@codewiz.org> - 0.28-3
- Give a real shell to monkeysphere user.
- Simplify pre/postun macros.

* Tue Mar 30 2010 Bernie Innocenti <bernie@codewiz.org> - 0.28-2
- Create user monkeysphere on installation.

* Tue Mar 30 2010 Bernie Innocenti <bernie@codewiz.org> - 0.28-1
- Update to 0.28.
- Various fixes for Fedora.

* Sat Nov 22 2008 Anonymous Coward <anonymous@example.com> - 0.22
- Initial release.