r7665 - in trunk/BOOK: . introduction/welcome server/major

bdubbs at linuxfromscratch.org bdubbs at linuxfromscratch.org
Wed Dec 24 16:17:57 PST 2008


Author: bdubbs
Date: 2008-12-24 17:17:57 -0700 (Wed, 24 Dec 2008)
New Revision: 7665

Modified:
   trunk/BOOK/general.ent
   trunk/BOOK/introduction/welcome/changelog.xml
   trunk/BOOK/server/major/openssh.xml
Log:
Updated to openssh-5.1p1.

Modified: trunk/BOOK/general.ent
===================================================================
--- trunk/BOOK/general.ent	2008-12-24 22:18:34 UTC (rev 7664)
+++ trunk/BOOK/general.ent	2008-12-25 00:17:57 UTC (rev 7665)
@@ -346,7 +346,7 @@
 <!ENTITY net-tools-version            "1.60">
 <!ENTITY wireless-tools-version       "28">
 <!ENTITY ntp-version                  "4.2.4p5">
-<!ENTITY openssh-version              "4.7p1">
+<!ENTITY openssh-version              "5.1p1">
 <!ENTITY portmap-version              "6.0">
 <!ENTITY rsync-version                "3.0.2">
 <!ENTITY samba3-version               "3.0.30">

Modified: trunk/BOOK/introduction/welcome/changelog.xml
===================================================================
--- trunk/BOOK/introduction/welcome/changelog.xml	2008-12-24 22:18:34 UTC (rev 7664)
+++ trunk/BOOK/introduction/welcome/changelog.xml	2008-12-25 00:17:57 UTC (rev 7665)
@@ -44,6 +44,9 @@
       <para>December 24th, 2008</para>
       <itemizedlist>
         <listitem>
+          <para>[bdubbs] - Updated to openssh-5.1p1.</para>
+        </listitem>
+        <listitem>
           <para>[bdubbs] - Updated to openssl-0.9.8i.</para>
         </listitem>
         <listitem>

Modified: trunk/BOOK/server/major/openssh.xml
===================================================================
--- trunk/BOOK/server/major/openssh.xml	2008-12-24 22:18:34 UTC (rev 7664)
+++ trunk/BOOK/server/major/openssh.xml	2008-12-25 00:17:57 UTC (rev 7665)
@@ -6,10 +6,10 @@
 
   <!ENTITY openssh-download-http "http://sunsite.ualberta.ca/pub/OpenBSD/OpenSSH/portable/openssh-&openssh-version;.tar.gz">
   <!ENTITY openssh-download-ftp  "ftp://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-&openssh-version;.tar.gz">
-  <!ENTITY openssh-md5sum        "50a800fd2c6def9e9a53068837e87b91">
-  <!ENTITY openssh-size          "968 KB">
-  <!ENTITY openssh-buildsize     "16.2 MB">
-  <!ENTITY openssh-time          "0.5 SBU (additional 1.2 SBU to run the test suite)">
+  <!ENTITY openssh-md5sum        "03f2d0c1b5ec60d4ac9997a146d2faec">
+  <!ENTITY openssh-size          "1.0 MB">
+  <!ENTITY openssh-buildsize     "29 MB">
+  <!ENTITY openssh-time          "0.5 SBU (additional 1.3 SBU to run the test suite)">
 ]>
 
 <sect1 id="openssh" xreflabel="OpenSSH-&openssh-version;">
@@ -66,14 +66,17 @@
     <xref linkend="tcpwrappers"/>,
     <xref linkend="x-window-system"/>,
     <xref linkend="mitkrb"/> or <xref linkend="heimdal"/>,
-    <xref linkend="net-tools"/>,
-    <xref linkend="sysstat"/>,
     <ulink url="http://www.thrysoee.dk/editline/">libedit</ulink>
     (provides a command-line history feature to <command>sftp</command>),
     <ulink url="http://www.opensc-project.org/">OpenSC</ulink>, and
     <ulink
     url="http://www.citi.umich.edu/projects/smartcard/sectok.html">libsectok</ulink></para>
 
+    <bridgehead renderas="sect4">Optional Runtime (Used only to gather entropy)</bridgehead>
+    <para role="optional"><xref linkend="jdk"/>,
+    <xref linkend="net-tools"/>, and
+    <xref linkend="sysstat"/>.</para>
+
     <para condition="html" role="usernotes">User Notes:
     <ulink url='&blfs-wiki;/OpenSSH'/></para>
 
@@ -99,7 +102,7 @@
     <para><application>OpenSSH</application> is very sensitive to changes in
     the linked <application>OpenSSL</application> libraries. If you recompile
     <application>OpenSSL</application>, <application>OpenSSH</application> may
-    fail to startup. An alternative is to link against the static
+    fail to start up. An alternative is to link against the static
     <application>OpenSSL</application> library. To link against the static
     library, execute the following command:</para>
 
@@ -108,11 +111,9 @@
     <para>Install <application>OpenSSH</application> by running
     the following commands:</para>
 
-<screen><userinput>sed -i 's@ -ldes@@' configure &&
-./configure --prefix=/usr --sysconfdir=/etc/ssh --datadir=/usr/share/sshd \
+<screen><userinput>./configure --prefix=/usr --sysconfdir=/etc/ssh --datadir=/usr/share/sshd \
     --libexecdir=/usr/lib/openssh --with-md5-passwords \
-    --with-privsep-path=/var/lib/sshd \
-    --with-xauth=/usr/bin/xauth &&
+    --with-privsep-path=/var/lib/sshd &&
 make</userinput></screen>
 
     <para>If you linked <application>tcp_wrappers</application> into the
@@ -120,28 +121,21 @@
     you add 127.0.0.1 to the sshd line in <filename>/etc/hosts.allow</filename>
     if you have a restrictive <filename>/etc/hosts.deny</filename> file, or the
     test suite will fail. Additionally, the testsuite requires an installed
-    copy of <command>scp</command> to complete the mulitplexing tests.  To
-    run the test suite, issue the following commnds as the
-    <systemitem class="username">root</systemitem> user:</para>
+    copy of <command>scp</command> to complete the multiplexing tests.  To
+    run the test suite, first copy the scp program to  
+    <filename class="directory">/usr/bin</filename>, making sure that you 
+    back up any existing copy first.</para>
 
-<screen role="root"><userinput>if test -f /usr/bin/scp
-then
-    mv /usr/bin/scp /usr/bin/scp-bak
-fi &&
-cp scp /usr/bin/scp &&
-make tests 2>&1 | tee check.log
-grep "FATAL" check.log</userinput></screen>
+    <para>To run the test suite, issue the following commnds:</para>
 
+<screen role="root"><userinput>make tests 2>&1 | tee check.log
+grep FATAL check.log</userinput></screen>
+
     <para>If the above command produces no 'FATAL' errors, then proceed
-    with the installation, again as the
+    with the installation, as the
     <systemitem class="username">root</systemitem> user:</para>
 
-<screen role="root"><userinput>rm /usr/bin/scp &&
-if test -f /usr/bin/scp-bak
-then
-    rm /usr/bin/scp-bak
-fi &&
-make install &&
+<screen role="root"><userinput>make install &&
 install -v -m755 -d /usr/share/doc/openssh-&openssh-version; &&
 install -v -m644 INSTALL LICENCE OVERVIEW README* WARNING.RNG \
     /usr/share/doc/openssh-&openssh-version;</userinput></screen>
@@ -151,12 +145,6 @@
   <sect2 role="commands">
     <title>Command Explanations</title>
 
-    <para><command>sed -i 's@ -ldes@@' configure</command>:
-    This command fixes a build crash if you used the
-    <option>--with-kerberos5</option> parameter and you built the
-    <application>Heimdal</application> package in accordance with the BLFS
-    instructions. The command is harmless in all other instances.</para>
-
     <para><parameter>--sysconfdir=/etc/ssh</parameter>: This prevents
     the configuration files from being installed in
     <filename class="directory">/usr/etc</filename>.</para>
@@ -165,16 +153,6 @@
     puts the Ssh.bin file (used for SmartCard authentication) in
     <filename class="directory">/usr/share/sshd</filename>.</para>
 
-<!-- WOW, this description is really old, IIRC it was obsolete shortly
-     before I was an editor, as the hint became a part of both books.
-     I'll leave it in for now JIC - Delete Later
-    <para><parameter>- -with-md5-passwords</parameter>: This is required
-    if you made the changes recommended by the shadowpasswd_plus
-    LFS hint on your SSH server when you installed the Shadow Password
-    Suite or if you access a SSH server that authenticates by
-    user passwords encrypted with md5.</para>
--->
-
     <para><parameter>--with-md5-passwords</parameter>: This is required
     with the default configuration of Shadow password suite in LFS.</para>
 
@@ -195,6 +173,9 @@
     installed.
     </para>
 
+    <para><parameter>--with-kerberos5=/usr</parameter>: This option is used to 
+    include Heimdal support in the build.</para>
+
   </sect2>
 
   <sect2 role="configuration">
@@ -274,7 +255,7 @@
         <seg>scp, sftp, sftp-server, slogin, ssh, sshd, ssh-add, ssh-agent,
         ssh-keygen, ssh-keyscan, and ssh-keysign</seg>
         <seg>None</seg>
-        <seg>/etc/ssh, /var/lib/sshd and
+        <seg>/etc/ssh, /var/lib/sshd, /usr/lib/openssh, and
         /usr/share/doc/openssh-&openssh-version;</seg>
       </seglistitem>
     </segmentedlist>




More information about the blfs-book mailing list