Name: skey Version: 0.2 Release: 8%{?dist} License: GPL Group: System Environment/Base Source0: http://www.tux.org/pub/net/olaf-kirch/dontuse/linux-skey-%{version}.tar.gz Source1: README.RPM Source2: ssh-askpass-skey.sh Source3: skeyssh.c Source4: README.skeyssh Patch0: skey-0.2-redhat.patch Patch1: skey-0.2-always.patch Patch2: skey-0.2-likeauth.patch Patch3: linux-skey-0.2-skeyinithacks.patch Patch4: skey-0.2-passwd.patch Patch5: skey-0.2-endian.patch BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n) BuildRequires: pam-devel Summary: An S/Key implementation %description The S/Key suite is the forerunner of OTP, the IETF One-Time Password system. S/Key uses the MD4 (MD5, in this version) algorithm to generate a list of nonsensical pass phrases using your password, an interation count, and a seed. Each pass phrase can be derived from the previous entry in the list. S/Key stores the Nth item in a table in %{_sysconfdir}/skeykeys when the user runs skeyinit, and authentication is accomplished by requesting the (N-1)th item in the list and verifying that the user's response can the used to generate the Nth item. If authentication is successful, the (N-1)th item is stored in the table for future use. %package -n pam_skey Summary: PAM modules for S/Key access Group: System Environment/Base Requires: skey %description -n pam_skey The pam_skey package contains PAM modules which allow system authentication to be performed using S/Key. %package sshhelper Summary: Helper tools for SSH client access with S/Key Group: Applications/Internet Requires: skey %description sshhelper The skey-sshhelper package contains helpers to simplify the use of Secure Shell client with a server requiring S/Key authentication. %prep %setup -q -n linux-skey-%{version} %patch0 -p1 -b .redhat %patch1 -p1 -b .always %patch2 -p1 -b .likeauth %patch3 -p1 -b .ewtsinithack %patch4 -p1 -b .passwd %patch5 -p1 -b .endian cp %{SOURCE1} %{SOURCE3} %{SOURCE4} . %build %configure make all skeyssh %install [ "$RPM_BUILD_ROOT" != "/" ] && rm -rf $RPM_BUILD_ROOT mkdir -p -m755 $RPM_BUILD_ROOT/%_lib/security/ %makeinstall PAMDIR=$RPM_BUILD_ROOT/%_lib/security/ install -m755 skeyssh $RPM_BUILD_ROOT%{_bindir} mkdir -p $RPM_BUILD_ROOT/usr/libexec/openssh install -m755 %{SOURCE2} $RPM_BUILD_ROOT/usr/libexec/openssh echo skey > $RPM_BUILD_ROOT%{_sysconfdir}/skeyaccess chmod 0755 $RPM_BUILD_ROOT/%_lib/security/*.so %clean [ "$RPM_BUILD_ROOT" != "/" ] && rm -rf $RPM_BUILD_ROOT %files %defattr(-,root,root) %doc ChangeLog README %attr(0600,root,root) %config(noreplace) %{_sysconfdir}/skeykeys %attr(0644,root,root) %config(noreplace) %{_sysconfdir}/skeyaccess %attr(0755,root,root) %{_bindir}/skey %attr(0755,root,root) %{_bindir}/skeyssh %attr(4755,root,root) %{_sbindir}/skeyinit %attr(0644,root,root) %{_mandir}/*/* %files -n pam_skey %doc README.RPM %attr(0755,root,root) /%_lib/security/pam_skey_access.so %attr(0755,root,root) /%_lib/security/pam_skey.so %files sshhelper %doc README.skeyssh %attr(0755,root,root) %{_bindir}/skeyssh %attr(0755,root,root) /usr/libexec/openssh/*.sh %changelog * Sat Sep 23 2006 David Woodhouse 0.2-8 - Include skeyssh helper, split it and pam_skey into separate package * Thu Apr 15 2004 David Woodhouse 0.2-7 - Make it work on big-endian machines * Fri Jul 18 2003 David Woodhouse 0.2-6 - Allow passphrase on command line * Wed Mar 19 2003 Matthew Galgoci - import into cvs and clean up spec file a bit * Thu Nov 29 2001 Matthew Galgoci - integrate pam likeauth patch from nalin * Tue Sep 4 2001 Matthew Galgoci - add ewt's skeyinit hack and bump release to 4 * Wed Nov 29 2000 Nalin Dahyabhai - an initial build