1 # This is tac_plus rpm spec file
7 Summary: Cisco Tacacs+ Daemon
11 Copyright: Cisco systems, Inc.
12 Group: Networking/Daemons
13 Source: http://www.gazi.edu.tr/tacacs/src/tac_plus-%{ver}.tar.gz
14 Url: http://www.gazi.edu.tr/tacacs/
15 Packager: Jan Kratochvil <short@ucw.cz>
16 BuildRoot: /var/tmp/@PACKAGE@-%{ver}-%{rel}-root
17 #Docdir: %{prefix}/doc
19 %define __libtoolize true # we don't need it, is is otherwise run automatically
20 # don't %undefine it, there is expansion bug at least in rpm-4.0-4
23 TACACS+ daemon using with Cisco's NASs (Or other vendors) for AAA (Authentication , Authorization and Accounting) propose.
30 # configure script have some options describe below
31 # --with-pam : For PAM support
32 # --with-db : If you like to use db feature you must enable it
33 # --with-mysql: For MySQL database support
34 # --with-mysql-prefix: If you install MySQL libs other than /usr/lib
35 # --enable-maxsess: For check concurrent logins (It's uses finger!!)
36 # --with-pgsql With PgSQL Support
37 # --with-pgsql-prefix=PREFIX PgSQL prefix [default=/usr]
38 # --with-tacuid: If you like to run tac_plus specify UID
39 # --with-tacgid: If you like to run tac_plus specify GID
40 # --with-tacplus_pid=PREFIX Tac_plus pid file location [default=/var/run]
41 # --with-libwrap[=PATH] Compile in libwrap (tcp_wrappers) support
43 %configure --with-pam --with-db
47 rm -rf "$RPM_BUILD_ROOT"
49 install -d "$RPM_BUILD_ROOT"/%{_sysconfdir}/{tacacs,logrotate.d,pam.d,rc.d/{init.d,rc{0,1,2,3,4,5,6}.d}}
50 install -c -m 0755 tac_plus.init "$RPM_BUILD_ROOT"/etc/rc.d/init.d/tac_plus
51 install -b -c -m 0644 tac_plus.pam "$RPM_BUILD_ROOT"/etc/pam.d/pap
52 install -b -c -m 0644 tac_plus.rotate "$RPM_BUILD_ROOT"/etc/logrotate.d/tac_plus
55 rm -rf "$RPM_BUILD_ROOT"
58 /sbin/chkconfig --add tac_plus
62 if [ -f /var/lock/subsys/tac_plus ]; then
63 %{_sysconfdir}/rc.d/init.d/tac_plus stop
65 /sbin/chkconfig --del tac_plus
69 %defattr(-, root, root)
70 %config %{_sysconfdir}/tacacs/tac_plus.cfg
71 %config %{_sysconfdir}/pam.d/pap
72 %config %{_sysconfdir}/logrotate.d/tac_plus
73 %doc users_guide CHANGES convert.pl
74 %doc README.LDAP README.PAM tac_plus.sql
75 %dir %{_sysconfdir}/tacacs
76 %attr(750,root,root) %{_sysconfdir}/rc.d/init.d/tac_plus
77 %attr(750,root,root) %{_bindir}/generate_passwd
78 %attr(750,root,root) %{_sbindir}/tac_plus
79 %attr(644,root,root) %{_mandir}/man1/*
82 * Mon Jul 9 2001 Jan Kratochvil <short@ucw.cz>
83 - following changes supported by GTS (www.gts.com), cooperation by:
84 Pavel Ruzicka <pavel.ruzicka@gtsgroup.cz>
85 Michael Macek <michael.macek@gtsgroup.cz>
86 - multiple "member" keyword memberships supported
87 - "enlist" keyword supported to specify reverse memberships
88 - "host" entity unified with "user"/"group" entities
89 - "when" blocks implemented for NAS host based configuration
90 - "authorization = recursive" implemented for full recursivity
91 - line-trailing white spaces removed
92 - function prototypes cleanup and K&R C compatibility
93 - maintainer compilation is pedantic now, compiler warnings cleanup
94 - uncomplete transition from system-name conditions to autoconf style
95 - all Makefile options moved to configure.in
96 - Makefile.in rewritten to automake Makefile.am
97 - autogen script included for easy maintainer rebuilds
98 - tac_plus.h split to headers for each particular source file
99 - system regex is now preferred, own regex is just fallback
100 - several files renamed to prevent auto*/system headers conflicts
102 * Sun Mar 25 2001 Devrim SERAL<devrim@gazi.edu.tr>
103 - Added PostgreSQL authentication and accounting function
104 - Added tcpwrapper feature
105 - Added LDAP Authentication from Harpes Patrick (patrick.harpes@tudor.lu)
106 - Added more options to configure script
107 - Added time_limit function for control user loging time
108 - And more control for buffer overflow
110 * Fri Nov 17 2000 Devrim SERAL<devrim@tef.gazi.edu.tr>
111 - packet.c is pached for overflow problem
112 - Fix some log files name
113 - Add new config parameters for database accounting
114 - MySQL authentication code is functional
115 - MySQL accounting code ready but not well tested
117 * Mon Mar 10 2000 Devrim SERAL<devrim@tef.gazi.edu.tr>
118 - I am add PAM patch from Max Liccardo <ravel@tiscalinet.it>
119 - Change PAM code to authorize user
120 - Add db support from fil@artelecom.ru
121 - I am write MySQL authentication code
122 - MySQL code is still experimental
124 * Tue Nov 15 1999 Devrim SERAL<devrim@tef.gazi.edu.tr>
125 - Take out documentation
126 - Add more functional parameters tac_plus script
127 - Change some code to authenticate with /etc/shadow
128 - Fix some file permissions (Like accounting logs file)
130 * Sun Oct 24 1999 D'mon <dimone@ikar.ugol.ru>
131 - I moved to RedHat 6.0 =)
132 - changes of the package internals!
134 * Mon Oct 18 1999 D'mon <dimone@ikar.ugol.ru>
135 - massive remake to suit RedHat 5.2 standard
136 - patch for RedHat 5.2
138 * Wed Aug 4 1999 Erhan Bilgili <erhan@altay.adm.deu.edu.tr>
139 - fixes for the RPM_OPT_FLAGS
140 - change the buildroot to /var/tmp/tacacsd
142 * Wed Aug 4 1999 Devrim SERAL<devrim@tef.gazi.edu.tr>
143 - I just re-did the spec file
144 - And added Tacac FAQ