rpms/cyrus-sasl
5
0
Fork 0
Code Issues Pull Requests Releases Activity

Add possibility to run the saslauth without root privilegies (#185614)

Browse Source
This commit is contained in:
Jan F. Chadima 2009-09-23 16:01:58 +00:00
parent d77589dc8a
commit ac2dd98c87
3 changed files with 24 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
cyrus-sasl.spec
View File

@ -1,10 +1,14 @@
%define username saslauth
%define hint "Saslauthd user"
%define homedir %{_var}/empty/%{username}
%define _plugindir2 %{_libdir}/sasl2 %define _plugindir2 %{_libdir}/sasl2
%define bootstrap_cyrus_sasl 0 %define bootstrap_cyrus_sasl 0
Summary: The Cyrus SASL library Summary: The Cyrus SASL library
Name: cyrus-sasl Name: cyrus-sasl
Version: 2.1.23 Version: 2.1.23
Release: 2%{?dist} Release: 3%{?dist}
License: BSD License: BSD
Group: System Environment/Libraries Group: System Environment/Libraries
# Source0 originally comes from ftp://ftp.andrew.cmu.edu/pub/cyrus-mail/; # Source0 originally comes from ftp://ftp.andrew.cmu.edu/pub/cyrus-mail/;
@ -41,6 +45,12 @@ BuildRequires: db4-devel
BuildRequires: openldap-devel BuildRequires: openldap-devel
%endif %endif
Requires(post): chkconfig, /sbin/service Requires(post): chkconfig, /sbin/service
Requires(pre): /usr/sbin/useradd /usr/sbin/groupadd
Requires(postun): /usr/sbin/userdel /usr/sbin/groupdel
Requires: /sbin/nologin
Provides: user(%username) = %hint
Provides: group(%username) = %hint
%description %description
The %{name} package contains the Cyrus implementation of SASL. The %{name} package contains the Cyrus implementation of SASL.
@ -292,6 +302,10 @@ rm -f $RPM_BUILD_ROOT%{_mandir}/cat8/saslauthd.8
%clean %clean
test "$RPM_BUILD_ROOT" != "/" && rm -rf $RPM_BUILD_ROOT test "$RPM_BUILD_ROOT" != "/" && rm -rf $RPM_BUILD_ROOT
%pre
/usr/sbin/groupadd -r %{username} 2> /dev/null || :
/usr/sbin/useradd -c \"%{hint}\" -g %{username} -s /sbin/nologin -r -d %{homedir} %{username} 2> /dev/null || :
%post %post
/sbin/chkconfig --add saslauthd /sbin/chkconfig --add saslauthd
@ -305,6 +319,8 @@ fi
if [ $1 -ne 0 ] ; then if [ $1 -ne 0 ] ; then
/sbin/service saslauthd condrestart 2>&1 > /dev/null /sbin/service saslauthd condrestart 2>&1 > /dev/null
fi fi
/usr/sbin/userdel %{username}
/usr/sbin/groupdel %{username}
%post lib -p /sbin/ldconfig %post lib -p /sbin/ldconfig
%postun lib -p /sbin/ldconfig %postun lib -p /sbin/ldconfig
@ -371,6 +387,9 @@ fi
%{_sbindir}/sasl2-shared-mechlist %{_sbindir}/sasl2-shared-mechlist
%changelog %changelog
* Wed Sep 23 2009 Jan F. Chadima <jchadima@redhat.com> - 2.1.23-3
- Add possibility to run the saslauth without root privilegies (#185614)
* Fri Aug 21 2009 Tomas Mraz <tmraz@redhat.com> - 2.1.23-2 * Fri Aug 21 2009 Tomas Mraz <tmraz@redhat.com> - 2.1.23-2
- rebuilt with new openssl - rebuilt with new openssl

2
saslauthd.init
View File

@ -38,7 +38,7 @@ lockfile=/var/lock/subsys/$prog
start() { start() {
[ -x $path ] || exit 5 [ -x $path ] || exit 5
echo -n $"Starting $prog: " echo -n $"Starting $prog: "
daemon $path -m $SOCKETDIR -a $MECH $FLAGS daemon $DAEMONOPTS $path -m $SOCKETDIR -a $MECH $FLAGS
RETVAL=$? RETVAL=$?
echo echo
[ $RETVAL -eq 0 ] && touch $lockfile [ $RETVAL -eq 0 ] && touch $lockfile

3
saslauthd.sysconfig
View File

@ -6,6 +6,9 @@ SOCKETDIR=/var/run/saslauthd
# of which mechanism your installation was compiled with the ablity to use. # of which mechanism your installation was compiled with the ablity to use.
MECH=pam MECH=pam
# Options sent to the saslauthd. If the MECH is other than "pam" uncomment the next line.
# DAEMONOPTS=--user saslauth
# Additional flags to pass to saslauthd on the command line. See saslauthd(8) # Additional flags to pass to saslauthd on the command line. See saslauthd(8)
# for the list of accepted flags. # for the list of accepted flags.
FLAGS= FLAGS=