rpms/freeradius
7
0
Fork 0
Code Issues Pull Requests Releases Activity

[tw]

Browse Source 
- radiusd expects /etc/raddb to not be world readable or writable
    /etc/raddb now belongs to radiusd, post script sets permissions
This commit is contained in:
Thomas Woerner 2007-06-15 15:36:08 +00:00
parent 4fb033c6b3
commit 24f5fed452
1 changed files with 33 additions and 26 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

59
freeradius.spec
View File

@ -1,7 +1,7 @@
Summary: High-performance and highly configurable free RADIUS server Summary: High-performance and highly configurable free RADIUS server
Name: freeradius Name: freeradius
Version: 1.1.6 Version: 1.1.6
Release: 1%{?dist} Release: 2%{?dist}
License: GPL License: GPL
Group: System Environment/Daemons Group: System Environment/Daemons
URL: http://www.freeradius.org/ URL: http://www.freeradius.org/
@ -159,6 +159,7 @@ rm -rf $RPM_BUILD_ROOT
%post %post
/bin/chown -R radiusd.radiusd %{_sysconfdir}/raddb
/sbin/ldconfig /sbin/ldconfig
if [ $1 = 1 ]; then if [ $1 = 1 ]; then
/sbin/chkconfig --add radiusd /sbin/chkconfig --add radiusd
@ -174,6 +175,7 @@ if [ $1 = 0 ]; then
/sbin/chkconfig --del radiusd /sbin/chkconfig --del radiusd
fi fi
%postun %postun
if [ $1 -ge 1 ]; then if [ $1 -ge 1 ]; then
/sbin/service radiusd condrestart >/dev/null 2>&1 || : /sbin/service radiusd condrestart >/dev/null 2>&1 || :
@ -187,28 +189,29 @@ fi
%config (noreplace) %{_sysconfdir}/pam.d/radiusd %config (noreplace) %{_sysconfdir}/pam.d/radiusd
%config (noreplace) %{_sysconfdir}/logrotate.d/radiusd %config (noreplace) %{_sysconfdir}/logrotate.d/radiusd
%config (noreplace) %{_initrddir}/radiusd %config (noreplace) %{_initrddir}/radiusd
%dir %{_sysconfdir}/raddb %dir %attr(0700,radiusd,radiusd) %{_sysconfdir}/raddb
%config (noreplace) %{_sysconfdir}/raddb/acct_users %dir %attr(0700,radiusd,radiusd) %{_sysconfdir}/raddb/certs
%config (noreplace) %{_sysconfdir}/raddb/attrs %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/acct_users
%config (noreplace) %{_sysconfdir}/raddb/certs %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/attrs
%config (noreplace) %{_sysconfdir}/raddb/clients %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/certs/*
%config (noreplace) %{_sysconfdir}/raddb/clients.conf %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/clients
%config (noreplace) %{_sysconfdir}/raddb/dictionary %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/clients.conf
%config (noreplace) %{_sysconfdir}/raddb/eap.conf %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/dictionary
%config (noreplace) %{_sysconfdir}/raddb/example.pl %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/eap.conf
%config (noreplace) %{_sysconfdir}/raddb/hints %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/example.pl
%config (noreplace) %{_sysconfdir}/raddb/huntgroups %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/hints
%config (noreplace) %{_sysconfdir}/raddb/ldap.attrmap %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/huntgroups
%config (noreplace) %{_sysconfdir}/raddb/naslist %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/ldap.attrmap
%config (noreplace) %{_sysconfdir}/raddb/naspasswd %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/naslist
%config (noreplace) %{_sysconfdir}/raddb/otp.conf %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/naspasswd
%config (noreplace) %{_sysconfdir}/raddb/preproxy_users %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/otp.conf
%config (noreplace) %{_sysconfdir}/raddb/proxy.conf %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/preproxy_users
%config (noreplace) %{_sysconfdir}/raddb/radiusd.conf %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/proxy.conf
%config (noreplace) %{_sysconfdir}/raddb/realms %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/radiusd.conf
%config (noreplace) %{_sysconfdir}/raddb/snmp.conf %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/realms
%config (noreplace) %{_sysconfdir}/raddb/sqlippool.conf %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/snmp.conf
%config (noreplace) %{_sysconfdir}/raddb/users %config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/sqlippool.conf
%config %attr(0600,radiusd,radiusd) (noreplace) %{_sysconfdir}/raddb/users
%{_bindir}/* %{_bindir}/*
%{_libdir}/libeap*.so %{_libdir}/libeap*.so
%{_libdir}/libradius*.so %{_libdir}/libradius*.so
@ -268,21 +271,25 @@ fi
%files mysql %files mysql
%defattr(-,root,root,-) %defattr(-,root,root,-)
%{_sysconfdir}/raddb/sql.conf %attr(0600,radiusd,radiusd) %{_sysconfdir}/raddb/sql.conf
%{_libdir}/*_mysql*.so %{_libdir}/*_mysql*.so
%files postgresql %files postgresql
%defattr(-,root,root,-) %defattr(-,root,root,-)
%{_sysconfdir}/raddb/postgresql.conf %attr(0600,radiusd,radiusd) %{_sysconfdir}/raddb/postgresql.conf
%{_libdir}/*_postgresql*.so %{_libdir}/*_postgresql*.so
%files unixODBC %files unixODBC
%defattr(-,root,root,-) %defattr(-,root,root,-)
%{_sysconfdir}/raddb/mssql.conf %attr(0600,radiusd,radiusd) %{_sysconfdir}/raddb/mssql.conf
%{_libdir}/*_unixodbc*.so %{_libdir}/*_unixodbc*.so
%changelog %changelog
* Fri Jun 15 2007 Thomas Woerner <twoerner@redhat.com> 1.1.6-2
- radiusd expects /etc/raddb to not be world readable or writable
/etc/raddb now belongs to radiusd, post script sets permissions
* Fri Jun 15 2007 Thomas Woerner <twoerner@redhat.com> 1.1.6-1 * Fri Jun 15 2007 Thomas Woerner <twoerner@redhat.com> 1.1.6-1
- new version 1.1.6 - new version 1.1.6