X-Original-To: alpine-aports@mail.alpinelinux.org Delivered-To: alpine-aports@mail.alpinelinux.org Received: from mail.alpinelinux.org (dallas-a1.alpinelinux.org [127.0.0.1]) by mail.alpinelinux.org (Postfix) with ESMTP id 58E1BDC055F for ; Wed, 15 Jul 2015 19:07:55 +0000 (UTC) Received: from karif.server-speed.net (karif.server-speed.net [78.46.56.141]) (using TLSv1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.alpinelinux.org (Postfix) with ESMTPS id E6193DC0210 for ; Wed, 15 Jul 2015 19:07:54 +0000 (UTC) Received: from karif.server-speed.net (karif.server-speed.net [127.0.0.1]) by karif.server-speed.net (Postfix) with ESMTP id C20BF142B09; Wed, 15 Jul 2015 21:07:51 +0200 (CEST) X-Spam-Checker-Version: SpamAssassin 3.4.1 (2015-04-28) on karif.server-speed.net X-Spam-Level: X-Spam-Status: No, score=-101.9 required=5.0 tests=ALL_TRUSTED,BAYES_00 shortcircuit=no autolearn=ham autolearn_force=no version=3.4.1 X-Spam-Virus: No Received: from wallander (117-231.echostar.pl [213.156.117.231]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) (Authenticated sender: barthalion) by karif.server-speed.net (Postfix) with ESMTPSA; Wed, 15 Jul 2015 21:07:51 +0200 (CEST) Date: Wed, 15 Jul 2015 21:07:44 +0200 From: =?UTF-8?B?QmFydMWCb21pZWo=?= Piotrowski To: alpine-aports@lists.alpinelinux.org Cc: developer@it-offshore.co.uk Subject: Re: [alpine-aports] [PATCH 1/3] testing/tinyssh: new aport Message-ID: <20150715210744.7cdf6982@wallander> In-Reply-To: <55A6A281.6080104@it-offshore.co.uk> References: <1436979202-54739-1-git-send-email-developer@it-offshore.co.uk> <1436979202-54739-2-git-send-email-developer@it-offshore.co.uk> <20150715190142.16141929@wallander> <55A6A281.6080104@it-offshore.co.uk> X-Mailer: Claws Mail 3.11.1 (GTK+ 2.24.28; x86_64-unknown-linux-gnu) X-Clacks-Overhead: GNU Terry Pratchett X-Mailinglist: alpine-aports Precedence: list List-Id: Alpine Development List-Unsubscribe: List-Post: List-Help: List-Subscribe: MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; boundary="Sig_/1TaG1pxHr.FBuqU2DmEFxU0"; protocol="application/pgp-signature" X-Virus-Scanned: ClamAV using ClamSMTP --Sig_/1TaG1pxHr.FBuqU2DmEFxU0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable On Wed, 15 Jul 2015 19:12:17 +0100 IT Developer wrote: > This builds using the release from the authors website (1st May) > http://mojzis.com/software/tinyssh/tinyssh-20150501.tar.bz2 (not the > github repo). >=20 > From the author's website : >=20 > Project timelime >=20 > experimental: 2014.01.01 - 2014.12.31 (experimentation) > alpha: expected 2015.01.01 - 2015.12.31 (not ready for production > use, ready for testing) > beta: expected 2016.01.01 - ????.??.?? (ready for production use) > stable: expected ????.??.?? - (ready for production use - > including post-quantum crypto) >=20 > It does not have SCP but it works just fine with Midnight Commander > for transferring files. >=20 > Stuart. >=20 >=20 > On 15/07/15 18:01, Bart=C5=82omiej Piotrowski wrote: > > On Wed, 15 Jul 2015 16:53:20 +0000 > > Stuart Cardall wrote: > >> tinyssh is a small ssh server which is secure by default > >> http://tinyssh.org/ > >> > >> It only accepts logins via key, uses secure cryptography & does NOT > >> depend on OpenSSL. > >> --- > >> testing/tinyssh/APKBUILD | 64 > >> ++++++++++++++++++++++++++++++++++++ > >> testing/tinyssh/tinyssh.confd | 8 +++++ > >> testing/tinyssh/tinyssh.initd | 43 ++++++++++++++++++++++++ > >> testing/tinyssh/tinyssh.post-install | 4 +++ 4 files changed, 119 > >> insertions(+) create mode 100644 testing/tinyssh/APKBUILD > >> create mode 100644 testing/tinyssh/tinyssh.confd > >> create mode 100644 testing/tinyssh/tinyssh.initd > >> create mode 100644 testing/tinyssh/tinyssh.post-install > >> > >> diff --git a/testing/tinyssh/APKBUILD b/testing/tinyssh/APKBUILD > >> new file mode 100644 > >> index 0000000..c7537a3 > >> --- /dev/null > >> +++ b/testing/tinyssh/APKBUILD > >> @@ -0,0 +1,64 @@ > >> +# Contributor: Stuart Cardall > >> +# Maintainer: Stuart Cardall > >> +pkgname=3Dtinyssh > >> +pkgver=3D20150501 > >> +pkgrel=3D0 > >> +pkgdesc=3D"Small SSH server using NaCl / TweetNaCl (no dependency on > >> OpenSSL)" +url=3D"http://tinyssh.org/" > >> +arch=3D"all" > >> +license=3D"CC0 1.0" > >> +subpackages=3D"$pkgname-doc" > >> +source=3D"$pkgname-$pkgver.tar.bz2::http://mojzis.com/software/$pkgna= me/$pkgname-$pkgver.tar.bz2 > >> + $pkgname.initd > >> + $pkgname.confd > >> + " > >> + > >> +_builddir=3D"$srcdir"/$pkgname-$pkgver > >> +prepare() { > >> + local i > >> + cd "$_builddir" > >> + for i in $source; do > >> + case $i in > >> + *.patch) msg $i; patch -p1 -i "$srcdir"/$i || > >> return 1;; > >> + esac > >> + done > >> +} > >> + > >> +build() { > >> + cd "$_builddir" > >> + make || return 1 > >> +} > >> + > >> +package() { > >> + cd "$_builddir" > >> + make install DESTDIR=3D"${pkgdir}" || return 1 > >> + mkdir -p "$pkgdir"/etc/$pkgname > >> + install -m755 -D "$srcdir"/$pkgname.initd \ > >> + "$pkgdir"/etc/init.d/tinysshd || return 1 > >> + install -m644 -D "$srcdir"/$pkgname.confd \ > >> + "$pkgdir"/etc/conf.d/tinysshd || return 1 > >> + # post-install message > >> + mkdir -p "$pkgdir/usr/share/doc/$pkgname" > >> + cat > $pkgdir/usr/share/doc/$pkgname/README.alpine < >> +TinySSH can be run in 3 different ways: > >> +-------------------------------------- > >> +(1) /etc/init.d/tinysshd (requires tcpserver & takes care of key > >> generation) + > >> +(2) via inetd (you will need to 'tinysshd-makekeys ' > >> manually): + > >> +echo '22 stream tcp nowait root /usr/sbin/tinysshd tinysshd -l > >> -v /etc/tinyssh/sshkeys' >> /etc/inetd.conf +rc-service inetd start > >> + > >> +(3) Using runit with either (1) or (2) > >> +EOF > >> +} > >> + > >> +md5sums=3D"0e8b4add3fa6c4481e7b8159aca75b2f > >> tinyssh-20150501.tar.bz2 +78ec724804035bae29e1c47abec737d8 > >> tinyssh.initd +83e705f0f71db5ae0d8530edafa63497 tinyssh.confd" > >> +sha256sums=3D"ccaee75ee04252c7e7db1e06e74e4c55b53911c310a0dc5e1288c0f= eb73a1470 > >> tinyssh-20150501.tar.bz2 > >> +b3584c463f6ba0de6a5fe2e28fb98cd8ef65a55f17a0f4c877f61f54019ef34c > >> tinyssh.initd > >> +c6c67395e7230d75077734f0b08d5f8c76f11aaef27878b013b7bd68dd7ba774 > >> tinyssh.confd" > >> +sha512sums=3D"780e4aa87fc5afbd0818f1c815c0e95a9ec5b096efedbc49d544921= 95725bbdf3fe860cc4b84a5e9b15b9b568fd0398e48601da3af22b3dfd64e4214d4797fbe > >> tinyssh-20150501.tar.bz2 > >> +d10f995c6687e706453e51d06b3466427d476036efdbd86db2f9330281e46049bf2e3= 698208524b3f70cdbd30373f5bf46c7164dd626d22b3fa9a75ca5d8d478 > >> tinyssh.initd > >> +4513bd0d43ef0825fbd77365a8a7adefcd99211102df76003becf7e3a09a47ad9bbd1= 6a68c3fadfb7868e0562f8d42a26106b7582cb70490a7e52a7d1e6110e9 > >> tinyssh.confd" diff --git a/testing/tinyssh/tinyssh.confd > >> b/testing/tinyssh/tinyssh.confd new file mode 100644 index > >> 0000000..d7ba22a --- /dev/null +++ b/testing/tinyssh/tinyssh.confd > >> @@ -0,0 +1,8 @@ +# TinySSH conf.d file for Alpine Linux + +# > >> Specify daemon options here: +# OPTIONS=3D"-l -v" > >> + > >> +# override config directory / port here: > >> +# CONFDIR=3D/etc/tinyssh > >> +# PORT=3D22 > >> diff --git a/testing/tinyssh/tinyssh.initd > >> b/testing/tinyssh/tinyssh.initd new file mode 100644 > >> index 0000000..364ffb2 > >> --- /dev/null > >> +++ b/testing/tinyssh/tinyssh.initd > >> @@ -0,0 +1,43 @@ > >> +#!/sbin/openrc-run > >> +# Alpine Linux init.d for TinySSH > >> +# Copyright 2015 Stuart Cardall (developer@it-offshore.co.uk) > >> +# Distributed under the terms of the GNU General Public License, > >> v2 or later # + > >> +name=3Dtinysshd > >> +daemon=3D/usr/sbin/$name > >> +keygen=3D$daemon-makekey > >> +CONFDIR=3D${CONFDIR:-/etc/tinyssh} > >> +keydir=3D${CONFDIR}/sshkeys > >> +OPTIONS=3D${OPTIONS:-\-v -l} > >> +PORT=3D${PORT:-22} > >> +pidfile=3D/var/run/$name.pid > >> +server_opts=3D"-HRDl0 0.0.0.0 ${PORT} $daemon ${OPTIONS} $keydir" > >> + > >> +depend() { > >> + use net > >> + after logger firewall > >> +} > >> + > >> +checkconfig() { > >> + checkpath --directory ${CONFDIR} > >> + eval $keygen $keydir 2>/dev/null > >> + # tinyssh also runs from inetd without tcpserver > >> + if [ ! -f /usr/bin/tcpserver ]; then > >> + apk add --quiet ucspi-tcp > >> + fi > >> +} > >> + > >> +start() { > >> + checkconfig > >> + ebegin "Starting ${name}" > >> + start-stop-daemon --start --make-pidfile > >> --background --pidfile $pidfile \ > >> + --exec tcpserver -- $server_opts > >> + eend $? > >> +} > >> + > >> +stop() { > >> + ebegin "Stopping ${name}" > >> + start-stop-daemon --stop --quiet \ > >> + --pidfile $pidfile > >> + eend $? > >> +} > >> diff --git a/testing/tinyssh/tinyssh.post-install > >> b/testing/tinyssh/tinyssh.post-install new file mode 100644 > >> index 0000000..33ba55b > >> --- /dev/null > >> +++ b/testing/tinyssh/tinyssh.post-install > >> @@ -0,0 +1,4 @@ > >> +#!/bin/sh > >> + > >> +echo '22 stream tcp nowait root /usr/sbin/tinysshd tinysshd -l > >> -v /etc/tinyssh/keys' >> /etc/inetd.conf + > > Is it still developed? No commits since March. > > > > BP >=20 I don't understand the purpose of the git repository linked on upstream website if it doesn't correspond to "release" tarball. I'm leaving the decision to Natanael. BP --Sig_/1TaG1pxHr.FBuqU2DmEFxU0 Content-Type: application/pgp-signature Content-Description: OpenPGP digital signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQEcBAEBCAAGBQJVpq+AAAoJELvkN3FIcyip0jcH/3Grw0XHNymcq7Wkj8TJLBSD EfoBWD4GUo44by6M46ZLwRnuv2LhNprNmPdE5lG/Cy7bez85YW5i3H9bSL3LLBFw 7esIBQeGZURcABbJ4EyhlbMzDK8nghg4ZQ3yQ7cT5LahiBOcSKFzHljXMl8oZuhw BYESqU9oIV4ZfP/gG2pEOpEQLCTooBcxUV1GKxsJU/cyCi6rgfFAcmT/57tu6S/K pxRTDUcm6o3+qyfRRMI2HYybngY6mWTX0VdFKi82ZU3w4C3lEJ7DNFItZn4uUcdy oIPU9IjtDobsu4cU0vIcEJ64++ikfzdvBiEu9g3oi6Ljg+xJQS1wbn4MmQQ4tnQ= =+NqJ -----END PGP SIGNATURE----- --Sig_/1TaG1pxHr.FBuqU2DmEFxU0-- --- Unsubscribe: alpine-aports+unsubscribe@lists.alpinelinux.org Help: alpine-aports+help@lists.alpinelinux.org ---