1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
|
#!/bin/bash
#
# slackbuild for rssh-chroot
#
CWD="`pwd`"
cat << EOCAT
Please consider to run this script with the following things installed:
rssh
libsafe
EOCAT
if [ "$INTERACT" != "no" ]; then
echo "Hit ENTER do continue, Crtl-C to abort"
read crap
else
echo sleeping 3 seconds...
sleep 3
fi
if [ -f "/etc/slackbuildrc" ]; then
source /etc/slackbuildrc
fi
if [ -f "/root/.slackbuildrc" ]; then
source /root/.slackbuildrc
fi
# default settings
PRGNAM="rssh-chroot"
PACKAGE="$PRGNAM"
ARCH=${ARCH:=i486}
VERSION=${VERSION:=2.3.2}
BUILD=${BUILD:=2rha}
SRC_DIR=${SRC:=$CWD}
TMP=${TMP:=/tmp}
REPOS=${REPOS:=$TMP}
if [ "$ARCH" == "x86_64" ]; then
LIBDIR=/usr/lib64
else
LIBDIR=/usr/lib
fi
# adjust to where your rssh chroot system will be located
CHROOT_BASE="/var/users"
TMP="$TMP/$PACKAGE"
rm -rf $TMP
mkdir -p $TMP
cd $TMP
rm -rf $TMP/package-$PACKAGE
mkdir -p $TMP/package-$PACKAGE/install
cd $TMP/package-$PACKAGE
mkdir -p ./$CHROOT_BASE/{bin,etc,lib,lib/tls,usr/lib,usr/libexec,usr/bin,usr/doc,home,dev}
if [ "$ARCH" == "x86_64" ]; then
mkdir -p ./$CHROOT_BASE/{lib64/tls,usr/lib64}
fi
for ldfile in ld.so.cache ld.so.conf ld.so.preload; do
if [ -f "/etc/$ldfile" ]; then
cp /etc/$ldfile ./$CHROOT_BASE/etc
fi
done
# inspired by http://www.howtoforge.com/chrooted_ssh_howto_debian_p2
APPS="/usr/bin/rssh /usr/bin/scp /usr/libexec/sftp-server /usr/libexec/rssh_chroot_helper"
for app in $APPS; do
cp $app ./$CHROOT_BASE/$app
# obtain a list of related libraries
ldd $app > /dev/null
if [ "$?" = 0 ] ; then
libs="`ldd $app | sed -e 's/=>//' -e 's/(.*)//' | awk '{ print $1 "\n" $2 }'`"
for lib in $libs; do
if [ -a "$lib" ]; then
mkdir -p ./$CHROOT_BASE/`dirname $lib` > /dev/null 2>&1
cp $lib ./$CHROOT_BASE/$lib
fi
done
fi
done
# dont work inside vservers:
# mknod ./$CHROOT_BASE/dev/null c 1 3
cp /dev/null ./$CHROOT_BASE/dev/null
chmod 666 ./$CHROOT_BASE/dev/null
mkdir -p usr/doc/$PACKAGE-$VERSION
cp $CWD/COPYING* usr/doc/$PACKAGE-$VERSION/
cat << EOF > install/slack-desc
# HOW TO EDIT THIS FILE:
# The "handy ruler" below makes it easier to edit a package description. Line
# up the first '|' above the ':' following the base package name, and the '|'
# on the right side marks the last column you can put a character in. You must
# make exactly 11 lines for the formatting to be correct. It's also
# customary to leave one space after the ':'.
|-----handy-ruler-----------------------------------------------------|
rssh-chroot: rssh-chroot: a chroot jail to use with rssh restricted secure shell
rssh-chroot:
rssh-chroot:
rssh-chroot:
rssh-chroot:
rssh-chroot:
rssh-chroot:
rssh-chroot:
rssh-chroot:
rssh-chroot:
rssh-chroot:
EOF
chmod 755 ./$CHROOT_BASE/{bin,etc,lib,lib/tls,usr/lib,usr/libexec,usr/bin,usr/doc,dev}
chmod 111 ./$CHROOT_BASE/home
makepkg -c n $REPOS/$PACKAGE-$VERSION-$ARCH-$BUILD.tgz
if [ "$CLEANUP" == "yes" ]; then
rm -rf $TMP
fi
|