# Description: Services de shell sécurisé openssh
# URL: http://www.openssh.org/
# Maintainer: NuTyX coreteam
# Packager: thierryn1 at hispeed dot ch
# Depends on: openssh, linux-pam, pambase
# Run on: openssh,linux-pam,pambase

name=openssh-server
version=6.0p1
release=2
source=(http://ftp2.fr.openbsd.org/pub/OpenBSD/OpenSSH/portable/openssh-$version.tar.gz
	http://nutyx.meticul.eu/files/patchs/$name/service-sekong-01.patch
	sshd.pam)

build() {
	unset MAKEFLAGS
	source /etc/blfs-bootscripts
	wget http://www.linuxfromscratch.org/blfs/downloads/svn/$scripts-$scriptsversion.tar.bz2
#	wget  http://nutyx.meticul.eu/files/patchs/aaabasicfs/blfs-bootscripts-$scriptsversion.tar.bz2
	tar xvf $scripts-$scriptsversion.tar.bz2
	cd openssh-$version
#	sed -i "s:-lcrypto:/usr/lib/libcrypto.a -ldl:g" configure
#	sed -i "s/lkrb5 -ldes/lkrb5/" configure
	install -v -m700 -d $PKG/var/lib/sshd
	chown -v 0:2 $PKG/var/lib/sshd

	./configure --prefix=/usr \
		--sysconfdir=/etc/ssh \
		--libexecdir=/usr/lib/openssh \
		--with-tcp-wrappers \
		--with-md5-passwords \
		--with-pam \
		--with-privsep-path=/var/lib/sshd \
		--mandir=/usr/share/man \
		--infodir=/usr/share/info

	make DESTDIR=$PKG install

	install -Dm644 ../sshd.pam $PKG/etc/pam.d/sshd

	cd ../$scripts-$scriptsversion
	patch -Np1 -i ../service-sekong-01.patch
	make DESTDIR=$PKG install-sshd
	echo "PermitRootLogin no" >> $PKG/etc/ssh/sshd_config
	echo "ChallengeResponseAuthentication no" >> $PKG/etc/ssh/sshd_config
	echo "UsePAM yes" >> $PKG/etc/ssh/sshd_config

	# Suppression du client et ses man
	rm $PKG/etc/ssh/{ssh_config,moduli}
	rm -r $PKG/usr/bin
	rm -r $PKG/usr/share/man/man{1,5}
}