Hi,
pam currently depends on cracklib which brings in an 8.5mb dictionary.
It's quite easy to remove this dependency. Any objections to me
requesting a pam OLPC-3 branch and applying the attached changes on the
F-9 package?
This has been in joyride for the last few releases and nobody has
reported any breakage.
--- F-9/pam.spec 2008-05-21 04:37:37.000000000 -0400
+++ OLPC-3/pam.spec 2008-07-21 11:41:27.000000000 -0400
@@ -1,3 +1,4 @@
+%define minimal_build 1
%define db_version 4.6.21
%define db_conflicting_version 4.7.0
%define pam_redhat_version 0.99.9-1
@@ -5,7 +6,7 @@
Summary: A security tool which provides authentication for applications
Name: pam
Version: 1.0.1
-Release: 4%{?dist}
+Release: 5%{?dist}
# The library is BSD licensed with option to relicense as GPLv2+ - this option is redundant
# as the BSD license allows that anyway. pam_timestamp and pam_console modules are GPLv2+,
# pam_rhosts_auth module is BSD with advertising
@@ -48,13 +49,15 @@
%endif
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
-Requires: cracklib, cracklib-dicts >= 2.8
Requires(post): coreutils, /sbin/ldconfig
BuildRequires: autoconf >= 2.60
BuildRequires: automake, libtool
BuildRequires: bison, flex, sed
-BuildRequires: cracklib-devel, cracklib-dicts >= 2.8
BuildRequires: perl, pkgconfig, gettext
+%if %{minimal_build} == 0
+Requires: cracklib, cracklib-dicts >= 2.8
+BuildRequires: cracklib-devel, cracklib-dicts >= 2.8
+%endif
%if %{WITH_AUDIT}
BuildRequires: audit-libs-devel >= 1.0.8
Requires: audit-libs >= 1.0.8
@@ -160,6 +163,9 @@
%if ! %{WITH_AUDIT}
--disable-audit \
%endif
+%if %{minimal_build} == 1
+ --disable-cracklib \
+%endif
--with-db-uniquename=_pam
make
# we do not use _smp_mflags because the build of sources in yacc/flex fails
@@ -230,6 +236,9 @@
%if ! %{WITH_SELINUX}
[ ${dir} = "modules/pam_selinux" ] && continue
%endif
+%if %{minimal_build} == 1
+ [ ${dir} = "modules/pam_cracklib" ] && continue
+%endif
if ! ls -1 $RPM_BUILD_ROOT%{_moduledir}/`basename ${dir}`*.so ; then
echo ERROR `basename ${dir}` did not build a module.
exit 1
@@ -296,7 +305,9 @@
%{_moduledir}/pam_access.so
%{_moduledir}/pam_chroot.so
%{_moduledir}/pam_console.so
+%if %{minimal_build} == 0
%{_moduledir}/pam_cracklib.so
+%endif
%{_moduledir}/pam_debug.so
%{_moduledir}/pam_deny.so
%{_moduledir}/pam_echo.so
@@ -384,6 +395,9 @@
%doc doc/adg/*.txt doc/adg/html
%changelog
+* Mon Jul 21 2008 Daniel Drake <[EMAIL PROTECTED]> 1.0.1-5
+- remove cracklib support
+
* Wed May 21 2008 Tomas Mraz <[EMAIL PROTECTED]> 1.0.1-4
- pam_namespace: allow safe creation of directories owned by user (#437116)
- pam_unix: fix multiple error prompts on password change (#443872)
--- F-9/system-auth.pamd 2006-09-04 10:31:09.000000000 -0400
+++ OLPC-3/system-auth.pamd 2008-07-21 11:40:30.000000000 -0400
@@ -7,8 +7,7 @@
account required pam_unix.so
-password required pam_cracklib.so try_first_pass retry=3
-password sufficient pam_unix.so try_first_pass use_authtok nullok md5 shadow
+password sufficient pam_unix.so try_first_pass nullok md5 shadow
password required pam_deny.so
session optional pam_keyinit.so revoke
_______________________________________________
Devel mailing list
[email protected]
http://lists.laptop.org/listinfo/devel
