+Summary: High-performance and highly configurable RADIUS server
+URL: http://www.freeradius.org/
Name: freeradius
-Version: 0.5
+Version: 1.1
Release: 1
-
-Summary: High-performance and highly configurable RADIUS server
-URL: http://www.freeradius.org/
-Copyright: GPL
-Group: Networking/Daemons
-
-Prereq: /sbin/chkconfig
+License: GPL
+Group: Networking/Daemons
+Packager: FreeRADIUS.org
+Source0: %{name}-%{version}.tar.gz
+Prereq: /sbin/chkconfig
+BuildPreReq: libtool
# FIXME: snmpwalk, snmpget and rusers POSSIBLY needed by checkrad
-Requires: libtool
-Conflicts: cistron-radius
-
-Source: %{name}-%{version}.tar.gz
-# FIXME: won't be good to include these contrib examples?
-# Source1: http://www.ping.de/~fdc/radius/radacct-replay
-# Source2: http://www.ping.de/~fdc/radius/radlast-0.03
-# Source3: ftp://ftp.freeradius.org/pub/radius/contrib/radwho.cgi
-
-%define setupdir %{name}-%{version}
-BuildRoot: /var/tmp/%{setupdir}.root
+Provides: radiusd
+Conflicts: cistron-radius
+BuildRoot: %{_tmppath}/%{name}-root
%description
-The FreeRADIUS Server Project is an attempt to create a high-performance
-and highly configurable GPL'd RADIUS server. It is generally similar to
-the Livingston 2.0 RADIUS server, but has a lot more features, and is
-much more configurable.
+The FreeRADIUS Server Project is a high-performance and highly
+configurable GPL'd RADIUS server. It is somewhat similar to the
+Livingston 2.0 RADIUS server, but has many more features, and is much
+more configurable.
%prep
-%setup -qn %{setupdir}
-
-# FIXME: some folks prefer -dist files ... rename them or not?
-#cd raddb
-#chmod 640 clients naspasswd radiusd.conf.in
-#cd ..
+%setup
%build
CFLAGS="$RPM_OPT_FLAGS" \
-%configure --prefix=/usr --localstatedir=/var --sysconfdir=/etc \
+%configure --prefix=%{_prefix} \
+ --localstatedir=%{_localstatedir} \
+ --sysconfdir=%{_sysconfdir} \
--mandir=%{_mandir} \
--with-threads \
--with-thread-pool \
+ --with-system-libtool \
+ --disable-ltdl-install \
+ --with-ltdl-lib=/usr/lib \
+ --with-ltdl-include=/usr/include \
--with-gnu-ld \
- --disable-ltdl-install
+ --with-rlm-sql_postgresql-include-dir=/usr/include/pgsql \
+ --with-rlm-krb5-include-dir=/usr/kerberos/include \
+ --with-rlm-krb5-lib-dir=/usr/kerberos/lib
make
%install
-# prepare $RPM_BUILD_ROOT
-rm -rf $RPM_BUILD_ROOT
+[ "$RPM_BUILD_ROOT" != "/" ] && rm -rf $RPM_BUILD_ROOT
+
mkdir -p $RPM_BUILD_ROOT/etc/{logrotate.d,pam.d,rc.d/init.d}
-# install files
make install R=$RPM_BUILD_ROOT
+RADDB=$RPM_BUILD_ROOT/etc/raddb
+# set radiusd as default user/group
+perl -i -pe 's/^#user =.*$/user = radiusd/' $RADDB/radiusd.conf
+perl -i -pe 's/^#group =.*$/group = radiusd/' $RADDB/radiusd.conf
+# shadow password file MUST be defined on Linux
+perl -i -pe 's/# shadow =/shadow =/' $RADDB/radiusd.conf
+
# remove unneeded stuff
-rm -f $RPM_BUILD_ROOT/usr/{man/man8/builddbm.8,sbin/rc.radiusd}
+rm -f $RPM_BUILD_ROOT%{_mandir}/man8/builddbm.8
+rm -f $RPM_BUILD_ROOT%{_prefix}/sbin/rc.radiusd
cd redhat
-install -m 555 rc.radiusd-redhat $RPM_BUILD_ROOT/etc/rc.d/init.d/radiusd
+install -m 755 rc.radiusd-redhat $RPM_BUILD_ROOT/etc/rc.d/init.d/radiusd
install -m 644 radiusd-logrotate $RPM_BUILD_ROOT/etc/logrotate.d/radiusd
install -m 644 radiusd-pam $RPM_BUILD_ROOT/etc/pam.d/radius
cd ..
+%pre
+/usr/sbin/useradd -c "radiusd user" -r -s /bin/false -u 95 -d / radiusd 2>/dev/null || :
+
%preun
if [ "$1" = "0" ]; then
+ /sbin/service radiusd stop > /dev/null 2>&1
/sbin/chkconfig --del radiusd
fi
%post
-if [ "$1" = "0" ]; then
- /sbin/chkconfig --add radiusd
-fi
-if [ ! -d /var/log/radius ]; then
- mkdir -p /var/log/radius
-fi
-# done here to avoid messing up existing installations
-for i in radius radius/radutmp radius/radwtmp # radius/radius.log radius/radwatch.log radius/checkrad.log
+/sbin/ldconfig
+/sbin/chkconfig --add radiusd
+
+# Done here to avoid messing up existing installations
+for i in radius/radutmp radius/radwtmp radius/radius.log # radius/radwatch.log radius/checkrad.log
do
- touch /var/log/$i
- chown root.root /var/log/$i
+ touch /var/log/$i
+ chown radiusd:radiusd /var/log/$i
+ chmod 600 /var/log/$i
done
+%postun
+if [ "$1" -ge "1" ]; then
+ /sbin/service radiusd condrestart >/dev/null 2>&1
+fi
+if [ $1 = 0 ]; then
+ /usr/sbin/userdel radiusd > /dev/null 2>&1 || :
+fi
+/sbin/ldconfig
+
%clean
-rm -rf $RPM_BUILD_ROOT
+[ "$RPM_BUILD_ROOT" != "/" ] && rm -rf $RPM_BUILD_ROOT
%files
%defattr(-,root,root)
%config /etc/pam.d/radius
%config /etc/logrotate.d/radiusd
%config /etc/rc.d/init.d/radiusd
-%config /etc/raddb/*
-/usr/man/*
-/usr/bin/*
-/usr/sbin/*
-/usr/lib/*
-#%dir(missingok) /var/log/radius/radacct/
-#/var/log/radius/checkrad.log
-#/var/log/radius/radwatch.log
-#/var/log/radius/radius.log
-#/var/log/radius/radwtmp
-#/var/log/radius/radutmp
+%config (noreplace) /etc/raddb/*
+%{_bindir}/*
+%{_datadir}/%{name}
+%{_libdir}/*
+%{_mandir}/*/*
+%{_sbindir}/*
+%attr(0700,radiusd,radiusd) %dir /var/log/radius
+%attr(0700,radiusd,radiusd) %dir /var/log/radius/radacct
+%attr(0700,radiusd,radiusd) %dir /var/run/radiusd
%changelog
-* Wed Feb 13 2001 Marko Myllynen
-- use %{_mandir} instead of /usr/man
-- rename %postin as %post
+* Fri May 23 2003 Marko Myllynen
+- update for 0.9
+
+* Wed Sep 4 2002 Marko Myllynen
+- fix libtool issues for good
+
+* Thu Aug 22 2002 Marko Myllynen
+- update for 0.7/0.8
+
+* Tue Jun 18 2002 Marko Myllynen
+- run as radiusd user instead of root
+- added some options for configure
+
+* Thu Jun 6 2002 Marko Myllynen
+- set noreplace for non-dictionary files in /etc/raddb
+
+* Sun May 26 2002 Frank Cusack <frank@google.com>
+- move /var dirs from %%post to %%files
+
+* Thu Feb 14 2002 Marko Myllynen
+- use dir name macros in all configure options
+- libtool is required only when building the package
+- misc clean ups
+
+* Wed Feb 13 2002 Marko Myllynen
+- use %%{_mandir} instead of /usr/man
+- rename %%postin as %%post
- clean up name/version
* Fri Jan 18 2002 Frank Cusack <frank@google.com>
-- remove (noreplace) for /etc/raddb/*
+- remove (noreplace) for /etc/raddb/* (due to rpm bugs)
* Fri Sep 07 2001 Ivan F. Martinez <ivanfm@ecodigit.com.br>
- changes to make compatible with default config file shipped
* Fri Jun 16 2000 Bruno Lopes F. Cabral <bruno@openline.com.br>
- Initial release
-