Modifying 7.9p1 to use PAM

[Nico Kadel-Garcia]

On Fri, Feb 15, 2019 at 8:23 PM Nico Kadel-Garcia <nkadel at gmail.com> wrote:
>
> On Wed, Feb 13, 2019 at 11:04 PM Nico Kadel-Garcia <nkadel at gmail.com> wrote:
> >
> > On Thu, Feb 7, 2019 at 11:16 PM Damien Miller <djm at mindrot.org> wrote:

> > > You could try building a RPM using the contrib/openssh.spec in the
> > > source distribution. It includes PAM support by default.
> >
> > That .spec file is not well maintained. The Source URL for
> > x11-ssh-askpass, for example, is not valid, and it uses SysV init
> > rather than systemd.
>
> It's better than I thought. It apparently had not been updated for
> RHEL 7, but it did work for RHEL 6. I submitted some patches at
> https://github.com/openssh/openssh-portable/pull/117
>
> These do not necessarily match the sshd_config and ssh_config from
> RHEL, but it seems to work.

I updated the submitted patch a bit further, to clean up the pam-devel
dependencies and get it to compile on Fedora 29. The use of "RHL" as a
neme for an operating sysrtem is somewhat inconsistent: it seems to
refer to RHEL in some places, and "Red Hat Linux" in other places in
the changelog. However, the contrib/redhat/openssh.spec file also does
not include any direct support for systemd.  As much as I dislike many
aspects of systemd, it is the de facto standard for daemons on RHEL
and thus CentOS as well. This could make trying to weave in startup
daemons for network daemons or SSH tunnels quite awkward. I can't take
on weaving in systemd support right now, but would be happy to to test
it if anyone else cares to try.