1 files changed, 22 insertions, 24 deletions
diff --git a/contrib/aix/buildbff.sh b/contrib/aix/buildbff.sh
index 09b9c118c..97a7cbbba 100755
--- a/contrib/aix/buildbff.sh
+++ b/contrib/aix/buildbff.sh
@@ -1,7 +1,7 @@
 #!/bin/sh
 #
 # buildbff.sh: Create AIX SMIT-installable OpenSSH packages
-# $Id: buildbff.sh,v 1.8 2005/03/29 13:24:12 dtucker Exp $
+# $Id: buildbff.sh,v 1.10 2006/09/10 03:24:19 dtucker Exp $
 #
 # Author: Darren Tucker (dtucker at zip dot com dot au)
 # This file is placed in the public domain and comes with absolutely
@@ -23,6 +23,8 @@ umask 022
 startdir=`pwd`
+perl -v >/dev/null || (echo perl required; exit 1)
 # Path to inventory.sh: same place as buildbff.sh
 if  echo $0 | egrep '^/'
 then
@@ -200,33 +202,29 @@ do
 done
 echo
-# Create PrivSep user if PrivSep not disabled in config
+# Create PrivilegeSeparation user and group if not present
-echo Creating PrivSep prereqs if required.
+echo Checking for PrivilegeSeparation user and group.
-if egrep '^[ \t]*UsePrivilegeSeparation[ \t]+no' $sysconfdir/sshd_config >/dev/null
+if cut -f1 -d: /etc/group | egrep '^'$SSH_PRIVSEP_USER'\$' >/dev/null
 then
-        echo "UsePrivilegeSeparation disabled in config, not creating PrivSep user,"
+        echo "PrivSep group $SSH_PRIVSEP_USER already exists."
-        echo "group or chroot directory."
 else
-        echo "UsePrivilegeSeparation enabled in config (or defaulting to on)."
+        echo "Creating PrivSep group $SSH_PRIVSEP_USER."
+        mkgroup -A $SSH_PRIVSEP_USER
-        # create group if required
+fi
-        if cut -f1 -d: /etc/group | egrep '^'$SSH_PRIVSEP_USER'\$' >/dev/null
-        then
-                echo "PrivSep group $SSH_PRIVSEP_USER already exists."
-        else
-                echo "Creating PrivSep group $SSH_PRIVSEP_USER."
-                mkgroup -A $SSH_PRIVSEP_USER
-        fi
-        # Create user if required
+# Create user if required
-        if lsuser "$SSH_PRIVSEP_USER" >/dev/null
+if lsuser "$SSH_PRIVSEP_USER" >/dev/null
-        then
+then
-                echo "PrivSep user $SSH_PRIVSEP_USER already exists."
+        echo "PrivSep user $SSH_PRIVSEP_USER already exists."
-        else
+else
-                echo "Creating PrivSep user $SSH_PRIVSEP_USER."
+        echo "Creating PrivSep user $SSH_PRIVSEP_USER."
-                mkuser gecos='SSHD PrivSep User' login=false rlogin=false account_locked=true pgrp=$SSH_PRIVSEP_USER $SSH_PRIVSEP_USER
+        mkuser gecos='SSHD PrivSep User' login=false rlogin=false account_locked=true pgrp=$SSH_PRIVSEP_USER $SSH_PRIVSEP_USER
-        fi
+fi
+if egrep '^[ \t]*UsePrivilegeSeparation[ \t]+no' $sysconfdir/sshd_config >/dev/null
+then
+        echo UsePrivilegeSeparation not enabled, privsep directory not required.
+else
        # create chroot directory if required
        if [ -d $PRIVSEP_PATH ]
        then

diff --git a/contrib/aix/buildbff.sh b/contrib/aix/buildbff.sh index 09b9c118c..97a7cbbba 100755 --- a/contrib/aix/buildbff.sh +++ b/contrib/aix/buildbff.sh
@@ -1,7 +1,7 @@
1	#!/bin/sh	1	#!/bin/sh
2	#	2	#
3	# buildbff.sh: Create AIX SMIT-installable OpenSSH packages	3	# buildbff.sh: Create AIX SMIT-installable OpenSSH packages
4	# $Id: buildbff.sh,v 1.8 2005/03/29 13:24:12 dtucker Exp $	4	# $Id: buildbff.sh,v 1.10 2006/09/10 03:24:19 dtucker Exp $
5	#	5	#
6	# Author: Darren Tucker (dtucker at zip dot com dot au)	6	# Author: Darren Tucker (dtucker at zip dot com dot au)
7	# This file is placed in the public domain and comes with absolutely	7	# This file is placed in the public domain and comes with absolutely
@@ -23,6 +23,8 @@ umask 022
23		23
24	startdir=`pwd`	24	startdir=`pwd`
25		25
		26	perl -v >/dev/null \|\| (echo perl required; exit 1)
		27
26	# Path to inventory.sh: same place as buildbff.sh	28	# Path to inventory.sh: same place as buildbff.sh
27	if echo $0 \| egrep '^/'	29	if echo $0 \| egrep '^/'
28	then	30	then
@@ -200,33 +202,29 @@ do
200	done	202	done
201	echo	203	echo
202		204
203	# Create PrivSep user if PrivSep not disabled in config	205	# Create PrivilegeSeparation user and group if not present
204	echo Creating PrivSep prereqs if required.	206	echo Checking for PrivilegeSeparation user and group.
205	if egrep '^[ \t]*UsePrivilegeSeparation[ \t]+no' $sysconfdir/sshd_config >/dev/null	207	if cut -f1 -d: /etc/group \| egrep '^'$SSH_PRIVSEP_USER'\$' >/dev/null
206	then	208	then
207	echo "UsePrivilegeSeparation disabled in config, not creating PrivSep user,"	209	echo "PrivSep group $SSH_PRIVSEP_USER already exists."
208	echo "group or chroot directory."
209	else	210	else
210	echo "UsePrivilegeSeparation enabled in config (or defaulting to on)."	211	echo "Creating PrivSep group $SSH_PRIVSEP_USER."
211		212	mkgroup -A $SSH_PRIVSEP_USER
212	# create group if required	213	fi
213	if cut -f1 -d: /etc/group \| egrep '^'$SSH_PRIVSEP_USER'\$' >/dev/null
214	then
215	echo "PrivSep group $SSH_PRIVSEP_USER already exists."
216	else
217	echo "Creating PrivSep group $SSH_PRIVSEP_USER."
218	mkgroup -A $SSH_PRIVSEP_USER
219	fi
220		214
221	# Create user if required	215	# Create user if required
222	if lsuser "$SSH_PRIVSEP_USER" >/dev/null	216	if lsuser "$SSH_PRIVSEP_USER" >/dev/null
223	then	217	then
224	echo "PrivSep user $SSH_PRIVSEP_USER already exists."	218	echo "PrivSep user $SSH_PRIVSEP_USER already exists."
225	else	219	else
226	echo "Creating PrivSep user $SSH_PRIVSEP_USER."	220	echo "Creating PrivSep user $SSH_PRIVSEP_USER."
227	mkuser gecos='SSHD PrivSep User' login=false rlogin=false account_locked=true pgrp=$SSH_PRIVSEP_USER $SSH_PRIVSEP_USER	221	mkuser gecos='SSHD PrivSep User' login=false rlogin=false account_locked=true pgrp=$SSH_PRIVSEP_USER $SSH_PRIVSEP_USER
228	fi	222	fi
229		223
		224	if egrep '^[ \t]*UsePrivilegeSeparation[ \t]+no' $sysconfdir/sshd_config >/dev/null
		225	then
		226	echo UsePrivilegeSeparation not enabled, privsep directory not required.
		227	else
230	# create chroot directory if required	228	# create chroot directory if required
231	if [ -d $PRIVSEP_PATH ]	229	if [ -d $PRIVSEP_PATH ]
232	then	230	then