LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 03-16-2010, 11:45 AM   #1
AlucardZero
Senior Member
 
Registered: May 2006
Location: USA
Distribution: Debian
Posts: 4,824

Rep: Reputation: 615Reputation: 615Reputation: 615Reputation: 615Reputation: 615Reputation: 615
OpenSSH w/ Selinux compile error on CentOS 4.8


Code:
$ ./configure --with-md5-passwords --with-selinux --with-pam
[snip]
             Host: i686-pc-linux-gnu
          Compiler: gcc
    Compiler flags: -g -O2 -Wall -Wpointer-arith -Wuninitialized -Wsign-compare -Wformat-security -fno-builtin-memset -std=gnu99
Preprocessor flags:
      Linker flags:
         Libraries: -lcrypto -ldl -lutil -lz -lnsl  -lcrypt
         +for sshd:  -lpam -lselinux

PAM is enabled. You may need to install a PAM control file
for sshd, otherwise password authentication may fail.
Example PAM control files can be found in the contrib/
subdirectory

$ make
[snip]
ranlib libssh.a
gcc -o ssh ssh.o readconf.o clientloop.o sshtty.o sshconnect.o sshconnect1.o sshconnect2.o mux.o roaming_common.o roaming_client.o -L. -Lopenbsd-compat/  -lssh -lopenbsd-compat -lcrypto -ldl -lutil -lz -lnsl  -lcrypt
gcc -o sshd sshd.o auth-rhosts.o auth-passwd.o auth-rsa.o auth-rh-rsa.o sshpty.o sshlogin.o servconf.o serverloop.o auth.o auth1.o auth2.o auth-options.o session.o auth-chall.o auth2-chall.o groupaccess.o auth-skey.o auth-bsdauth.o auth2-hostbased.o auth2-kbdint.o auth2-none.o auth2-passwd.o auth2-pubkey.o auth2-jpake.o monitor_mm.o monitor.o monitor_wrap.o kexdhs.o kexgexs.o auth-krb5.o auth2-gss.o gss-serv.o gss-serv-krb5.o loginrec.o auth-pam.o auth-shadow.o auth-sia.o md5crypt.o audit.o audit-bsm.o platform.o sftp-server.o sftp-common.o roaming_common.o roaming_serv.o -L. -Lopenbsd-compat/  -lssh -lopenbsd-compat -lpam -lselinux -lcrypto -ldl -lutil -lz -lnsl  -lcrypt
gcc -o ssh-add ssh-add.o -L. -Lopenbsd-compat/  -lssh -lopenbsd-compat -lcrypto -ldl -lutil -lz -lnsl  -lcrypt
openbsd-compat//libopenbsd-compat.a(port-linux.o)(.text+0x3ab): In function `ssh_selinux_change_context':
/tmp/openssh-5.4p1/openbsd-compat/port-linux.c:203: undefined reference to `setcon'
collect2: ld returned 1 exit status
make: *** [sshd] Error 1
make: *** Waiting for unfinished jobs....
I am attempting to compile OpenSSH 5.4p1 and am getting the above error. Where might setcon be defined? libselinux-devel is installed and is the latest available for 4.8.

Last edited by AlucardZero; 03-16-2010 at 11:46 AM.
 
Old 03-16-2010, 08:25 PM   #2
chrism01
LQ Guru
 
Registered: Aug 2004
Location: Sydney
Distribution: Centos 6.10, Centos 7.5
Posts: 17,707

Rep: Reputation: 2497Reputation: 2497Reputation: 2497Reputation: 2497Reputation: 2497Reputation: 2497Reputation: 2497Reputation: 2497Reputation: 2497Reputation: 2497Reputation: 2497
So why are you compiling ssh? Its in the std install for RHEL/Centos. If you're worried about version nums, do you know that RHEL backports fixes to old versions instead of changing the version num.

The name parts are

pkg-version-release-arch.rpm

version is upstream (developer's) version, release shows which patches have been done. See Changelogs
Code:
rpm -qa|grep ssh

openssh-askpass-4.3p2-36.el5_4.4
openssh-4.3p2-36.el5_4.4
openssh-clients-4.3p2-36.el5_4.4
openssh-server-4.3p2-36.el5_4.4

rpm -q --changelog openssh-server-4.3p2-36.el5_4.4

#loads of changlogs output
Apologies if you know all this
 
Old 03-16-2010, 08:51 PM   #3
AlucardZero
Senior Member
 
Registered: May 2006
Location: USA
Distribution: Debian
Posts: 4,824

Original Poster
Rep: Reputation: 615Reputation: 615Reputation: 615Reputation: 615Reputation: 615Reputation: 615
I do know all this. The problem is $braindead_tcp_scanning_software picks up the old version number and doesn't know all this. I can either a) assert every six months that OpenSSH is updated with all vendor patches or b) build an RPM myself with the latest upstream sources and install that (on multiple systems, thus the RPM). I'm currently scouting out which is more work.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
system-config-selinux missing in Centos 5.3? lovemov Linux - Software 11 12-05-2017 05:44 AM
compile error on centos 5.3 for attansic gigabit ethernet controller mylvarab Linux - Newbie 3 03-03-2010 09:37 AM
How to allow Samba server from Selinux firewall in CentOS rahilmaknojia Linux - Server 8 06-09-2009 11:57 AM
How to install OpenSSH on CentOS with tcp wrappers support Brandon.Wamboldt Linux - Server 4 05-05-2009 11:20 PM
SELinux & vBulletin (CentOS 5.2) sxa Linux - Security 1 02-04-2009 10:58 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 07:47 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration