New port, tac_plus:

tac_plus provides Cisco systems routers and access servers
with authentication, authorisation and accounting services.

A configuration file controls the details of authentication,
authorisation and accounting.

PR:		2869
Submitted by:	Igor Vinokurov<igor@zynaps.ru>
Note: Although there is no terms and conditions on redistribution found,
the author says there is no restriction.  (This is stated in more
recent alpha version.)  The only concern is the U.S. Export restriction,
but Cisco has been granted with the right to export their software,
according to the author.  And also I haven't been able to find any
implementation that may violate the export control in the source code,
either.  So, I import this without any RESTRICTED or NO_CDROM defined.

net/tac_plus4/Makefile

@@ -0,0 +1,39 @@
+# New ports collection makefile for:	tac_plus
+# Version required:	2.1
+# Date created:		4 Mar 1997
+# Whom:			Igor Vinokurov <igor@zynaps.ru>
+#
+# $Id$
+#
+
+DISTNAME=	tac_plus.2.1
+PKGNAME=	tac_plus-2.1
+CATEGORIES=	net
+MASTER_SITES=	ftp://ftpeng.cisco.com/pub/tacacs/
+EXTRACT_SUFX=	.tar
+
+MAINTAINER=	igor@zynaps.ru
+
+EXTRACT_BEFORE_ARGS=	-C ${WRKDIR} -xf
+ALL_TARGET=	tac_plus
+MAN8=		tac_plus.8
+
+post-patch:
+	@${MV} -f ${WRKSRC}/tac_plus.1 ${WRKSRC}/tac_plus.8
+
+do-install:
+	${INSTALL_PROGRAM} ${WRKSRC}/tac_plus ${PREFIX}/sbin
+	${INSTALL_MAN} ${WRKSRC}/tac_plus.8 ${PREFIX}/man/man8
+	${INSTALL_DATA} ${FILESDIR}/tacacs.conf.example ${PREFIX}/etc/
+	@if [ ! -f ${PREFIX}/etc/rc.d/tac_plus.sh ]; then \
+		${ECHO} "Installing ${PREFIX}/etc/rc.d/tac_plus.sh startup file."; \
+		echo "#!/bin/sh" > ${PREFIX}/etc/rc.d/tac_plus.sh; \
+		echo "[ -x ${PREFIX}/sbin/tac_plus -a -f ${PREFIX}/etc/tac_plus.conf ] && ${PREFIX}/sbin/tac_plus -C ${PREFIX}/etc/tacacs.conf && echo -n ' tac_plus'" >> ${PREFIX}/etc/rc.d/tac_plus.sh; \
+		chmod 751 ${PREFIX}/etc/rc.d/tac_plus.sh; \
+	fi
+.if !defined(NOPORTDOCS)
+	@${MKDIR} ${PREFIX}/share/doc/tac_plus
+	${INSTALL_DATA} ${WRKSRC}/users_guide ${PREFIX}/share/doc/tac_plus
+.endif
+
+.include <bsd.port.mk>

net/tac_plus4/distinfo

@@ -0,0 +1 @@
+MD5 (tac_plus.2.1.tar) = f7263da703c509d14d26139790cc6acc

net/tac_plus4/files/patch-aa

@@ -0,0 +1,71 @@
+*** Makefile.orig	Sat Jul 29 02:49:20 1995
+--- Makefile	Mon Mar  3 17:24:49 1997
+***************
+*** 22,30 ****
+  # OSLIBS=-lsocket -lnsl
+  
+  # For FreeBSD
+! # OS=-DFREEBSD
+  # You may also need to add
+! # OSLIBS=-lcrypt
+  
+  # For LINUX
+  # OS=-DLINUX
+--- 22,30 ----
+  # OSLIBS=-lsocket -lnsl
+  
+  # For FreeBSD
+! OS=-DFREEBSD
+  # You may also need to add
+! OSLIBS=-lcrypt
+  
+  # For LINUX
+  # OS=-DLINUX
+***************
+*** 40,47 ****
+  # FLAGS   = -DTAC_PLUS_USERID=$(USERID) -DTAC_PLUS_GROUPID=$(GROUPID)
+  
+  # Definitions for SKEY functionality
+! # DEFINES = -DSKEY
+! # LIBS = ../crimelab/skey/src/libskey.a
+  # INCLUDES = -I../crimelab/skey/src
+  
+  DEBUG = -g
+--- 40,47 ----
+  # FLAGS   = -DTAC_PLUS_USERID=$(USERID) -DTAC_PLUS_GROUPID=$(GROUPID)
+  
+  # Definitions for SKEY functionality
+! DEFINES = -DSKEY
+! LIBS = -lskey -lmd
+  # INCLUDES = -I../crimelab/skey/src
+  
+  DEBUG = -g
+***************
+*** 50,62 ****
+  # possible), containing its process id. Uncomment and modify the
+  # following line to change this filename
+  
+! # PIDFILE = -DTAC_PLUS_PIDFILE=\"/var/run/tac_plus.pid\" 
+  
+  #
+  # End of customisable section of Makefile
+  #
+  
+! CFLAGS = $(DEBUG) $(DEFINES) $(INCLUDES) $(FLAGS) $(OS) $(PIDFILE)
+  
+  SRCS =	acct.c authen.c author.c choose_authen.c config.c do_acct.c \
+  	do_author.c dump.c encrypt.c expire.c md5.c \
+--- 50,62 ----
+  # possible), containing its process id. Uncomment and modify the
+  # following line to change this filename
+  
+! PIDFILE = -DTAC_PLUS_PIDFILE=\"/var/run/tac_plus.pid\" 
+  
+  #
+  # End of customisable section of Makefile
+  #
+  
+! CFLAGS += $(DEBUG) $(DEFINES) $(INCLUDES) $(FLAGS) $(OS) $(PIDFILE)
+  
+  SRCS =	acct.c authen.c author.c choose_authen.c config.c do_acct.c \
+  	do_author.c dump.c encrypt.c expire.c md5.c \

net/tac_plus4/files/patch-ab

@@ -0,0 +1,28 @@
+*** skey_fn.c.orig	Sat Jul 29 02:49:18 1995
+--- skey_fn.c	Mon Mar  3 17:33:57 1997
+***************
+*** 153,158 ****
+--- 153,163 ----
+  		char buf[256];
+  		sprintf(buf, "%s\nPassword: ", skeyprompt);
+  		data->server_msg = tac_strdup(buf);
++ 
++ 		/* We try to make it in accordance of standard FreeBSD
++ 		 * behaviour in order to avoid surprises for user */
++ 		data->flags = TAC_PLUS_AUTHEN_FLAG_NOECHO;
++ 
+  		data->status = TAC_PLUS_AUTHEN_STATUS_GETPASS;
+  		p->state = STATE_AUTHEN_GETPASS;
+  		return (0);
+*** tac_plus.h.orig	Sat Jul 29 02:49:19 1995
+--- tac_plus.h	Mon Mar  3 17:35:51 1997
+***************
+*** 91,96 ****
+--- 91,97 ----
+  #ifdef FREEBSD
+  #define CONST_SYSERRLIST
+  #define STDLIB_MALLOC
++ #define NO_PWAGE
+  #define VOIDSIG
+  #endif
+  

net/tac_plus4/files/patch-ac

@@ -0,0 +1,107 @@
+*** tac_plus.1.orig	Sat Jul 29 02:49:20 1995
+--- tac_plus.1	Mon Mar  3 17:34:30 1997
+***************
+*** 30,36 ****
+  authorisation and accounting.
+  .LP
+  On startup, tac_plus creates the file
+! .B /etc/tac_plus.pid ,
+  if possible, containing its process id.
+  .LP
+  .SH ARGUMENTS and OPTIONS
+--- 30,36 ----
+  authorisation and accounting.
+  .LP
+  On startup, tac_plus creates the file
+! .B /var/run/tac_plus.pid ,
+  if possible, containing its process id.
+  .LP
+  .SH ARGUMENTS and OPTIONS
+***************
+*** 79,91 ****
+  .B \-d <level>
+  Switch on debugging and write debug output into
+  .B
+! /tmp/var/tac_plus.log. 
+  
+  See the definitions of debugging flags at the bottom of tac_plus.h for
+  available flags and their meanings.  Most flags cause extra messages
+  to be sent to 
+  .B
+! /tmp/var/tac_plus.log 
+  and also to 
+  .B
+  syslog.
+--- 79,91 ----
+  .B \-d <level>
+  Switch on debugging and write debug output into
+  .B
+! /var/tmp/tac_plus.log. 
+  
+  See the definitions of debugging flags at the bottom of tac_plus.h for
+  available flags and their meanings.  Most flags cause extra messages
+  to be sent to 
+  .B
+! /var/tmp/tac_plus.log 
+  and also to 
+  .B
+  syslog.
+***************
+*** 177,183 ****
+  facility.
+  .nf
+  
+! local6.info					/var/adm/messages
+  
+  .fi
+  .LP
+--- 177,183 ----
+  facility.
+  .nf
+  
+! local6.info					/var/log/tac_plus.log
+  
+  .fi
+  .LP
+***************
+*** 194,200 ****
+  .B /var/tmp/tac_plus.log
+  Contains debugging output when -d is in effect.
+  .TP
+! .B /etc/tac_plus.pid 
+  contains the process id of currently running daemon.
+  .SH BUGS
+  The configuration file syntax is too complex.
+--- 194,200 ----
+  .B /var/tmp/tac_plus.log
+  Contains debugging output when -d is in effect.
+  .TP
+! .B /var/run/tac_plus.pid 
+  contains the process id of currently running daemon.
+  .SH BUGS
+  The configuration file syntax is too complex.
+*** users_guide.orig	Sat Jul 29 02:49:20 1995
+--- users_guide	Mon Mar  3 19:51:56 1997
+***************
+*** 996,1005 ****
+  and then send the daemon a SIGUSR1. This will cause it to reinitialize
+  itself and re-read the configuration file.
+  
+! On startup, tac_plus creates the file /etc/tac_plus.pid , if possible,
+  containing its process id, so something like the following should work:
+  
+! # kill -USR1 `cat /etc/tac_plus.pid`
+  
+  It's a good idea to check that the daemon is still running after
+  sending it a SIGUSR1, since a syntactically incorrect configuration
+--- 996,1005 ----
+  and then send the daemon a SIGUSR1. This will cause it to reinitialize
+  itself and re-read the configuration file.
+  
+! On startup, tac_plus creates the file /var/run/tac_plus.pid, if possible,
+  containing its process id, so something like the following should work:
+  
+! # kill -USR1 `cat /var/run/tac_plus.pid`
+  
+  It's a good idea to check that the daemon is still running after
+  sending it a SIGUSR1, since a syntactically incorrect configuration

net/tac_plus4/pkg-comment

@@ -0,0 +1 @@
+a remote authentication/authorization/accounting server

net/tac_plus4/pkg-descr

@@ -0,0 +1,8 @@
+tac_plus provides Cisco systems routers and access servers
+with authentication, authorisation and accounting services.
+ 
+A configuration file controls the details of authentication,
+authorisation and accounting.
+
+-- Igor
+igor@zynaps.ru

net/tac_plus4/pkg-plist

@@ -0,0 +1,6 @@
+sbin/tac_plus
+etc/rc.d/tac_plus.sh
+etc/tacacs.conf.example
+man/man8/tac_plus.8.gz
+share/doc/tac_plus/users_guide
+@dirrm share/doc/tac_plus