summaryrefslogtreecommitdiffstats
path: root/contrib/tcp_wrappers/Banners.Makefile
blob: 915e3dd96774371b1dc8847834dae9a69463c9cd (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
# @(#) Banners.Makefile 1.3 97/02/12 02:13:18
#
# Install this file as the Makefile in your directory with banner files.
# It will convert a prototype banner text to a form that is suitable for
# the ftp, telnet, rlogin, and other services. 
# 
# You'll have to comment out the IN definition below if your daemon
# names don't start with `in.'.
#
# The prototype text should live in the banners directory, as a file with
# the name "prototype". In the prototype text you can use %<character>
# sequences as described in the hosts_access.5 manual page (`nroff -man'
# format).  The sequences will be expanded while the banner message is
# sent to the client. For example:
#
#	Hello %u@%h, what brings you here?
#
# Expands to: Hello username@hostname, what brings you here? Note: the
# use of %u forces a client username lookup.
#
# In order to use banners, build the tcp wrapper with -DPROCESS_OPTIONS
# and use hosts.allow rules like this:
#
#	daemons ... : clients ... : banners /some/directory ...
#
# Of course, nothing prevents you from using multiple banner directories.
# For example, one banner directory for clients that are granted service,
# one banner directory for rejected clients, and one banner directory for
# clients with a hostname problem.
#
SHELL	= /bin/sh
IN	= in.
BANNERS	= $(IN)telnetd $(IN)ftpd $(IN)rlogind # $(IN)fingerd $(IN)rshd

all:	$(BANNERS)

$(IN)telnetd: prototype
	cp prototype $@
	chmod 644 $@

$(IN)ftpd: prototype
	sed 's/^/220-/' prototype > $@
	chmod 644 $@

$(IN)rlogind: prototype nul
	( ./nul ; cat prototype ) > $@
	chmod 644 $@

# Other services: banners may interfere with normal operation
# so they should probably be used only when refusing service.
# In particular, banners don't work with standard rsh daemons.
# You would have to use an rshd that has built-in tcp wrapper
# support, for example the rshd that is part of the logdaemon
# utilities.

$(IN)fingerd: prototype
	cp prototype $@
	chmod 644 $@

$(IN)rshd: prototype nul
	( ./nul ; cat prototype ) > $@
	chmod 644 $@

# In case no /dev/zero available, let's hope they have at least
# a C compiler of some sort.

nul:
	echo 'main() { write(1,"",1); return(0); }' >nul.c
	$(CC) $(CFLAGS) -s -o nul nul.c
	rm -f nul.c
OpenPOWER on IntegriCloud