%global _hardened_build 1 Name: chrootuid Version: 1.3 Release: 2%{dist} Summary: Runs Daemons with restricted File System Access License: BSD URL: http://ftp.porcupine.org/pub/security/index.html Source0: ftp://ftp.porcupine.org/pub/security/%{name}%{version}.tar.gz # Based on patch collection from Debian Sid # http://packages.debian.org/sid/chrootuid Patch0: chrootuid-1.3-6.diff BuildRequires: glibc-devel %description Chrootuid makes it easy to run a network service at low privilege level and with restricted file system access. It can be used for running network daemons in a minimal environment: the daemons have access only to their own directory tree and can be run under a low-privileged user id. The arrangement greatly reduces the impact of possible loopholes in daemon software. %prep %setup -q -n chrootuid%{version} %patch0 -p1 %build make %{?_smp_mflags} \ CFLAGS="%{optflags}" \ all %install install -p -D -m0755 chrootuid %{buildroot}%{_bindir}/chrootuid install -p -D -m0644 chrootuid.1 %{buildroot}%{_mandir}/man1/chrootuid.1 %files %license chrootuid_license %doc README %{_mandir}/man1/* %{_bindir}/chrootuid %changelog * Tue Dec 16 2014 Mikhail Campos - 1.3-2 - Cleanup redundant instructions in spec * Tue Oct 7 2014 Mikhail Campos - 1.3-1 - Initial build