* Depend on tcpd and run under tcpd in the default inetd.conf entry.

diff --git a/debian/changelog b/debian/changelog
index 3135df56865313ad692596e01f1f29f6f3855a4c..0bbbad4edd29098b4a50b782fcb94f7c441d0a93 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -5,6 +5,7 @@ sident (3.5-1) unstable; urgency=low
       attack.  Please read the documentation and consider the security
       model for your service before using the S/Ident protocol for
       authentication.
+  * Depend on tcpd and run under tcpd in the default inetd.conf entry.
   * Mention the security vulnerability in all package descriptions.
   * Indent the homepage in package descriptions to avoid wrapping.
   * Remove unnecessary bits from debian/rules.

diff --git a/debian/control b/debian/control
index 0b084b5e983246bfe0111568a98ecc92310e3b90..a82c03303962c1040f7d0fac8e8347fee34c8020 100644 (file)
--- a/debian/control
+++ b/debian/control
@@ -7,7 +7,7 @@ Standards-Version: 3.6.2
 
 Package: sidentd
 Architecture: any
-Depends: ${shlibs:Depends}, netbase
+Depends: ${shlibs:Depends}, netbase, tcpd
 Recommends: krb5-user | heimdal-clients | kerberos4kth-clients
 Description: Authenticate to network services via S/Ident
  A daemon run from inetd or an equivalent which responds to network

diff --git a/debian/sidentd.postinst b/debian/sidentd.postinst
index 2482187add91a6db81bfff209d0941c27d33e148..82b1437734d8957f96421f031e17af4d83f618c4 100755 (executable)
--- a/debian/sidentd.postinst
+++ b/debian/sidentd.postinst
@@ -3,12 +3,13 @@
 
 set -e
 
+INETD='auth\t\tstream\ttcp\tnowait\troot\t/usr/sbin/tcpd /usr/sbin/sidentd'
+
 case "$1" in
     configure)
         # Only try to add the inetd line on an initial installation.
         if [ -z "$2" ] || [ x"$2" = x"<unknown>" ] ; then
-            update-inetd --add \
-                'auth\t\tstream\ttcp\tnowait\troot\t/usr/sbin/sidentd sidentd'
+            update-inetd --add "$INETD"
         fi
     ;;