Index: security/Makefile =================================================================== --- security/Makefile +++ security/Makefile @@ -1250,6 +1250,7 @@ SUBDIR += symbion-sslproxy SUBDIR += tclsasl SUBDIR += tcpcrypt + SUBDIR += teleport SUBDIR += testssl.sh SUBDIR += tinc SUBDIR += tinc-devel Index: security/teleport/Makefile =================================================================== --- /dev/null +++ security/teleport/Makefile @@ -0,0 +1,61 @@ +# $FreeBSD$ + +PORTNAME= teleport +DISTVERSION= 2.5.0 +DISTVERSIONSUFFIX= -rc.2 +CATEGORIES= security +DISTNAME= ${PORTNAME}-v${DISTVERSION}${DISTVERSIONSUFFIX} + +MAINTAINER= seanc@FreeBSD.org +COMMENT= Gravitational Telport SSH + +LICENSE= APACHE20 + +BUILD_DEPENDS= ${LOCALBASE}/bin/go:lang/go + +SUB_FILES= pkg-message + +USES= compiler gmake + +USE_GITHUB= yes +GH_ACCOUNT= gravitational +GH_TAGNAME= v${DISTVERSION}${DISTVERSIONSUFFIX} + +USE_RC_SUBR= teleport + +PLIST_FILES= bin/teleport \ + bin/tctl \ + bin/tsh \ + etc/teleport.yaml.sample + +STRIP= + +GO_TELEPORT_SRC_DIR= src/github.com/gravitational/teleport +PRE_GOPATH_DIR= ${PORTNAME}-${DISTVERSION}${DISTVERSIONSUFFIX} + +post-extract: + @${MKDIR} ${WRKDIR}/${GO_TELEPORT_SRC_DIR} + @${CP} -rp ${WRKDIR}/${PRE_GOPATH_DIR}/vendor/* ${WRKDIR}/src/ + @${CP} -rp ${WRKDIR}/${PRE_GOPATH_DIR}/* ${WRKDIR}/${GO_TELEPORT_SRC_DIR}/ + +do-build: + @cd ${WRKDIR}/${GO_TELEPORT_SRC_DIR} && \ + ${SETENV} ${MAKE_ENV} ${BUILD_ENV} \ + CGO_ENABLED=1 GOPATH=${WRKDIR} \ + ${GMAKE} full + +do-install: + ${WRKDIR}/${GO_TELEPORT_SRC_DIR}/build/teleport configure > ${STAGEDIR}${PREFIX}/etc/teleport.yaml.sample + ${INSTALL_PROGRAM} ${WRKDIR}/${GO_TELEPORT_SRC_DIR}/build/teleport ${STAGEDIR}${PREFIX}/bin + ${INSTALL_PROGRAM} ${WRKDIR}/${GO_TELEPORT_SRC_DIR}/build/tsh ${STAGEDIR}${PREFIX}/bin + ${INSTALL_PROGRAM} ${WRKDIR}/${GO_TELEPORT_SRC_DIR}/build/tctl ${STAGEDIR}${PREFIX}/bin + +.include + +# golang assumes that if clang is in use, it is called "clang" and not "cc". If +# it's called "cc", go fails. +.if ${COMPILER_TYPE} == clang +BUILD_ENV= CC=clang +.endif + +.include Index: security/teleport/distinfo =================================================================== --- /dev/null +++ security/teleport/distinfo @@ -0,0 +1,3 @@ +TIMESTAMP = 1520091312 +SHA256 (teleport-v2.5.0-rc.2_GH0.tar.gz) = 6b115c2a3eb24295578d62a81076c68e8a750001d6884c397643882a3b64a178 +SIZE (teleport-v2.5.0-rc.2_GH0.tar.gz) = 12739356 Index: security/teleport/files/pkg-message.in =================================================================== --- /dev/null +++ security/teleport/files/pkg-message.in @@ -0,0 +1,10 @@ +==== +Quick getting started guide: + +1. Create a teleport configuration file: + su -c "cp %%PREFIX%%/etc/teleport.yaml{.sample,}" +2. Start teleport: su -c 'service teleport start' +3. Add yourself as a user: su -c "tctl users add $USER" +4. Create a password and 2FA code using the URL emitted during + the previous step. +==== Index: security/teleport/files/teleport.in =================================================================== --- /dev/null +++ security/teleport/files/teleport.in @@ -0,0 +1,33 @@ +#!/bin/sh + +# $FreeBSD$ +# +# PROVIDE: teleport +# REQUIRE: LOGIN +# KEYWORD: shutdown +# +# Add the following lines to /etc/rc.conf.local or /etc/rc.conf +# to enable this service: +# +# teleport_enable (bool): Set to NO by default. +# Set it to YES to enable teleport. +# teleport_dir (dir): Set dir to run teleport in. +# Default is "/var/db/teleport". + +. /etc/rc.subr + +name=teleport +rcvar=teleport_enable + +load_rc_config $name + +: ${teleport_enable:="NO"} +: ${teleport_enable:="--config=%%PREFIX%%/etc/teleport.yaml"} +: ${teleport_dir:="/var/db/teleport"} + +pidfile=/var/run/teleport.pid +procname="%%PREFIX%%/bin/teleport" +command="/usr/sbin/daemon" +command_args="-S -T teleport -s info -m 3 -r -p ${pidfile} /usr/bin/env ${teleport_env} ${procname} start ${teleport_args}" + +run_rc_command "$1" Index: security/teleport/pkg-descr =================================================================== --- /dev/null +++ security/teleport/pkg-descr @@ -0,0 +1,18 @@ +What is Teleport? +================= +Gravitational Teleport ("Teleport") is a modern SSH server for remotely +accessing clusters of Linux servers via SSH or HTTPS. It is intended to be used +instead of sshd. Teleport enables teams to easily adopt the best SSH practices +like: + +Integrated SSH credentials with your organization Google Apps identities or +other OAuth identitiy providers. No need to distribute keys: Teleport uses +certificate-based access with automatic expiration time. Enforcement of 2nd +factor authentication. Cluster introspection: every Teleport node becomes a part +of a cluster and is visible on the Web UI. Record and replay SSH sessions for +knowledge sharing and auditing purposes. Collaboratively troubleshoot issues +through session sharing. Connect to clusters located behind firewalls without +direct Internet access via SSH bastions. Teleport is built on top of the +high-quality Golang SSH implementation and it is compatible with OpenSSH. + +WWW: http://gravitational.com/teleport/