%global _hardened_build 1

%global toruser     toranon

%global torgroup    toranon

%global homedir     %{_localstatedir}/lib/%{name}

%global logdir      %{_localstatedir}/log/%{name}

Name:       tor

Version:    0.2.3.25

Release:    1802%{?dist}

Group:      System Environment/Daemons

License:    BSD

Summary:    Anonymizing overlay network for TCP (The onion router)

URL:        https://www.torproject.org

Source0:    https://www.torproject.org/dist/%{name}-%{version}.tar.gz

Source1:    https://www.torproject.org/dist/%{name}-%{version}.tar.gz.asc

# Upstream ship their own logrotate file. Ours only has 2 modifications:

# use 'toranon' user, and use systemctl to reload.

Source2:    tor.logrotate

# This makes sure tor runs as 'toranon', logs to syslog at 'notice' level,

# and writes to /var/lib/tor instead of /root/.tor directory.

Source3:    tor.defaults-torrc

# A ticket has been opened to have the systemd service included upstream:

# https://trac.torproject.org/projects/tor/ticket/8368

Source10:   tor.systemd.service

# Obsoletes/Provides for tor-core, tor-systemd and torify were introduced

# in Fedora 19 (rawhide).

Obsoletes:  tor-core    < 0:0.2.3.25-1802

Provides:   tor-core    = 0:%{version}-%{release}

Obsoletes:  tor-systemd < 0:0.2.3.25-1802

Provides:   tor-systemd = 0:%{version}-%{release}

Obsoletes:  torify      < 0:0.2.3.25-1802

Provides:   torify      = 0:%{version}-%{release}

BuildRequires:    asciidoc

BuildRequires:    libevent-devel

BuildRequires:    openssl-devel

# /usr/bin/torify is now just a wrapper for torsocks and is only there for

# backwards compatibility.

Requires:         torsocks

Requires(pre):    shadow-utils

Requires(post):   systemd

Requires(preun):  systemd

Requires(postun): systemd

%description

Tor is a connection-based low-latency anonymous communication system.

Applications connect to the local Tor proxy using the SOCKS protocol. The

local proxy chooses a path through a set of relays, in which each relay

knows its predecessor and successor, but no others. Traffic flowing down

the circuit is unwrapped by a symmetric key at each relay, which reveals

the downstream relay.

Warnings: Tor does no protocol cleaning.  That means there is a danger

that application protocols and associated programs can be induced to

reveal information about the initiator. Tor depends on Privoxy and

similar protocol cleaners to solve this problem. This is alpha code,

and is even more likely than released code to have anonymity-spoiling

bugs. The present network is very small -- this further reduces the

strength of the anonymity provided. Tor is not presently suitable for

high-stakes anonymity.

%prep

%setup -q

%build

%configure --with-tor-user=%{toruser} --with-tor-group=%{torgroup} \

    --docdir=%{_docdir}/%{name}-%{version}

make %{?_smp_mflags}

%install

make install DESTDIR=$RPM_BUILD_ROOT

mv $RPM_BUILD_ROOT%{_sysconfdir}/tor/torrc.sample \

    $RPM_BUILD_ROOT%{_sysconfdir}/tor/torrc

mkdir -p $RPM_BUILD_ROOT%{logdir}

mkdir -p $RPM_BUILD_ROOT%{homedir}

install -D -p -m 0644 %SOURCE10 $RPM_BUILD_ROOT%_unitdir/%{name}.service

install -D -p -m 0644 %SOURCE2  $RPM_BUILD_ROOT%{_sysconfdir}/logrotate.d/tor

install -D -p -m 0644 %SOURCE3  $RPM_BUILD_ROOT%{_datadir}/%{name}/defaults-torrc

%pre

getent group %{torgroup} >/dev/null || groupadd -r %{torgroup}

getent passwd %{toruser} >/dev/null || \

    useradd -r -s /sbin/nologin -d %{homedir} -M \

    -c 'TOR anonymizing user' -g %{torgroup} %{toruser}

exit 0

%post

%systemd_post %{name}.service

%preun

%systemd_preun %{name}.service

%postun

%systemd_postun_with_restart %{name}.service

%files

%doc LICENSE README ChangeLog ReleaseNotes doc/HACKING doc/*.html

%{_bindir}/tor

%{_bindir}/tor-gencert

%{_bindir}/tor-resolve

%{_bindir}/torify

%{_mandir}/man1/tor.1*

%{_mandir}/man1/tor-gencert.1*

%{_mandir}/man1/tor-resolve.1*

%{_mandir}/man1/torify.1*

%dir %{_datadir}/tor

%{_datadir}/tor/defaults-torrc

%{_datadir}/tor/geoip

%{_unitdir}/%{name}.service

%dir %{_sysconfdir}/tor

%config(noreplace) %{_sysconfdir}/tor/tor-tsocks.conf

%attr(0644,root,root) %config(noreplace) %{_sysconfdir}/tor/torrc

%config(noreplace) %{_sysconfdir}/logrotate.d/tor

%attr(0700,%{toruser},%{torgroup}) %dir %{homedir}

%attr(0700,%{toruser},%{torgroup}) %dir %{logdir}

%changelog

* Mon Mar 04 2013 Jamie Nguyen <jamielinux@fedoraproject.org> - 0.2.3.25-1802

- add missing %%{?dist}

- cleanup systemd macros

- remove unnecessary Requires on logrotate directory

- change permissions of the following files/directories:

  /var/log/tor should be owned by toranon:toranon with 0700 permissions;

  /var/lib/tor should be owned by toranon:toranon with 0700 permissions;

  /etc/tor/torrc should be owned by root:root with 0644 permissions;

- remove dependency on fedora-usermgmt as it has been queued for obsoletion

  from Fedora

- add users and groups without forcing use of uid=19 as it is not necessarily

  available, nor is it required or expected by upstream

- do not remove users/groups in %%postun as the guidelines state:

  https://fedoraproject.org/wiki/Packaging:UsersAndGroups

- remove tor-upstart subpackage as upstart is no longer installable within

  Fedora and renders the subpackage obsolete

- amend logrotate file to match closer with upstream defaults, and removing

  references to several obsolete init systems

- move the tor-core subpackage back into the main tor package to match upstream

  expectations and user expectations (ie, yum install tor)

- move the tor-systemd subpackage back into the main tor package:

  the main tor package has a hard requirement on tor-systemd, so there is no

  purpose for keeping tor-systemd separate from the main package

- remove "Requires: tor-systemd"

- move the torify subpackage back into the main tor package to match upstream

  expectations and user expectations (ie, yum install tor)

- remove the logic separating the documentation files for tor and torify,

  which is now no longer needed

- use --docdir option when running %%configure

- after moving the tor-systemd and torify subpackages back into the main tor

  package, the %%with_noarch macro and the associated conditionals are no

  longer used so remove them

- split username global variable into separate toruser and torgroup global

  variables to improve spec flexibility and ease of comprehension, as well

  as matching how upstream have written their spec

- use --with-tor-user=%%toruser and --with-tor-group=%%torgroup options when

  running %%configure, as recommended by upstream

- remove all modifications to the default tor configuration file so that we

  can stick more closely to upstream defaults

- add /usr/share/tor/defaults-torrc file, which only contains two options:

    DataDirectory /var/lib/tor

    User toranon

    Log notice syslog

- when starting the tor service, use the following options as recommended by

  upstream: --defaults-torrc /usr/share/tor/defaults-torrc -f /etc/tor/torrc

- take a more cautious approach in the %%files section and specify filenames

  more explicitly rather than using wildcards, which also makes it easier to

  see the contents of the package

- the /var/run/tor directory is not needed so remove it, which also fixes

  bug #656707

- use %%_localstatedir instead of %%_var

- add some useful comments about the Obsoletes/Provides/Requires

- add comments about tor.logrotate, tor.defaults-torrc and tor.systemd.service

- remove unnecessary custom LDFLAGS

- increase LimitNOFILE in tor.service from 4096 to 32768, as advised by

  upstream: https://trac.torproject.org/projects/tor/ticket/8368#comment:4

- remove unused files in git (verinfo and lastver)

- change URL to HTTPS

- remove TODO as it doesn't contain any useful information

- disallow group read for /var/log/tor

* Thu Feb 07 2013 Jamie Nguyen <jamielinux@fedoraproject.org> - 0.2.3.25-1801

- torify subpackage should depend on torsocks not tsocks (#908569)

* Wed Feb 06 2013 Jamie Nguyen <jamielinux@fedoraproject.org> - 0.2.3.25-1800

- add additional %%configure options for user and group

- add --defaults-torrc to systemd service to make sure sane defaults are set

  unless explicitly overridden

- remove unnecessary BuildRoot tag

- remove unnecessary rm -rf RPM_BUILD_ROOT

- remove unnecessary %%clean section

- remove unnecessary defattr's

- fix Requires for torify subpackage

- update scriptlets to latest systemd guidelines

- aesthetic changes to the SPEC for clarity and readability

- remove changelog entry from different branch

* Sat Sep 22 2012 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.2.39-1900

- updated to 0.2.2.29

- CVE-2012-4419: assertion failure when comparing an address with port

  0 to an address policy

- CVE-2012-4422: assertion failure in tor_timegm()

- use %%systemd macros

* Sun Aug 19 2012 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.2.38-1900

- updated to 0.2.2.38

- conditionalized upstart and disabled it by default

* Fri Jul 27 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.2.37-1801

- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild

* Tue Jun 12 2012 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.2.37-1800

- updated to 0.2.2.37

* Sat May 26 2012 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.2.36-1800

- updated to 0.2.2.36

* Fri Apr 13 2012 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.2.35-1800

- build with -fPIE

* Tue Mar  6 2012 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de>

- fixed urls (#800236)

* Sat Jan 14 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.2.35-1702

- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild

* Sat Dec 17 2011 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.2.35-1701

- added 'su' logrotate option (#751525)

- fixed systemd unit file; customization of TimeoutSec + LimitNOFILE is

  not possible by environment variables. Hardcode some values which can

  be overridden by the systemd .include method (#755167).

- added systemd rule in the postrotate script

* Sat Dec 17 2011 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.2.35-1700

- updated to 0.2.2.35 (security)

- CVE-2011-2778: Tor heap-based buffer overflow

* Fri Oct 28 2011 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.2.34-1700

- updated to 0.2.2.34; critical privacy/anonymity fixes

- CVE-2011-2768

- CVE-2011-2769

* Wed Oct 26 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.2.33-1701

- Rebuilt for glibc bug#747377

* Sun Sep 18 2011 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.2.33-1700

- updated to 2.2.33

- removed -doc subpackage because shipped files are not available

  anymore

- ship torify files only in torify subpackage; not in main one

- start systemd service after nss-lookup.target (#719476)

* Thu Jul 28 2011 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.30-1700

- added and use systemd macros

* Thu Mar 17 2011 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.30-1601

- made EnvironmentFile in systemd definition optional

- systemd: added Requires: for core package; made it noarch

* Mon Feb 28 2011 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.30-1600

- updated to 0.2.1.30

- added 'torify' script (#669684)

* Wed Feb 09 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.1.29-1501

- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild

* Mon Jan 17 2011 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.29-1500

- updated to 0.2.1.29 (SECURITY)

- CVE-2011-0427: heap overflow bug, potential remote code execution

* Tue Dec 21 2010 Luke Macken <lmacken@redhat.com> - 0.2.1.28-1502

- updated to 0.2.1.28 (SECURITY: fixes a remotely exploitable heap overflow bug)

* Tue Dec  7 2010 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.27-1501

- replaced lsb and sysv init stuff with systemd init script

* Fri Nov 26 2010 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.27-1500

- updated to 0.2.1.27

- added tmpfiles.d file to create %%_var/run/%%name directory in -lsb

- work around broken chkconfig by adding dummy Default-Start: in -lsb

* Fri Nov 26 2010 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.26-1500

- fixed 'limit' statement in upstart script

* Tue Jun  1 2010 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.26-1400

- updated to 0.2.1.26

- log to syslog as request by upstream (#532373#19)

- removed workaround to install lsb initscript because parts of the

  underlying problem have been fixed in redhat-lsb and the remaining

  ones were solved by previous commit

- removed $local_fs dependency in -lsb initscript to workaround

  buggy redhat-lsb; $remote_fs should imply it and has been moved to

  Should-Start:

* Tue Jun  1 2010 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de>

- created -doc subpackage and moved most (all) files from main into it

* Sun Mar 28 2010 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de>

- added -sysv subpackage

* Thu Mar 18 2010 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.25-1400

- updated to 0.2.1.25

* Wed Mar  3 2010 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.24-1402

- removed /var/lib/tor-data dir (Chen Lei)

* Tue Mar  2 2010 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.24-1401

- require tor-core, not tor in -upstart (thx to Dave Jones)

* Sat Feb 27 2010 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.24-1400

- updated to 0.2.1.24

* Mon Feb 15 2010 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.23-1300

- updated to 0.2.1.23

* Thu Jan 21 2010 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.22-1300

- updated to 0.2.1.22

* Thu Dec 31 2009 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.21-1300

- updated to 0.2.1.21

* Sun Dec  6 2009 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.20-1301

- updated -upstart to upstart 0.6.3

* Sat Nov 14 2009 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.20-1300

- updated URLs (#532373)

- removed (inactive) update mechanism for GeoIP data; this might

  reduce anonimity  (#532373)

- use the pidfile at various places in the LSB initscript to operate

  on the correct process (#532373)

- set a higher 'nofile' limit in the upstart initscript to allow fast

  relays; LSB users will have to add a 'ulimit -n' into /etc/sysconfig/tor

  to get a similar effect (#532373)

- let the LSB initscript wait until process exits within a certain

  time; this fixes shutdown/restart problems when working as a server

  (#532373)

- fixed initng related typo in logrotate script (#532373)

- removed <linux/netfilter_ipv4.h> hack; it is fixed upstream and/or

  in the kernel sources

- use %%postun, not %%post as a -upstart scriptlet and send INT, not

  TERM signal to stop/restart daemon

* Sun Oct 25 2009 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.20-1

- updated to 0.2.1.20

* Sat Sep 12 2009 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.19-2

- workaround bug in redhat-lsb (#522053)

* Fri Aug 21 2009 Tomas Mraz <tmraz@redhat.com> - 0.2.1.19-1

- rebuilt with new openssl

* Sun Aug  9 2009 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.1.19-0

- updated to 0.2.1.19

- rediffed patches

* Sun Jul 26 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.0.35-2

- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild

* Fri Jun 26 2009 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.0.35-1

- updated to 0.2.0.35

- added '--quiet' to startup options (bug #495987)

- updated %%doc entries

* Wed May  6 2009 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.0.34-4

- made it easy to rebuild package in RHEL by adding a 'noarch'

  conditional to enable/disable noarch subpackages

* Sat Mar  7 2009 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.0.34-3

- added -upstart subpackage (-lsb still wins by default as there exists

  no end-user friendly solution for managing upstart initscripts)

* Wed Feb 25 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.2.0.34-2

- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild

* Tue Feb 10 2009 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.0.34-1

- updated to 0.2.0.34 (SECURITY: fixes DoS vulnerabilities)

* Thu Jan 22 2009 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.0.33-1

- updated to 0.2.0.33 (SECURITY: fixed heap-corruption bug)

* Sun Jan 18 2009 Tomas Mraz <tmraz@redhat.com> - 0.2.0.32-2

- rebuild with new openssl

* Sun Dec  7 2008 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.0.32-1

- updated to 0.2.0.32

- removed -setgroups patch; supplementary groups are now set upstream

* Sun Jul 20 2008 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.2.0.30-1

- updated to 0.2.0.30; rediffed patches

- (re)enabled transparent proxy support by workarounding broken

  <linux/netfilter_ipv4.h> header

- moved the 'geoip' database to /var/lib/tor-data where it can be

  updated periodically

- built with -Wl,--as-needed

* Thu Jul 10 2008 Nikolay Vladimirov <nikolay@vladimiroff.com> - 0.1.2.19-3

- rebuild for new libevent

* Wed Feb 13 2008 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.2.19-2

- added 'missingok' to logrotate script (#429402)

* Tue Feb 12 2008 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.2.19-1

- updated to 0.1.2.19

- use file based BR for latex

- improved 'status' method of initscript to return rc of 'pidofproc'

  instead of doing further manual tests.  Calling 'pidofproc' directly

  instead of within a subshell should workaround #432254 too.

* Sat Jan 26 2008 Alex Lancaster <alexlan[AT]fedoraproject org> - 0.1.2.18-4

- Update BuildRequires: tex(latex),

- BR: texlive-texmf-fonts seems also to be necessary

* Sat Jan 26 2008 Alex Lancaster <alexlan[AT]fedoraproject org> - 0.1.2.18-3

- Rebuild for new libevent.

* Thu Dec 06 2007 Release Engineering <rel-eng at fedoraproject dot org> - 0.1.2.18-2

- Rebuild for deps

* Tue Oct 30 2007 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.2.18-1

- updated to 0.1.2.18

* Fri Aug 31 2007 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.2.17-1

- updated to 0.1.2.17

* Sat Aug 25 2007 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.2.16-2

- fixed open(2) issue

* Fri Aug  3 2007 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.2.16-1

- updated to 0.1.2.16 (SECURITY)

* Sat Jul 28 2007 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.2.15-1

- updated to 0.1.2.15

* Sat May 26 2007 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.2.14-1

- updated to 0.1.2.14

* Wed Apr 25 2007 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.2.13-1

- updated to 0.1.2.13

- minor cleanups; especially in the %%doc section

* Sun Apr  8 2007 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.1.26-4

- rebuilt for (yet another) new libevent

* Mon Feb 26 2007 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.1.26-3

- rebuilt for new libevent

* Wed Jan 24 2007 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.1.26-2

- updated -setgroups patch (#224090, thx to Sami Farin)

* Sun Dec 17 2006 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.1.26-1

- updated to 0.1.1.26 (SECURITY)

- do not turn on logging by default; it's easier to say "we do not log

  anything" to the police instead of enumerating the logged event

  classes and trying to explain that they do not contain any valuable

  information

* Sun Nov 12 2006 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.1.25-1

- updated to 0.1.1.25

* Thu Oct  5 2006 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.1.24-1

- updated to 0.1.1.24

* Sat Sep 30 2006 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.1.23-5

- updated to recent fedora-usermgmt

- minor cleanups

- require only 'lsb-core-noarch' instead of whole 'lsb'

* Tue Sep 26 2006 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.1.23-4

- first FE release (review #175433)

* Mon Sep 25 2006 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.1.23-3

- removed '.have-lsb' and related logic in logrotate script; check for

  existence of the corresponding initscript instead of

- fixed bare '%%' in changelog section

* Thu Sep 21 2006 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.1.23-2

- simplified things yet more and removed tsocks/torify too

- build -lsb unconditionally

* Thu Sep 21 2006 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.1.23-1

- simplified spec file and removed -initng and -minit stuff

* Sun Aug 13 2006 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.1.23-0

- updated to 0.1.1.23

* Sat Jul  8 2006 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.1.22-0

- updated to 0.1.1.22

* Tue Jun 13 2006 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.1.21-0

- updated to 0.1.1.21

* Wed May 24 2006 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.1.20-0

- updated to 0.1.1.20; adjusted %%doc file-list

- added (optional) -tsocks subpackage

- use the more modern %%bcond_with* for specifying optional features

* Sun Feb 19 2006 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.0.17-0

- updated to 0.1.0.17

* Mon Jan 30 2006 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.0.16-0.1

- renamed the current main-package into a '-core' subpackage and

  created a new main-package which requires both the 'tor-core'

  subpackage and this with the current default init-method. This

  allows 'yum install tor' to work better; because yum is not very

  smart, the old packaging might install unwanted packages else.

* Wed Jan  4 2006 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.0.16-0

- updated to 0.1.0.16

* Fri Dec 23 2005 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.0.15-1.11

- reworked the 'setgroups' patch so that 'tor' survives a SIGHUP

- (re)added the 'reload' functionality to the lsb initscript and use

  it in logrotate

* Fri Dec 23 2005 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.0.15-1.8

- added ChangeLog to %%doc

- made torrc not world-readable

- added logrotate script

* Thu Dec 22 2005 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.0.15-1.4

- updated initng scripts to initng-0.4.8 syntax

- tweaked some Requires(...):

- added ghostscript BuildRequires:

- install initng scripts into the correct dir

* Thu Dec 15 2005 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.0.15-1.2

- use relative UID of 19 instead of 18 due to conflicts with the

  'munin' package

* Wed Dec 14 2005 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.0.15-1.1

- added -minit subpackage

* Sat Dec 10 2005 Enrico Scholz <enrico.scholz@informatik.tu-chemnitz.de> - 0.1.0.15-1

- initial build