APG version 2.3.0b has optional compile time support for cracklib, but the current apg-2.3.0b.ebuild does not use it. From apg's man page "-k check every generated password using cracklib. To use this ability you must enable cracklib support during programm building." So I created this ebuild to add a USE flag for cracklib support in APG. This is my first time doing anything w/ ebuilds, but this seemed like a fairly simple thing, and this ebuild works for me. If the USE flag is specified at emerge, it applies a patch to APG's Makefile to enable the cracklib support. Reproducible: Always Steps to Reproduce: apg -k Actual Results: apg: unknown option -k Expected Results: Generated passwords checked against cracklib to ensure strong passwords. The one biggest thing I was unsure of was in my patched Makefile to enable cracklib support one of the envirement variables required is CRACKLIB_DICTPATH, which should be whatever DICTPATH was when cracklib was installed. In cracklib-2.7-r10 this was "/usr/lib/cracklib_dict". I wasn't sure if there was any way to check for any other possible DICTPATH at compile time (or even if it would be necessary to), so I just hardcoded it to "/usr/lib/cracklib_dict".
Created attachment 41811 [details] APG ebuild w/ cracklib USE flag
Created attachment 41812 [details, diff] APG Makefile patch to enable cracklib support. Goes in /usr/portage/app-admin/apg/files/
Oh, and I guess something like this should go into /usr/portage/profiles/use.local.desc app-admin/apg:cracklib - Support for cracklib strong password checking
Rob, I need help with this -- TaD's not with gentoo any more due to his real life obligations.
thanks Conway, in portage.