Bug#1006171: Make internal-sftp the default

To: 1006171@bugs.debian.org
Subject: Bug#1006171: Make internal-sftp the default
From: dirdi <bugs@dirdi.name>
Date: Sun, 13 Mar 2022 18:20:21 +0100
Message-id: <[🔎] 742a1142-9053-75ce-2ccd-7bd35ff4f8e8@dirdi.name>
Reply-to: dirdi <bugs@dirdi.name>, 1006171@bugs.debian.org
References: <13ae6053-fb94-bfba-7bf3-a949d4d9bed0@dietpi.com>

I understand and support Colin's stance that the default configurationshipped with Debian should follow upstream.

The nasty thing about subsystem directives is that they cannot beoverridden by a .conf file placed inside the /etc/ssh/sshd_config.d/folder, due to this bug:https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=998834

So if one wants to use e.g. the internal sftp server, one MUST modifythe /etc/ssh/sshd_config file. This in turn interferes with automaticupgrade scripts like cron-apt, unattended-upgrades etc.

I thought about moving the subsystem directive into a new file insidethe /etc/ssh/sshd_config.d/ folder. However, this would result in brokenconfigurations on machines where the administrator keeps a modified/etc/ssh/sshd_config file during an upgrade.

Reply to:

Next by Date: Bug#1007822: "ssh -XAf localhost xeyes" uses 100% CPU after losing tty
Next by thread: Bug#1007822: "ssh -XAf localhost xeyes" uses 100% CPU after losing tty
Index(es):
- Date
- Thread