Bug#228048: ssh: Answer to Debconf question `run_sshd' is ignored during first configuration

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#228048: ssh: Answer to Debconf question `run_sshd' is ignored during first configuration
From: Danilo Piazzalunga <danilopiazza@libero.it>
Date: Fri, 16 Jan 2004 10:49:40 +0100
Message-id: <[🔎] E1AhQbk-00018H-Fz@desktop>
Reply-to: Danilo Piazzalunga <danilopiazza@libero.it>, 228048@bugs.debian.org

Package: ssh
Version: 1:3.6.1p2-11
Severity: minor

This problem happens only when ssh is installed for the first time.

The user is asked, during preconfiguration, about running the sshd
server. If the answer the user gives is no, it is ignored: when the
configure script is called by postinst, it will always set `run_sshd'
to true, since /etc/ssh/sshd_not_to_run will not exist (yet).

I'm inserting below the "guilty" code. It looks like it is acknowledged
in these comments (so the bug has low priority), but I think that at
least the user should be warned about this.

  ssh.config (snippet)

    56  # To be correct during initial installation, this relies on the desired
    57  # default for run_sshd being "true".
    58  if [ -e /etc/ssh/sshd_not_to_be_run ]
    59  then
    60      db_set ssh/run_sshd false
    61  else
    62      db_set ssh/run_sshd true
    63  fi
    64  db_input medium ssh/run_sshd || true

Best regards,
		Danilo

-- System Information:
Debian Release: testing/unstable
Architecture: i386
Kernel: Linux desktop 2.4.24-1-686 #1 Tue Jan 6 21:29:44 EST 2004 i686
Locale: LANG=it_IT.UTF-8, LC_CTYPE=it_IT.UTF-8

Versions of packages ssh depends on:
ii  adduser                     3.51         Add and remove users and groups
ii  debconf                     1.4.7        Debian configuration management sy
ii  dpkg                        1.10.18      Package maintenance system for Deb
ii  libc6                       2.3.2.ds1-10 GNU C Library: Shared libraries an
ii  libpam-modules              0.76-15      Pluggable Authentication Modules f
ii  libpam-runtime              0.76-15      Runtime support for the PAM librar
ii  libpam0g                    0.76-15      Pluggable Authentication Modules l
ii  libssl0.9.7                 0.9.7c-5     SSL shared libraries
ii  libwrap0                    7.6-ipv6.1-3 Wietse Venema's TCP wrappers libra
ii  zlib1g                      1:1.2.1-3    compression library - runtime

-- debconf information:
* ssh/privsep_tell: 
  ssh/insecure_rshd: 
  ssh/privsep_ask: true
  ssh/ssh2_keys_merged: 
  ssh/user_environment_tell: 
* ssh/forward_warning: 
  ssh/insecure_telnetd: 
  ssh/new_config: true
* ssh/use_old_init_script: true
* ssh/protocol2_only: true
  ssh/encrypted_host_key_but_no_keygen: 
* ssh/run_sshd: false
* ssh/SUID_client: true

Reply to:

Prev by Date: Bug#73611: re[17]:
Next by Date: Bug#228064: ssh: remote port forwarding (-R) binds always to localhost (ignores -g)
Previous by thread: Bug#73611: re[17]:
Next by thread: Bug#228064: ssh: remote port forwarding (-R) binds always to localhost (ignores -g)
Index(es):
- Date
- Thread