Bug#228048: ssh: Answer to Debconf question `run_sshd' is ignored during first configuration
Package: ssh
Version: 1:3.6.1p2-11
Severity: minor
This problem happens only when ssh is installed for the first time.
The user is asked, during preconfiguration, about running the sshd
server. If the answer the user gives is no, it is ignored: when the
configure script is called by postinst, it will always set `run_sshd'
to true, since /etc/ssh/sshd_not_to_run will not exist (yet).
I'm inserting below the "guilty" code. It looks like it is acknowledged
in these comments (so the bug has low priority), but I think that at
least the user should be warned about this.
ssh.config (snippet)
56 # To be correct during initial installation, this relies on the desired
57 # default for run_sshd being "true".
58 if [ -e /etc/ssh/sshd_not_to_be_run ]
59 then
60 db_set ssh/run_sshd false
61 else
62 db_set ssh/run_sshd true
63 fi
64 db_input medium ssh/run_sshd || true
Best regards,
Danilo
-- System Information:
Debian Release: testing/unstable
Architecture: i386
Kernel: Linux desktop 2.4.24-1-686 #1 Tue Jan 6 21:29:44 EST 2004 i686
Locale: LANG=it_IT.UTF-8, LC_CTYPE=it_IT.UTF-8
Versions of packages ssh depends on:
ii adduser 3.51 Add and remove users and groups
ii debconf 1.4.7 Debian configuration management sy
ii dpkg 1.10.18 Package maintenance system for Deb
ii libc6 2.3.2.ds1-10 GNU C Library: Shared libraries an
ii libpam-modules 0.76-15 Pluggable Authentication Modules f
ii libpam-runtime 0.76-15 Runtime support for the PAM librar
ii libpam0g 0.76-15 Pluggable Authentication Modules l
ii libssl0.9.7 0.9.7c-5 SSL shared libraries
ii libwrap0 7.6-ipv6.1-3 Wietse Venema's TCP wrappers libra
ii zlib1g 1:1.2.1-3 compression library - runtime
-- debconf information:
* ssh/privsep_tell:
ssh/insecure_rshd:
ssh/privsep_ask: true
ssh/ssh2_keys_merged:
ssh/user_environment_tell:
* ssh/forward_warning:
ssh/insecure_telnetd:
ssh/new_config: true
* ssh/use_old_init_script: true
* ssh/protocol2_only: true
ssh/encrypted_host_key_but_no_keygen:
* ssh/run_sshd: false
* ssh/SUID_client: true
Reply to: