Bug#483756: insist ssh-vulnkey -a be run by the administrator upon upgrade

To: submit@bugs.debian.org
Subject: Bug#483756: insist ssh-vulnkey -a be run by the administrator upon upgrade
From: jidanni@jidanni.org
Date: Sat, 31 May 2008 05:22:28 +0800
Message-id: <[🔎] 87prr3zduz.fsf@jidanni.org>
Reply-to: jidanni@jidanni.org, 483756@bugs.debian.org

Package: openssh-client
Version: 1:4.7p1-12
Severity: wishlist
File: /usr/bin/ssh-vulnkey
X-debbugs-cc: suresh@hserus.net

Upon the next upgrade of this package, a screen should greet the
administrator asking him if we shall run ssh-vulnkey -a right now, or
will he remember to run it later [yes|no]...

Why? Because the average administrator of ones personal machine does
not know that there are things on his machine that are bad, even if he
heard there is some SSL crisis and updated the packages in response.

Also please emit a message about what action one should take, or tell
them to see the man page, when bad things are found.

Reply to:

Follow-Ups:
- Bug#483756: insist ssh-vulnkey -a be run by the administrator upon upgrade
  - From: Colin Watson <cjwatson@debian.org>

Prev by Date: Bug#483730: marked as done (ssh-vulnkey --help)
Next by Date: Bug#483755: openssh-client: ssh-vulnkey from lenny (testing) doesn't work with blacklists from sid
Previous by thread: Processed: Re: Bug#483730: ssh-vulnkey --help
Next by thread: Bug#483756: insist ssh-vulnkey -a be run by the administrator upon upgrade
Index(es):
- Date
- Thread