Bug#512209: Please don't touch sshd from interfaces-up

To: submit@bugs.debian.org
Subject: Bug#512209: Please don't touch sshd from interfaces-up
From: Peter Palfrader <weasel@debian.org>
Date: Sun, 18 Jan 2009 17:59:18 +0100
Message-id: <[🔎] 20090118165918.GE12108@anguilla.noreply.org>
Reply-to: Peter Palfrader <weasel@debian.org>, 512209@bugs.debian.org

Package: openssh-server
Version: 1:5.1p1-5

| * Check that /var/run/sshd.pid exists and that the process ID listed there
|   corresponds to sshd before running '/etc/init.d/ssh reload' from if-up
|   script; SIGHUP is racy if called at boot before sshd has a chance to
|   install its signal handler, but fortunately the pid file is written
|   after that which lets us avoid the race (closes: #502444).
| * While the above is a valuable sanity-check, it turns out that it doesn't
|   really fix the bug (thanks to Kevin Price for testing), so for the
|   meantime we'll just use '/etc/init.d/ssh restart', even though it is
|   unfortunately heavyweight.

Why restart it at all?  There's little point in the default
configuration where sshd listens on INADDR_ANY.

At least make it configurable and don't mess with it from interfaces by
default.

Thanks
-- 
                           |  .''`.  ** Debian GNU/Linux **
      Peter Palfrader      | : :' :      The  universal
 http://www.palfrader.org/ | `. `'      Operating System
                           |   `-    http://www.debian.org/

Reply to:

Follow-Ups:
- Bug#512209: Please don't touch sshd from interfaces-up
  - From: Colin Watson <cjwatson@debian.org>

Prev by Date: openssh 1:5.1p1-5 MIGRATED to testing
Next by Date: Bug#512209: Please don't touch sshd from interfaces-up
Previous by thread: openssh 1:5.1p1-5 MIGRATED to testing
Next by thread: Bug#512209: Please don't touch sshd from interfaces-up
Index(es):
- Date
- Thread