Bug#616302: marked as done (openssh-server: some xauth dependency issue)

[owner@bugs.debian.org (Debian Bug Tracking System)]

Your message dated Thu, 3 Mar 2011 13:08:02 +0000
with message-id <20110303130802.GH31494@riva.ucam.org>
and subject line Re: Bug#616302: openssh-server: some xauth dependency issue
has caused the Debian Bug report #616302,
regarding openssh-server: some xauth dependency issue
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
616302: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=616302
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

• To: Debian Bug Tracking System <submit@bugs.debian.org>
• Subject: openssh-server: some xauth dependency issue
• From: stanislav.v.v@gmail.com
• Date: Thu, 03 Mar 2011 15:45:47 +0500
• Message-id: <20110303104547.13807.63654.reportbug@stas-it.neyvabank.ru>

Package: openssh-server
Version: 1:5.5p1-6
Severity: minor


openssh-server depends on xauth.
When i select in installer's tasksel only ssh-server, i see xauth with some X11 stuff.
I think it's wrong. For example, on mail server or network gateway xauth and libx11 will never used.

-- System Information:
Debian Release: 6.0
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: i386 (i686)

Kernel: Linux 2.6.32-5-686-bigmem (SMP w/2 CPU cores)
Locale: LANG=ru_RU.UTF-8, LC_CTYPE=ru_RU.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages openssh-server depends on:
ii  adduser                 3.112+nmu2       add and remove users and groups
ii  debconf [debconf-2.0]   1.5.36.1         Debian configuration management sy
ii  dpkg                    1.15.8.10        Debian package management system
ii  libc6                   2.11.2-10        Embedded GNU C Library: Shared lib
ii  libcomerr2              1.41.12-2        common error description library
ii  libgssapi-krb5-2        1.8.3+dfsg-4     MIT Kerberos runtime libraries - k
ii  libkrb5-3               1.8.3+dfsg-4     MIT Kerberos runtime libraries
ii  libpam-modules          1.1.1-6.1        Pluggable Authentication Modules f
ii  libpam-runtime          1.1.1-6.1        Runtime support for the PAM librar
ii  libpam0g                1.1.1-6.1        Pluggable Authentication Modules l
ii  libselinux1             2.0.96-1         SELinux runtime shared libraries
ii  libssl0.9.8             0.9.8o-4squeeze1 SSL shared libraries
ii  libwrap0                7.6.q-19         Wietse Venema's TCP wrappers libra
ii  lsb-base                3.2-23.2squeeze1 Linux Standard Base 3.2 init scrip
ii  openssh-blacklist       0.4.1            list of default blacklisted OpenSS
ii  openssh-client          1:5.5p1-6        secure shell (SSH) client, for sec
ii  procps                  1:3.2.8-9        /proc file system utilities
ii  zlib1g                  1:1.2.3.4.dfsg-3 compression library - runtime

Versions of packages openssh-server recommends:
ii  openssh-blacklist-extra       0.4.1      list of non-default blacklisted Op
ii  xauth                         1:1.0.4-1  X authentication utility

Versions of packages openssh-server suggests:
pn  molly-guard                   <none>     (no description available)
pn  rssh                          <none>     (no description available)
pn  ssh-askpass                   <none>     (no description available)
pn  ufw                           <none>     (no description available)

-- debconf information excluded

--- End Message ---

--- Begin Message ---

• To: 616302-close@bugs.debian.org
• Subject: Re: Bug#616302: openssh-server: some xauth dependency issue
• From: Colin Watson <cjwatson@debian.org>
• Date: Thu, 3 Mar 2011 13:08:02 +0000
• Message-id: <20110303130802.GH31494@riva.ucam.org>
• In-reply-to: <20110303104547.13807.63654.reportbug@stas-it.neyvabank.ru>
• References: <20110303104547.13807.63654.reportbug@stas-it.neyvabank.ru>

tags 616302 wontfix
thanks

On Thu, Mar 03, 2011 at 03:45:47PM +0500, stanislav.v.v@gmail.com wrote:
> openssh-server depends on xauth.

Actually, no, it Recommends xauth.  Here's what the policy manual says
about Recommends:

  This declares a strong, but not absolute, dependency.

  The Recommends field should list packages that would be found together
  with this one in all but unusual installations.

I think this applies to openssh-server -> xauth.  It causes a good deal
of confusion when it's absent, and it's often appropriate even on
servers (e.g. to run just the occasional graphical administration tool).

> When i select in installer's tasksel only ssh-server, i see xauth with
> some X11 stuff.
> I think it's wrong. For example, on mail server or network gateway
> xauth and libx11 will never used.

While in some circumstances it's unnecessary, the footprint is low, just
a few megabytes, and you can remove it if you choose; or you can say
'apt-get --no-install-recommends install openssh-server'.

I'm afraid that, on balance, I would prefer to leave this as it is.

Regards,

-- 
Colin Watson                                       [cjwatson@debian.org]

--- End Message ---