Bug#645788: openssh-server: /run on tmpfs breaks sshd started from inetd

To: Dirk Heinrichs <dirk.heinrichs@altum.de>, 645788@bugs.debian.org
Subject: Bug#645788: openssh-server: /run on tmpfs breaks sshd started from inetd
From: Colin Watson <cjwatson@debian.org>
Date: Fri, 24 Feb 2012 08:55:42 +0000
Message-id: <[🔎] 20120224085542.GX3917@riva.dynamic.greenend.org.uk>
Reply-to: Colin Watson <cjwatson@debian.org>, 645788@bugs.debian.org
In-reply-to: <20111018165607.6010.85252.reportbug@rohan.altum.de>
References: <20111018165607.6010.85252.reportbug@rohan.altum.de>

On Tue, Oct 18, 2011 at 06:56:07PM +0200, Dirk Heinrichs wrote:
> I'm running sshd with priviledge separation enabled from inetd, but
> since some time I can't login anymore after reboot.
> 
> In /var/log/auth.log, I see the followin message:
> 
> fatal: Missing privilege separation directory: /var/run/sshd
> 
> The reason for this is that /var/run is now a symlink to /run, which
> is mounted as a tmpfs, thus it doesn't survive a reboot.

I'm not sure what I can do about this.  The init script ensures that
/var/run/sshd exists; isn't it your responsibility to make suitable
arrangements when locally configuring sshd to start from inetd?

(I suppose you could argue that the Debian packaging should set the
privsep path to /var/lib/sshd instead.  That seems quite difficult to
change now though ...)

-- 
Colin Watson                                       [cjwatson@debian.org]

Reply to:

Follow-Ups:
- Bug#645788: openssh-server: /run on tmpfs breaks sshd started from inetd
  - From: Dirk Heinrichs <dirk.heinrichs@altum.de>

Prev by Date: Processing of openssh_5.9p1-3_i386.changes
Next by Date: Bug#656434: Openssh compiled with heimdal as kerberos library
Previous by thread: Processing of openssh_5.9p1-3_i386.changes
Next by thread: Bug#645788: openssh-server: /run on tmpfs breaks sshd started from inetd
Index(es):
- Date
- Thread