[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#714200: marked as done (openssh-server: dpkg-reconfigure openssh-server doesn't create ecdsa host)

Your message dated Wed, 26 Jun 2013 21:01:10 +0200
with message-id <51CB3A76.7010902@riseup.net>
and subject line Re: Bug#714200: openssh-server: dpkg-reconfigure openssh-server doesn't create ecdsa host
has caused the Debian Bug report #714200,
regarding openssh-server: dpkg-reconfigure openssh-server doesn't create ecdsa host
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
714200: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=714200
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message --- 
Package: openssh-server
Version: 1:6.0p1-4
Severity: normal

Dear Maintainer,

When (re-)creating host keys for a system by using dpkg-reconfigure
openssh-server, the ECDSA host keys are not created.

How to reproduce:
* install a system with openssh-server
$ rm /etc/ssh/ssh_host_*
$ dpkg-reconfigre openssh-server
Creating SSH2 RSA key; this may take some time ...
Creating SSH2 DSA key; this may take some time ...
Restarting OpenBSD Secure Shell server: sshd.
root@wallaby:/etc/ssh#

Expected behavior:
$ dpkg-reconfigre openssh-server
Creating SSH2 RSA key; this may take some time ...
Creating SSH2 DSA key; this may take some time ...
Creating SSH2 ECDSA key; this won't take as much time …


-- System Information:
Debian Release: 7.1
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-4-amd64 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages openssh-server depends on:
ii  adduser                3.113+nmu3
ii  debconf [debconf-2.0]  1.5.49
ii  dpkg                   1.16.10
ii  libc6                  2.13-38
ii  libcomerr2             1.42.5-1.1
ii  libgssapi-krb5-2       1.10.1+dfsg-5+deb7u1
ii  libkrb5-3              1.10.1+dfsg-5+deb7u1
ii  libpam-modules         1.1.3-7.1
ii  libpam-runtime         1.1.3-7.1
ii  libpam0g               1.1.3-7.1
ii  libselinux1            2.1.9-5
ii  libssl1.0.0            1.0.1e-2
ii  libwrap0               7.6.q-24
ii  lsb-base               4.1+Debian8+deb7u1
ii  openssh-client         1:6.0p1-4
ii  procps                 1:3.3.3-3
ii  zlib1g                 1:1.2.7.dfsg-13

Versions of packages openssh-server recommends:
ii  ncurses-term             5.9-10
ii  openssh-blacklist        0.4.1+nmu1
ii  openssh-blacklist-extra  0.4.1+nmu1
ii  xauth                    1:1.0.7-1

Versions of packages openssh-server suggests:
pn  molly-guard   <none>
pn  monkeysphere  <none>
pn  rssh          <none>
pn  ssh-askpass   <none>
pn  ufw           <none>

-- debconf information:
* ssh/use_old_init_script: true
  ssh/vulnerable_host_keys:
  ssh/encrypted_host_key_but_no_keygen:
  ssh/disable_cr_auth: false

--- End Message ---
--- Begin Message --- 
Thanks Colin,

On 26/06/13 20:43, Colin Watson wrote:
> I suspect you have an old version of /etc/ssh/sshd_config that does not
> contain "HostKey /etc/ssh/ssh_host_ecdsa_key".  Add that and
> reconfiguration will do as you request.

You're right, I generated a new system from scratch and that contains
indeed HostKey /etc/ssh/ssh_host_ecdsa_key and the host I reported this
bug from, having been upgraded, contained an older version of
/etc/ssh/sshd_config

--- End Message ---
Reply to: