Bug#817836: openssh-server: ECDSA host key creation after upgrades
Package: openssh-server
Version: 1:6.0p1-4+deb7u3
Severity: wishlist
Dear Maintainer,
We're upgrading some systems from Debian 6 to Debian 7 (and then maybe 8). As
part of the update, the newer version of OpenSSH supports the newer ECDSA
format.
However, after the upgrade is complete, and I run 'dpkg-reconfigure
openssh-server', the "/etc/ssh/ssh_host_ecdsa_key" is not generated.
It seems that the package doesn't touch sshd_config(5) to add the new
HostKey file.
This isn't necessarily a bad thing, but could you add functinality so that
the user is prompted about updating "/etc/ssh/sshd_config"? If there have
been no local changes then the new file can be installed, but if there are
site-specific modifications then the admin can decide what to do.
-- System Information:
Debian Release: 7.9
APT prefers oldstable
APT policy: (500, 'oldstable')
Architecture: amd64 (x86_64)
Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_CA.UTF-8, LC_CTYPE=en_CA.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages openssh-server depends on:
ii adduser 3.113+nmu3
ii debconf [debconf-2.0] 1.5.49
ii dpkg 1.16.17
ii libc6 2.13-38+deb7u10
ii libcomerr2 1.42.5-1.1+deb7u1
ii libgssapi-krb5-2 1.10.1+dfsg-5+deb7u7
ii libkrb5-3 1.10.1+dfsg-5+deb7u7
ii libpam-modules 1.1.3-7.1
ii libpam-runtime 1.1.3-7.1
ii libpam0g 1.1.3-7.1
ii libselinux1 2.1.9-5
ii libssl1.0.0 1.0.1e-2+deb7u20
ii libwrap0 7.6.q-24
ii lsb-base 4.1+Debian8+deb7u1
ii openssh-client 1:6.0p1-4+deb7u3
ii procps 1:3.3.3-3
ii zlib1g 1:1.2.7.dfsg-13
-- debconf information excluded
Reply to: