Bug#858646: openssh-client: security update of ssh-copy-id breaks previous behaviour by searching for matching private key

[Pierre Colombier <pcdwarf@pcdwarf.net>]

Hi,


I may have fooled myself believing this is a recent change.

Thanks for taking time checking.

I should have. Shame on me.



About the -f option.

I also think this is not a good idea to push big patches into stable if 
it's not absolutely mandatory, but I will deffinitely appreciate a 
backport from testing.


Thanks.

Pierre.



On 24/03/2017 22:44, Colin Watson wrote:
> I believe that you are incorrect that this was a regression introduced
> in the course of a stable release; rather, it appears to have been
> introduced upstream in OpenSSH 6.2p1 (git commit
> 83efe7c86168cc07b8e6cc6df6b54f7ace3b64a3), which was some time before
> jessie became stable.
>
> > This was reported as a bug upstream and it has been solved by adding a
> > -f option.
> >
> > https://bugzilla.mindrot.org/show_bug.cgi?id=2110
> That's certainly helpful, but it's not a completely trivial patch so
> it's not clear whether I'd get it into a stable update.  It might be
> better to do this via backports, since the upstream change in question
> (git commit ef39e8c0497ff0564990a4f9e8b7338b3ba3507c) was part of
> OpenSSH 7.2p1 and has been in testing for some time.