Bug#1018260: marked as done (openssh-server: fills the log with "deprecated reading of user environment enabled")

To: Colin Watson <cjwatson@debian.org>
Subject: Bug#1018260: marked as done (openssh-server: fills the log with "deprecated reading of user environment enabled")
From: "Debian Bug Tracking System" <owner@bugs.debian.org>
Date: Tue, 25 Jun 2024 13:39:03 +0000
Message-id: <[🔎] handler.1018260.D1018260.17193226622655286.ackdone@bugs.debian.org>
Reply-to: 1018260@bugs.debian.org
References: <E1sM6Mb-003PIZ-TG@fasolo.debian.org> <E1oSBJL-001CjL-2q@tucano.isti.cnr.it>

Your message dated Tue, 25 Jun 2024 13:37:37 +0000
with message-id <E1sM6Mb-003PIZ-TG@fasolo.debian.org>
and subject line Bug#1018260: fixed in openssh 1:9.7p1-6
has caused the Debian Bug report #1018260,
regarding openssh-server: fills the log with "deprecated reading of user environment enabled"
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
1018260: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1018260
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

To: Debian Bug Tracking System <maintonly@bugs.debian.org>
Subject: openssh-server: fills the log with "deprecated reading of user environment enabled"
From: Francesco Potortì <Potorti@isti.cnr.it>
Date: Sun, 28 Aug 2022 07:58:19 +0200
Message-id: <E1oSBJL-001CjL-2q@tucano.isti.cnr.it>

Package: openssh-server
Version: 1:9.0p1-1+b1
Severity: minor
X-Debbugs-Cc: none, Francesco Potortì <Potorti@isti.cnr.it>
File: /usr/sbin/sshd

Dear Maintainer,

My log is full of these:
 sshd[4180530]: pam_env(sshd:session): deprecated reading of user environment enabled

There are two-four lines per minute

-- 
Francesco Potortì (ricercatore)        Voice:  +39.050.621.3058
ISTI - Area della ricerca CNR          Mobile: +39.348.8283.107
via G. Moruzzi 1, I-56124 Pisa         Skype:  wnlabisti
(gate 20, 1st floor, room C71)         Web:    http://fly.isti.cnr.it


-- System Information:
Debian Release: bookworm/sid
  APT prefers testing
  APT policy: (990, 'testing'), (101, 'unstable')
merged-usr: no
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 5.15.0-3-amd64 (SMP w/4 CPU threads)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_WARN, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=C.UTF-8, LC_CTYPE=it_IT.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages openssh-server depends on:
ii  adduser                3.123
ii  debconf [debconf-2.0]  1.5.79
ii  dpkg                   1.21.9
ii  init-system-helpers    1.64
ii  libaudit1              1:3.0.7-1+b1
ii  libc6                  2.34-4
ii  libcom-err2            1.46.5-2
ii  libcrypt1              1:4.4.28-2
ii  libgssapi-krb5-2       1.20-1
ii  libkrb5-3              1.20-1
ii  libpam-modules         1.5.2-2
ii  libpam-runtime         1.5.2-2
ii  libpam0g               1.5.2-2
ii  libselinux1            3.4-1+b1
ii  libssl3                3.0.5-2
ii  libsystemd0            251.3-1
ii  libwrap0               7.6.q-31
ii  lsb-base               11.2
ii  openssh-client         1:9.0p1-1+b1
ii  openssh-sftp-server    1:9.0p1-1+b1
ii  procps                 2:3.3.17-7+b1
ii  runit-helper           2.14.1
ii  ucf                    3.0043
ii  zlib1g                 1:1.2.11.dfsg-4.1

Versions of packages openssh-server recommends:
ii  libpam-systemd [logind]  251.3-1
ii  ncurses-term             6.3+20220423-2
ii  xauth                    1:1.1.1-1

Versions of packages openssh-server suggests:
pn  molly-guard                      <none>
pn  monkeysphere                     <none>
ii  ssh-askpass-gnome [ssh-askpass]  1:9.0p1-1+b1
pn  ufw                              <none>

-- debconf information:
* ssh/use_old_init_script: true
* openssh-server/permit-root-login: false
  ssh/disable_cr_auth: false
  ssh/encrypted_host_key_but_no_keygen:
  ssh/vulnerable_host_keys:
  openssh-server/password-authentication: true

--- End Message ---

--- Begin Message ---

To: 1018260-close@bugs.debian.org
Subject: Bug#1018260: fixed in openssh 1:9.7p1-6
From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
Date: Tue, 25 Jun 2024 13:37:37 +0000
Message-id: <E1sM6Mb-003PIZ-TG@fasolo.debian.org>
Reply-to: Colin Watson <cjwatson@debian.org>

Source: openssh
Source-Version: 1:9.7p1-6
Done: Colin Watson <cjwatson@debian.org>

We believe that the bug you reported is fixed in the latest version of
openssh, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 1018260@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Colin Watson <cjwatson@debian.org> (supplier of updated openssh package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 25 Jun 2024 14:20:44 +0100
Source: openssh
Architecture: source
Version: 1:9.7p1-6
Distribution: unstable
Urgency: medium
Maintainer: Debian OpenSSH Maintainers <debian-ssh@lists.debian.org>
Changed-By: Colin Watson <cjwatson@debian.org>
Closes: 1018260
Changes:
 openssh (1:9.7p1-6) unstable; urgency=medium
 .
   * Stop reading ~/.pam_environment, which has a history of security
     problems and is deprecated by PAM upstream (closes: #1018260).
Checksums-Sha1:
 1b1c222d249e95d78861819bf6a3442fd6075ce7 3313 openssh_9.7p1-6.dsc
 09b9202f35787ae01e042d9c42328a72d9776ccb 194124 openssh_9.7p1-6.debian.tar.xz
Checksums-Sha256:
 9ac30c98e9ebec9714c75b148fc4650a1ecb6711f0031e8231843cc01e369fc4 3313 openssh_9.7p1-6.dsc
 df816779613bfcb6c194e3b29ac1ad8f1685adc0b0735e05f7a5efe205f65378 194124 openssh_9.7p1-6.debian.tar.xz
Files:
 32c36274041396084b7b0913fa7d7b57 3313 net standard openssh_9.7p1-6.dsc
 bf7e670e9f8cc90711fd3ef81f886ea9 194124 net standard openssh_9.7p1-6.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=eYmC
-----END PGP SIGNATURE-----

Attachment: pgpavOxgiScT8.pgp
Description: PGP signature

--- End Message ---

Reply to:

Prev by Date: openssh_9.7p1-6_source.changes ACCEPTED into unstable
Next by Date: Processing of openssh_9.7p1-6_source.changes
Previous by thread: openssh_9.7p1-6_source.changes ACCEPTED into unstable
Next by thread: Processing of openssh_9.7p1-6_source.changes
Index(es):
- Date
- Thread