Re: fix for no ssh

To: debian-user@lists.debian.org
Subject: Re: fix for no ssh
From: Curt <curty@free.fr>
Date: Mon, 8 Jul 2019 09:01:36 -0000 (UTC)
Message-id: <[🔎] slrnqi61jg.21v.curty@einstein.electron.org>
References: <[🔎] 201907071029.23210.gheskett@shentel.net> <[🔎] a0d958a0a2649252c0997acd0630d83ed0ef6b1a.camel@yxit.co.uk> <[🔎] 20190707164348.k3txnfamgaupmzam@localhost> <[🔎] CAJmb-Ykzu=icMr3Zk-U41Ur_tSKqObuJ5C0jNi4my5UchhBYgg@mail.gmail.com> <[🔎] 20190708065440.hrxbo4e3752rbqpv@localhost>

On 2019-07-08, Andrei POPESCU <andreimpopescu@gmail.com> wrote:
>
>> Wow. Another reason to love systemd :-(
>
> Not clear to me why you are blaming systemd here.
>

Because systemd is to blame (at least in the opinion of some people in the
know, like Stefan Frisch, for instance):

https://qa.debian.org/developer.php?login=sf@debian.org

https://lists.debian.org/debian-devel/2018/12/msg00184.html

...

 The systemd maintainers argue that individual services should handle this 
 problem [1,2]. But this does not scale and the whole point of the getrandom() 
 syscall is that it cannot fail and that its users do not need fallback code 
 that is not well-tested and probably buggy. [5]

> In my understanding what sysv-init does (crediting entropy over reboots)
> is not secure for various reasons.

...

 The problem is that systemd (and probably /etc/init.d/urandom, too) does not set 
 the flag that allows the kernel to credit the randomness and so the kernel does 
 not know about the entropy contained in that file. Systemd upstream argues that 
 this is supposed to protect against the same OS image being used many times 
 [3]. (More links to more discussion can be found at [4]).

 But an identical OS image needs to be modified anyway in order to be secure 
 (re-create ssh host keys, change root password, re-create ssl-cert's private 
 keys, etc.). Injecting some entropy in some way is just another task that 
 needs to be done for that use case.  So basically the current implementation 
 of systemd-random-seed.service breaks stuff for everyone while not fixing the 
 thing they are claiming to fix.

>> Another reason to perform fresh installs rather than upgrades whenever
>> possible.
>
> How is that supposed to help?
>
> Kind regards,
> Andrei

-- 
"These findings demonstrate that under appropriate conditions the isolated,
intact large mammalian brain possesses an underappreciated capacity for
restoration of microcirculation and molecular and cellular activity after a
prolonged post-mortem interval." From a recent article in *Nature*. Holy shit.

Reply to:

Follow-Ups:
- Re: fix for no ssh
  - From: Andrei POPESCU <andreimpopescu@gmail.com>

References:
- fix for no ssh
  - From: Gene Heskett <gheskett@shentel.net>
- Re: fix for no ssh
  - From: Tixy <tixy@yxit.co.uk>
- Re: fix for no ssh
  - From: Andrei POPESCU <andreimpopescu@gmail.com>
- Re: fix for no ssh
  - From: Nicholas Geovanis <nickgeovanis@gmail.com>
- Re: fix for no ssh
  - From: Andrei POPESCU <andreimpopescu@gmail.com>

Prev by Date: Re: Check your signing key expiration dates!
Next by Date: Re: No jigdo images yet?
Previous by thread: Re: fix for no ssh
Next by thread: Re: fix for no ssh
Index(es):
- Date
- Thread