Re: deprecated options in openssh

[Adam Weremczuk <adamw@matrixscience.com>]

Installation and configuration was straightforward:

sudo apt install logwatch

/etc/cron.daily/00logwatch
#execute
/usr/sbin/logwatch --detail low --mailto xxx@domain.com

The master config file /usr/share/logwatch/default.conf/logwatch.conf 
left with defaults.

Only one report per day arrives. Same as for the other dozen of Debian 
(mostly older) machines it's installed on and which don't show this issue.

I've run a recursive search across the entire file system but no other 
occurrences of the problematic options have been found:

sudo find / -type f -exec grep -l UsePrivilegeSeparation {} \;

Still puzzled...

On 16/08/2021 15:34, Greg Wooledge wrote:
> On Mon, Aug 16, 2021 at 03:06:30PM +0100, Adam Weremczuk wrote:
> > I run openssh 7.9p1-10+deb10u2 on Debian 10.10.
> >
> > Logwatch, which runs daily, occasionally (maybe 2-3 times per month) reports
> > the following:
> Sometimes you get warnings, and sometimes you don't?  That's a red flag
> right off the bat.
>
> Is this "logwatch" thing run by a crontab entry, or by a systemd timer?
>
> Are the ones that give warnings run by a *different* crontab entry, or
> a *different* systemd timer?
>
> > Why is logwatch still complaining and why is it getting the line numbers
> > wrong?
> My first guess is that there's another sshd_config file somewhere else
> that it's reading, on the occasions where you get the warnings, possibly
> due to a second crontab entry or whatever.
>
> Or maybe logwatch has a configuration file that defines different tasks
> depending on the day, and one of the tasks is set to read the wrong file?