This bug was fixed in the package openssh - 1:7.6p1-4ubuntu0.7
---
openssh (1:7.6p1-4ubuntu0.7) bionic; urgency=medium
* d/p/fix-connect-timeout-overflow.patch: prevent ConnectTimeout overflow.
(LP: #1903516)
[ Sergio Durigan Junior ]
* d/p/lp1966591-upstream-preserve-group
This bug was fixed in the package openssh - 1:8.2p1-4ubuntu0.5
---
openssh (1:8.2p1-4ubuntu0.5) focal; urgency=medium
* d/p/fix-connect-timeout-overflow.patch: prevent ConnectTimeout overflow.
(LP: #1903516)
[ Sergio Durigan Junior ]
* d/p/lp1966591-upstream-preserve-group-
FWIW, I've also retriggered the tests marked as OLD_NEUTRAL. It should
take a while until everything runs.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1966591
Title:
ssh-keygen -R changes known_h
The Impish failure passed with a retrigger, as expected.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1966591
Title:
ssh-keygen -R changes known_hosts file permissions (mode)
To manage notificatio
Sorry about that.
There are not failures on Focal, but there were a bunch of old passes,
so I've retriggered them.
I'm investigating what's happening with the Impish one.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.l
Please investigate the gvfs autopkgtests failures for impish and focal
as these are blocking the release of openssh for those releases and
subsequently the release for bionic too.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https:/
Verification for Focal:
First, verifying that the bug manifests with the current package:
# apt policy openssh-client
openssh-client:
Installed: 1:8.2p1-4ubuntu0.4
Candidate: 1:8.2p1-4ubuntu0.4
Version table:
*** 1:8.2p1-4ubuntu0.4 500
500 http://archive.ubuntu.com/ubuntu focal-upd
Tested openssh-client/bionic-proposed,now 1:7.6p1-4ubuntu0.7 and
confirmed that group's and others' read permissions are now preserved.
Write and execute permissions are still removed, that is, a umask of
0133 seems to be applied.
** Tags removed: verification-needed-bionic
** Tags added: verifica
Hello Evgeny, or anyone else affected,
Accepted openssh into focal-proposed. The package will build now and be
available at
https://launchpad.net/ubuntu/+source/openssh/1:8.2p1-4ubuntu0.5 in a few
hours, and then in the -proposed repository.
Please help us by testing this new package. See
https:
** Merge proposal linked:
https://code.launchpad.net/~sergiodj/ubuntu/+source/openssh/+git/openssh/+merge/418099
** Merge proposal linked:
https://code.launchpad.net/~sergiodj/ubuntu/+source/openssh/+git/openssh/+merge/418100
** Merge proposal linked:
https://code.launchpad.net/~sergi
** Description changed:
+ [Impact]
+
+ When using "ssh-keygen -R" to remove a host from "known_hosts" the
+ command changes permissions on the file. This can cause problems
+ particularly when used on the global "known_hosts" file
+ (/etc/ssh/ssh_known_hosts), because then only root can read it.
Thanks a lot! 0644 are really the important bits, so while the behavior
is still "user-surprising" it shouldn't cause any practical problems for
us.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/196659
Thanks for the bug report Evgeny and for the initial investigation,
Lena.
The following commit "fixes" the issue:
commit f2d84f1b3fa68d77c99238d4c645d0266fae2a74
Author: d...@openbsd.org
AuthorDate: Wed May 13 09:55:57 2020 +
Commit: Damien Miller
CommitDate: Wed May 27 10:09:19 202
** Bug watch added: OpenSSH Portable Bugzilla #3146
https://bugzilla.mindrot.org/show_bug.cgi?id=3146
** Also affects: openssh via
https://bugzilla.mindrot.org/show_bug.cgi?id=3146
Importance: Unknown
Status: Unknown
--
You received this bug notification because you are a member
Thank you for taking the time to report this bug while providing a good
reproducer.
I was able to reproduce in Focal and Bionic
# ssh-keyscan github.com >test_known_hosts
# ls -la test_known_hosts
-rw-r--r-- 1 root root 656 Mar 28 14:24 test_known_hosts
# ssh-keygen -R github.com -f test_known_
15 matches
Mail list logo
