Public bug reported:
Ubuntu release: Ubuntu 24.04.2 LTS
Package affected version: openssh-server:1:9.6p1-3ubuntu13.13
-------
After upgrading openssh-server:1:9.6p1-3ubuntu13.11 and openssh-
server:1:9.6p1-3ubuntu13.12 to openssh-server:1:9.6p1-3ubuntu13.13 using
unattended upgrades I found my Ubuntu 24 server unreachable via ssh.
During intial setup I changed my ssh configuration adding TCP 1221 to
its binding ports, to make that I followed these steps:
cat << EOF > /etc/ssh/sshd_config.d/custom.conf
Port 1221
Port 22
PermitRootLogin no
PasswordAuthentication no
EOF
systemctl edit ssh.socket
# adding these lines
[Socket]
ListenStream=
ListenStream=22
ListenStream=1221
If I don't add any of those configuration changes to ssh.service and
ssh.socket ssh is still available on standard tcp port 22 after
upgrading to version 1:9.6p1-3ubuntu13.13.
I I add those changes AFTER upgrading to version 1:9.6p1-3ubuntu13.13
the problem still occurr and ssh will become unavailable.
Downgrade to previous version (1:9.6p1-3ubuntu13.11 or
1:9.6p1-3ubuntu13.12 fixes the problem without changing any of the
previous customizations.
Syntax to downgrade:
sudo apt update; sudo apt install -y openssh-client=1:9.6p1-3ubuntu13.11
openssh-server=1:9.6p1-3ubuntu13.11 openssh-sftp-server=1:9.6p1-3ubuntu13.11
Steps to reproduce the problem on a new Ubuntu instance (tested both on AWS EC2
and GCP instances):
1. create a new instance based on Ubuntu 24LTS AMI
2. add TCP port 1221 (or any port you want) to ssh binding
cat << EOF > /etc/ssh/sshd_config.d/custom.conf
Port 1221
Port 22
PermitRootLogin no
PasswordAuthentication no
EOF
systemctl edit ssh.socket
# add these lines
[Socket]
ListenStream=
ListenStream=22
ListenStream=1221
systemctl restart ssh.service ssh.socket
3. check ssh is available on TCP 22 and TCP 1221 (check firewall or security
group)
4. upgrade system packages (make sure to upgrade openssh-server to version
1:9.6p1-3ubuntu13.13
sudo apt update ; sudo apt upgrade -y
5. sudo shutdown -r now
6. ssh unavailable after reboot but ssh.service and ssh.socket do not show any
error or problem whatsoever.
Thanks
Tas
** Affects: openssh (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2118912
Title:
openssh-server unavailable after upgrade to 1:9.6p1-3ubuntu13.13
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/2118912/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
