sshd_config is modified/replaced
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
walinuxagent (Ubuntu) |
Fix Released
|
Medium
|
David Medberry |
Bug Description
After launching an instance on azure from the "quick start" and typing a password in, I ssh'd in.
I wanted to llook at sshd_config, and couldn't without being root.
The permissions on sshd_config are set to:
# ls -l /etc/ssh/
-rw------- 1 root root 674 Jun 3 10:41 /etc/ssh/
Also, comments are stripped out of the file.
It has been modified and is different than the stock ubuntu sshd (as in the cloud images).
diff'ing a sorted version found in azure and that found in the same ubuntu release (12.04) on amazon I find:
--- sshd_config.azure 2013-06-07 13:06:43.641223901 +0000
+++ sshd_config 2013-06-07 13:06:25.421223900 +0000
@@ -1,6 +1,5 @@
AcceptEnv LANG LC_*
ChallengeRespo
-ClientAliveInt
HostbasedAuthe
HostKey /etc/ssh/
HostKey /etc/ssh/
@@ -9,7 +8,7 @@
KeyRegeneratio
LoginGraceTime 120
LogLevel INFO
-PasswordAuthen
+PasswordAuthen
PermitEmptyPas
PermitRootLogin yes
Port 22
the PasswordAuthent
ProblemType: Bug
DistroRelease: Ubuntu 12.04
Package: walinuxagent 1.3.2-0ubuntu1~
ProcVersionSign
Uname: Linux 3.2.0-45-virtual x86_64
ApportVersion: 2.0.1-0ubuntu17.2
Architecture: amd64
Date: Fri Jun 7 12:40:51 2013
MarkForUpload: True
ProcEnviron:
TERM=xterm
PATH=(custom, no user)
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: walinuxagent
UpgradeStatus: No upgrade log present (probably fresh install)
Changed in walinuxagent (Ubuntu): | |
assignee: | nobody → David Medberry (med) |
Changed in walinuxagent (Ubuntu): | |
status: | New → Confirmed |
Is walinuxagent modifying /etc/ssh/ sshd_config? I don't think it's allowed to do that. See Debian policy 10.7.4:
http:// www.debian. org/doc/ debian- policy/ ch-files. html#s10. 7.4