http://qa.mandrakesoft.com/show_bug.cgi?id=3784
[EMAIL PROTECTED] changed:
What |Removed |Added
----------------------------------------------------------------------------
Version|0.38-3mdk |0.38-4mdk
------- Additional Comments From [EMAIL PROTECTED] 2003-01-07 17:16 -------
This bug has been automatically updated to last version of product available.
Please check if it is still valid.
--
Configure bugmail: http://qa.mandrakesoft.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
------- Reminder: -------
assigned_to: [EMAIL PROTECTED]
status: UNCONFIRMED
creation_date:
description:
Sshd package seems to creante the sshd account without password.
Msec with a high security level deletes accounts with badly configured password
(/etc/shadow).
Hence, sshd account seemd to be deleted by msec.
In my case (mandrake 9.0 out of the box), msec deletes _weekly_ the sshd account.
I have read on the internet that for some other users, msec occasionally delete the
sshd account at boot time.
Sshd package need a sshd account for the necessary priviledge-separation-user feature.
This feature is a security feature. Hence, sshd server won't work if msec runs with a
high security level.
Have to correct the sshd package so that, each time it is run, /etc/rc.d/init.d/sshd
creates the sshd account if necessary, with a password.
Alternatively, have to correct the sshd package so that the sshd account is always
validated by msec.
