Bug#555889: marked as done (Null password also disallows key-based logins.)

Wed, 16 Nov 2011 05:06:34 -0800 

Your message dated Wed, 16 Nov 2011 13:03:05 +0000
with message-id <[email protected]>
and subject line Bug#555889: fixed in dropbear 2011.54-1
has caused the Debian Bug report #555889,
regarding Null password also disallows key-based logins.
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
555889: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555889
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Package: dropbear
Version: 0.52-4
Severity: minor

Root has the null password so that people with physical access to a
securetty can log in easily, and remote logins are forced to be
key-based.  This works with openssh-server, but with dropbear I get:

    [2350] Nov 12 21:48:03 user 'root' has blank password, rejected

Even though I'm not trying to log in with the password method, and
indeed dropbear was started with -s.

It seems to me that dropbear should allow key-based authentication
even if the user has a null password -- at the very least this should
be the case if -s is used.

--- End Message ---
--- Begin Message --- 
Source: dropbear
Source-Version: 2011.54-1

We believe that the bug you reported is fixed in the latest version of
dropbear, which is due to be installed in the Debian FTP archive:

dropbear_2011.54-1.diff.gz
  to main/d/dropbear/dropbear_2011.54-1.diff.gz
dropbear_2011.54-1.dsc
  to main/d/dropbear/dropbear_2011.54-1.dsc
dropbear_2011.54-1_amd64.deb
  to main/d/dropbear/dropbear_2011.54-1_amd64.deb
dropbear_2011.54.orig.tar.gz
  to main/d/dropbear/dropbear_2011.54.orig.tar.gz



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Gerrit Pape <[email protected]> (supplier of updated dropbear package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Wed, 16 Nov 2011 12:36:03 +0000
Source: dropbear
Binary: dropbear
Architecture: source amd64
Version: 2011.54-1
Distribution: unstable
Urgency: low
Maintainer: Gerrit Pape <[email protected]>
Changed-By: Gerrit Pape <[email protected]>
Description: 
 dropbear   - lightweight SSH2 server and client
Closes: 555889 636696
Changes: 
 dropbear (2011.54-1) unstable; urgency=low
 .
   [ Matt Johnston ]
   * new upstream release.
     * Added ALLOW_BLANK_PASSWORD option. Dropbear also now allows public
       key logins to accounts with a blank password. Thanks to Rob
       Landley (closes: #555889).
     * Bind to sockets with IPV6_V6ONLY so that it works properly on
       systems regardless of the system-wide setting (closes: #636696).
 .
   [ Gerrit Pape ]
   * debian/control: Standards-Version: 3.9.2.0.
Checksums-Sha1: 
 3192d8c8394c67589d32a6b34ea7ad29dfacaad3 1000 dropbear_2011.54-1.dsc
 09a4d8e4132565f5abf4b1a16efe786af1ad8a63 1774347 dropbear_2011.54.orig.tar.gz
 6df4550f847c58e30676ecce64317361cd1ef7cd 6006 dropbear_2011.54-1.diff.gz
 7da076680bb1ff32fc25ebfc07cd11bb8efc0dc8 281928 dropbear_2011.54-1_amd64.deb
Checksums-Sha256: 
 bc0dedcd22ff1e048d222b00d97493f99c979cbbfd717d161eeb9ff447762eb8 1000 
dropbear_2011.54-1.dsc
 a5fe60fa9c11e7b0f6a21ef6e86a53ce3d55236548901905070ff1c1716fbf47 1774347 
dropbear_2011.54.orig.tar.gz
 327133a04534ffa06411e8c8581e9df945438e6be5f5e1f75094db5591b6a0f5 6006 
dropbear_2011.54-1.diff.gz
 3672cfb5663bbde1fd5e649aee75c761454c9c1d9ef370bb8c8fd4224b77a349 281928 
dropbear_2011.54-1_amd64.deb
Files: 
 007fa471c27a5ea1cf9354c520f46790 1000 net optional dropbear_2011.54-1.dsc
 ce1e236c4a8df0cb95253defee6716b5 1774347 net optional 
dropbear_2011.54.orig.tar.gz
 6fd5059cabc41481ce5201f004f15c74 6006 net optional dropbear_2011.54-1.diff.gz
 7969475718bab242c36061a97b2a3a52 281928 net optional 
dropbear_2011.54-1_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iEYEARECAAYFAk7DsHwACgkQGJoyQbxwpv/8igCaAjrUFAZ7wuPzg7zgXkifqIII
nX0AnA7K9J2NsEVpCXvjf8VtTiUIdTDm
=QHPz
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to