Your message dated Fri, 02 Dec 2011 16:51:21 +0000
with message-id <[email protected]>
and subject line Bug#650644: Removed package(s) from unstable
has caused the Debian Bug report #585047,
regarding libpam-ssh: permissions warning is wrong and/or confusing
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
585047: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=585047
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: libpam-ssh
Version: 1.92-14
Severity: normal
Jun 8 17:06:32 vent pam_ssh[1885]: error:
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
Jun 8 17:06:32 vent pam_ssh[1885]: error: @ WARNING: UNPROTECTED
PRIVATE KEY FILE! @
Jun 8 17:06:32 vent pam_ssh[1885]: error:
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
Jun 8 17:06:32 vent pam_ssh[1885]: error: Permissions 0644 for
'/home/allan/.ssh/login-keys.d/id_dsa.pub' are too open.
Jun 8 17:06:32 vent pam_ssh[1885]: error: It is recommended that your private
key files are NOT accessible by others.
Jun 8 17:06:32 vent pam_ssh[1885]: error: This private key will be ignored.
Jun 8 17:06:32 vent pam_ssh[1885]: error: bad permissions: ignore key:
/home/allan/.ssh/login-keys.d/id_dsa.pub
Both of these files are symbolic links on my system:
lrwxrwxrwx 1 allan users 9 Jan 14 21:29 id_dsa -> ../id_dsa
lrwxrwxrwx 1 allan users 13 Jan 14 21:28 id_dsa.pub -> ../id_dsa.pub
so it is a little confusing that it talks about the link yet looks at the
permissions of the linked file.
It complains about the private key yet the permissions in the above and the
file name is the public key. Not sure there is any issues with the public key
being readable by others.
In any case the actual problem, I think, is that the public key should not
be present in .ssh/login-keys.d.
-- System Information:
Debian Release: squeeze/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.34 (SMP w/2 CPU cores; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages libpam-ssh depends on:
ii libc6 2.11.1-2 Embedded GNU C Library: Shared lib
ii libpam0g 1.1.1-3 Pluggable Authentication Modules l
ii libssl0.9.8 0.9.8o-1 SSL shared libraries
Versions of packages libpam-ssh recommends:
ii openssh-client [ssh-client] 1:5.5p1-4 secure shell (SSH) client, for sec
libpam-ssh suggests no packages.
-- Configuration Files:
/etc/pam.d/pam-ssh-auth changed:
auth required pam_ssh.so
-- no debconf information
--
Allan Wind
Life Integrity, LLC
<http://lifeintegrity.com>
--- End Message ---
--- Begin Message ---
Version: 1.92-14+rm
Dear submitter,
as the package libpam-ssh has just been removed from the Debian archive
unstable we hereby close the associated bug reports. We are sorry
that we couldn't deal with your issue properly.
For details on the removal, please see http://bugs.debian.org/650644
The version of this package that was in Debian prior to this removal
can still be found using http://snapshot.debian.org/.
This message was generated automatically; if you believe that there is
a problem with it please contact the archive administrators by mailing
[email protected].
Debian distribution maintenance software
pp.
Alexander Reichle-Schmehl (the ftpmaster behind the curtain)
--- End Message ---
