Your message dated Sat, 17 Oct 2015 18:34:07 +0000
with message-id <[email protected]>
and subject line Bug#797376: fixed in freedombox-setup 0.6
has caused the Debian Bug report #797376,
regarding freedombox-setup: Don't remove SSH keys when installing on Debian
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
797376: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=797376
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: freedombox-setup
Version: 0.5
Severity: normal
Tags: patch
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
When freedombox-setup is installed on a Debian machine, the exising SSH keys
of the machine are destroyed. This makes freedombox-setup unsuitable on a
machine that is already under use.
The attachted patch proposes that we delete the SSH keys from the FreedomBox
images but not remove the existing SSH keys when installing on Debian. This
patch must be accompanied by a patch to freedom-maker that ensure that the
keys are not present on a FreedomBox image.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQIcBAEBAgAGBQJV4q/mAAoJEDbDYUQMm8lxSYYP/R1FRlTfSbHmuYhXgeyip2Ub
1TIYh31O82bq3mc6dUkZaP4MYKLupFE2sbSr/VO/iEU4VIgnEEPMcG0kllDAxf4h
qsNHZEfbqhjAtQEUiQxVStxKIl6g8srqKgkhDY1JhlztI3TmV4NjseJLY9JlmcfB
d99mB1gn+QoP3sKoPE06sT/KadEmJ/NA1IB3veDSi0n4G7cyVDhEw3Fp3h9z2io7
F6I30Zt9Suw/WV30+5Uc7PUjhz5ajPiCE1WcNEFqIqmr5J+GTymyzoxKT4JMkB/S
KFYEwmCMBXqhVDDR+Gh1XiCsjRjHBS4SJvof+uOOcT4eFU2DxAJozoGalRW/2+rR
XYAGfKGU+UUxDSMfOtxW6YQDPLwMlrbpu0t5jDEjm7KaocFfHdQov7r7QbgLPj9c
N/xM1r96MIBJGc6TRhAhTM3qneXLiSuXK3vFFWfJiQa9TSXYiEhIZI+cN3LzVRZf
ApRtxE3J21hrr+HaMbZ1SeGSt6hvHMCbIJKkYV99jBVTaT4bcyIVjT+RpbyYxUkx
ZsVhZ+Nq3eJFYM/sM8XvauaRnbkjIvsSBJYxHnqtO8lWCwInN+h7N/nNdeZuqDxy
kJcPH8y6ghvNhMkD7OmSSlXxbxBBQdiNOndtKg96vdfRDlvnfMBVdZm+KJX/iBD/
UzGsbjuG6v2OKIBbsBZy
=0cdk
-----END PGP SIGNATURE-----
>From 6065d8b0e442170c5a212b87b220457a14c8367a Mon Sep 17 00:00:00 2001
From: Sunil Mohan Adapa <[email protected]>
Date: Thu, 27 Aug 2015 22:38:47 +0530
Subject: [PATCH] Don't delete SSH keys
When users install FreedomBox on a Debian system, it should not wipe out
their existing SSH server keys. This should only happen in an pre-build
image downloadable by many people so as to not have multiple servers
having the same set of keys.
This patch complements a change to freedom-maker that makes sure the SSH
server keys are not present on a built image.
---
first-run.d/10_ssh-keys | 1 -
setup.d/15_ssh-keys | 6 ------
2 files changed, 7 deletions(-)
delete mode 100755 setup.d/15_ssh-keys
diff --git a/first-run.d/10_ssh-keys b/first-run.d/10_ssh-keys
index 43e7930..83bec4c 100755
--- a/first-run.d/10_ssh-keys
+++ b/first-run.d/10_ssh-keys
@@ -3,7 +3,6 @@
. /lib/lsb/init-functions
log_action_begin_msg "Creating SSH keys"
-rm -f /etc/ssh/ssh_host_*
if dpkg-reconfigure openssh-server ; then
log_action_end_msg 0
else
diff --git a/setup.d/15_ssh-keys b/setup.d/15_ssh-keys
deleted file mode 100755
index bdcc8bb..0000000
--- a/setup.d/15_ssh-keys
+++ /dev/null
@@ -1,6 +0,0 @@
-#!/bin/sh
-
-# Make sure SSH keys are unique, and do not carry the ones generated
-# in the chroots into images.
-
-rm /etc/ssh/ssh_host_*
--
2.5.0
--- End Message ---
--- Begin Message ---
Source: freedombox-setup
Source-Version: 0.6
We believe that the bug you reported is fixed in the latest version of
freedombox-setup, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Nick Daly <[email protected]> (supplier of updated freedombox-setup package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Fri, 16 Oct 2015 16:24:12 -0500
Source: freedombox-setup
Binary: freedombox-setup
Architecture: source all
Version: 0.6
Distribution: unstable
Urgency: medium
Maintainer: Petter Reinholdtsen <[email protected]>
Changed-By: Nick Daly <[email protected]>
Description:
freedombox-setup - Package to set up freedombox environment
Closes: 791597 794825 794826 795737 795750 795764 795768 795880 796860 797007
797373 797376 797377 798415 798417
Changes:
freedombox-setup (0.6) unstable; urgency=medium
.
[ Nick Daly ]
* Upload 0.6 release.
.
[ James Valleroy ]
* Fix error preventing flash-kernel install on Dreamplug (Closes: #794825).
* Fix some errors in flash-kernel script (Closes: #798417).
* Switch from mod_ssl to mod_gnutls (Closes: #798415).
* Remove old manual in favor of new one present in Plinth.
* Bump dependency on plinth to >= 0.6.
.
[ Sunil Mohan Adapa ]
* Use httpredir.debian.org instead of http.debian.net (Closes: #795737).
* Remove Tor setup, now handled by Plinth (Closes: #795750).
* Remove diagnostic testsuite, now handled by Plinth (Closes: #795768).
* Remove unused and not-working code (Closes: #796860).
* Support Raspberry Pi 2 (Closes: #797007).
* Add login greeter message with location of manuals (Closes: #794826).
* Remove unneeded changes to fstab, hosts, and apt sources (Closes: #797377).
* Don't remove SSH keys; this will be done by freedom-maker for pre-built
images (Closes: #797376).
* Default to not downloading sources (Closes: #795764).
* Remove apache2-mpm-worker from depends list (Closes: #791597).
* Select Apache MPM prefork by default. Disable other MPMs.
* Merge Wi-Fi configuration with network configuration (Closes: #797373).
* Install avahi service files properly (Closes: #795880).
* Move Apache, PAM, sudoers configurations to files.
* Move sysctl configuration and LXC template to new hierarchy.
* Move machine-detect file to /usr/lib/freedombox.
* Add Lintian override for Apache configuration name.
* Enable PHP5 and CGI modules by default to avoid restarting Apache2 later.
Checksums-Sha1:
325e9f390958801b67770c590a3cd61099044703 1815 freedombox-setup_0.6.dsc
49778a3bddb174c62b01b77412f424489dabb672 37585 freedombox-setup_0.6.tar.gz
d27459b6fe807a36d3cf540777b8afd798d47f78 24330 freedombox-setup_0.6_all.deb
Checksums-Sha256:
c74f86997106b1daca041112297e0b324ff9b0683e0dec4be169b384145c19af 1815
freedombox-setup_0.6.dsc
c9b343ea6a06456cb13fbdf7b37afed88d523fed84bd6dbe49d8cb6685b8ec28 37585
freedombox-setup_0.6.tar.gz
057906e9587bc2b0f14de554e970a6d548251629ea04b268185145b8b1e1136e 24330
freedombox-setup_0.6_all.deb
Files:
25db0fd8c73fcc823731eee0776f7cf7 1815 misc optional freedombox-setup_0.6.dsc
b634d66e4b4f552cec7cf9ed8ff28ded 37585 misc optional
freedombox-setup_0.6.tar.gz
686764a570f9ea8d1385d23fbe7945bd 24330 misc optional
freedombox-setup_0.6_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=AP1I
-----END PGP SIGNATURE-----
--- End Message ---
