Package: dropbear Version: 2012.55-1.3 Severity: normal Tags: patch Hi,
Purging the dropbear package does not remove the initramfs host keys from /etc/initramfs-tools/etc/dropbear/. The attached untested patch to dropbear.postrm should fix this. -- System Information: Debian Release: 7.1 APT prefers stable APT policy: (500, 'stable'), (500, 'oldstable') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages dropbear depends on: ii libc6 2.13-38 ii zlib1g 1:1.2.7.dfsg-13 dropbear recommends no packages. Versions of packages dropbear suggests: ii openssh-client 1:6.0p1-4 pn runit <none> ii udev 175-7.2 ii xauth 1:1.0.7-1 -- no debconf information
--- dropbear.postrm 2012-02-23 07:47:05.000000000 -0600 +++ dropbear.postrm-new 2013-07-04 09:34:56.254791444 -0500 @@ -7,6 +7,11 @@ rm -f /etc/dropbear/dropbear_dss_host_key rmdir --ignore-fail-on-non-empty /etc/dropbear fi +if test -e /etc/initramfs-tools/etc/dropbear; then + rm -f /etc/initramfs-tools/etc/dropbear/dropbear_rsa_host_key + rm -f /etc/initramfs-tools/etc/dropbear/dropbear_dss_host_key + rmdir --ignore-fail-on-non-empty /etc/initramfs-tools/etc/dropbear +fi update-rc.d dropbear remove >/dev/null rm -f /etc/default/dropbear rm -rf /etc/dropbear/supervise /etc/dropbear/log/supervise