Hello community, here is the log from the commit of package openssh for openSUSE:Factory checked in at 2017-10-28 14:20:45 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/openssh (Old) and /work/SRC/openSUSE:Factory/.openssh.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "openssh" Sat Oct 28 14:20:45 2017 rev:111 rq:536831 version:7.2p2 Changes: -------- --- /work/SRC/openSUSE:Factory/openssh/openssh.changes 2017-06-04 01:48:39.214933486 +0200 +++ /work/SRC/openSUSE:Factory/.openssh.new/openssh.changes 2017-10-28 14:20:45.833571161 +0200 @@ -1,0 +2,5 @@ +Wed Oct 25 15:09:06 UTC 2017 - [email protected] + +- sshd_config is has now permissions 0600 in secure mode + +------------------------------------------------------------------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ openssh-askpass-gnome.spec ++++++ --- /var/tmp/diff_new_pack.EjTTJF/_old 2017-10-28 14:20:47.281518222 +0200 +++ /var/tmp/diff_new_pack.EjTTJF/_new 2017-10-28 14:20:47.281518222 +0200 @@ -1,7 +1,7 @@ # # spec file for package openssh-askpass-gnome # -# Copyright (c) 2017 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed ++++++ openssh.spec ++++++ --- /var/tmp/diff_new_pack.EjTTJF/_old 2017-10-28 14:20:47.301517491 +0200 +++ /var/tmp/diff_new_pack.EjTTJF/_new 2017-10-28 14:20:47.301517491 +0200 @@ -1,7 +1,7 @@ # # spec file for package openssh # -# Copyright (c) 2017 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -392,6 +392,7 @@ %else %{fillup_and_insserv -n ssh sshd} %endif +%set_permissions /etc/ssh/sshd_config %preun %if %{uses_systemd} @@ -415,6 +416,9 @@ %triggerin -n openssh-fips -- %{name} = %{version}-%{release} %restart_on_update sshd +%verifyscript +%verify_permissions -e /etc/ssh/sshd_config + %files %defattr(-,root,root) %exclude %{_bindir}/ssh%{CHECKSUM_SUFFIX} @@ -426,7 +430,7 @@ %attr(0755,root,root) %dir %{_sysconfdir}/ssh %attr(0600,root,root) %config(noreplace) %{_sysconfdir}/ssh/moduli %verify(not mode) %attr(0644,root,root) %config(noreplace) %{_sysconfdir}/ssh/ssh_config -%verify(not mode) %attr(0640,root,root) %config(noreplace) %{_sysconfdir}/ssh/sshd_config +%verify(not mode) %attr(0600,root,root) %config(noreplace) %{_sysconfdir}/ssh/sshd_config %attr(0644,root,root) %config(noreplace) %{_sysconfdir}/pam.d/sshd %if %{uses_systemd} %doc sshd.init
