Bug#1074768: openssh-server: Upgrading to openssh-server (1:9.2p1-2+deb12u3) overwrites /etc/ssh/sshd_config without prompt

Tue, 02 Jul 2024 08:27:16 -0700 

Package: openssh-server
Version: 1:9.2p1-2+deb12u3
Severity: important

Dear Maintainer,

   * What led up to the situation?

A security update was available for openssh-server

   * What exactly did you do (or not do) that was effective (or
     ineffective)?

Upgrading to the latest available security update using apt upgrade

   * What was the outcome of this action?

sshd config file (/etc/ssh/sshd_config) was overwritten without the
usual 'what do you want to do?' prompt when a package default configuration file
is modified.
I noticed it because I could not log in back to the server because I
changed the default port among other settings...

   * What outcome did you expect instead?

The usual prompt allowing me to keep my changes or merge them with the
package new defaults...



-- System Information:
Debian Release: 12.6
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 6.1.0-22-amd64 (SMP w/4 CPU threads; PREEMPT)
Locale: LANG=C, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages openssh-server depends on:
ii  adduser                    3.134
ii  debconf [debconf-2.0]      1.5.82
ii  init-system-helpers        1.65.2
ii  libaudit1                  1:3.0.9-1
ii  libc6                      2.36-9+deb12u7
ii  libcom-err2                1.47.0-2
ii  libcrypt1                  1:4.4.33-2
ii  libgssapi-krb5-2           1.20.1-2+deb12u1
ii  libkrb5-3                  1.20.1-2+deb12u1
ii  libpam-modules             1.5.2-6+deb12u1
ii  libpam-runtime             1.5.2-6+deb12u1
ii  libpam0g                   1.5.2-6+deb12u1
ii  libselinux1                3.4-1+b6
ii  libssl3                    3.0.13-1~deb12u1
ii  libsystemd0                252.26-1~deb12u2
ii  libwrap0                   7.6.q-32
ii  lsb-base                   11.6
ii  openssh-client             1:9.2p1-2+deb12u3
ii  openssh-sftp-server        1:9.2p1-2+deb12u3
ii  procps                     2:4.0.2-3
ii  runit-helper               2.15.2
ii  sysvinit-utils [lsb-base]  3.06-4
ii  ucf                        3.0043+nmu1
ii  zlib1g                     1:1.2.13.dfsg-1

Versions of packages openssh-server recommends:
ii  libpam-systemd [logind]  252.26-1~deb12u2
ii  ncurses-term             6.4-4
ii  xauth                    1:1.1.2-1

Versions of packages openssh-server suggests:
pn  molly-guard   <none>
pn  monkeysphere  <none>
pn  ssh-askpass   <none>
ii  ufw           0.36.2-1

-- debconf information excluded

Reply via email to