Your message dated Wed, 30 Aug 2006 23:05:37 -0700
with message-id <[EMAIL PROTECTED]>
and subject line Bug#363978: fixed in rssh 2.2.3-1.sarge.2
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: rssh
Version: 2.2.3-1.sarge.1
Since http://packages.qa.debian.org/r/rssh/news/20060418T004132Z.html
rssh seem to run incorrectly:
I have this following /etc/rssh.conf config file:
logfacility = LOG_USER
umask = 022
user=test:011:10000:
it's supposed to force user test to run rsync only without chroot
if i'm on an other host and run something else than rsync it do that:
# ssh [EMAIL PROTECTED]:
Linux host 2.6.15.1 #2 Sun Jan 15 21:11:04 EST 2006 i686 GNU/Linux
Last login: Thu Apr 20 16:22:00 2006 from host2
This account is restricted by rssh.
Allowed commands: scp
If you believe this is in error, please contact your system administrator.
Connection to host closed.
scp? I did specified rsync only (10000)
I try something else like ls:
# ssh [EMAIL PROTECTED] ls
Usage: ls [cvs-options] command [command-options-and-arguments]
where cvs-options are -q, -n, etc.
(specify --help-options for a list of options)
where command is add, admin, etc.
(specify --help-commands for a list of commands
or --help-synonyms for a list of command synonyms)
where command-options-and-arguments depend on the specific command
(specify -H followed by a command name for command-specific help)
Specify --help to receive this message
The Concurrent Versions System (CVS) is a tool for version control.
For CVS updates and additional information, see
the CVS home page at http://www.cvshome.org/ or
Pascal Molli's CVS site at http://www.loria.fr/~molli/cvs-index.html
ls with cvs output?
I tried again with rsync and not-existing command:
Usage: something_that_dont_exist [cvs-options] command
[command-options-and-arguments]
Since that upgrade rssh don't work anymore like it used to be
I've looked trough the configuration file and it haven't changed.
thanks, bye
--- End Message ---
--- Begin Message ---
Source: rssh
Source-Version: 2.2.3-1.sarge.2
We believe that the bug you reported is fixed in the latest version of
rssh, which is due to be installed in the Debian FTP archive:
rssh_2.2.3-1.sarge.2.diff.gz
to pool/main/r/rssh/rssh_2.2.3-1.sarge.2.diff.gz
rssh_2.2.3-1.sarge.2.dsc
to pool/main/r/rssh/rssh_2.2.3-1.sarge.2.dsc
rssh_2.2.3-1.sarge.2_i386.deb
to pool/main/r/rssh/rssh_2.2.3-1.sarge.2_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Jesus Climent <[EMAIL PROTECTED]> (supplier of updated rssh package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Sat, 24 Jun 2006 11:54:12 +0000
Source: rssh
Binary: rssh
Architecture: source i386
Version: 2.2.3-1.sarge.2
Distribution: stable-security
Urgency: high
Maintainer: Jesus Climent <[EMAIL PROTECTED]>
Changed-By: Jesus Climent <[EMAIL PROTECTED]>
Description:
rssh - Restricted shell allowing only scp, sftp, cvs, rsync and/or rdist
Closes: 363978
Changes:
rssh (2.2.3-1.sarge.2) stable-security; urgency=high
.
* Command line parse fix for a problem introduced with the security fix
integrated in 2.2.3-1.sarge.1. [CVE-2006-1320] (Closes: #363978)
Files:
a8ccbaa1d14d0aa30b3eb0bb1aefd4e5 589 net optional rssh_2.2.3-1.sarge.2.dsc
74f40a4fd5d2b097af34a817e21a33cf 107216 net optional rssh_2.2.3.orig.tar.gz
00e3ad8c7944ed55e1316e414ab3d388 52207 net optional
rssh_2.2.3-1.sarge.2.diff.gz
7236c31d25f8b4cbbb8894112aa585aa 42596 net optional
rssh_2.2.3-1.sarge.2_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
iD8DBQFEtSrBXm3vHE4uyloRApAPAJsF9OWg7p3cCOijkxnEuSzx7RWYewCfUZlc
dGbfKLWgj/dvcgU5F/iIo3c=
=XEbO
-----END PGP SIGNATURE-----
--- End Message ---
