Your message dated Mon, 26 Apr 2004 20:16:59 +0100
with message-id <[EMAIL PROTECTED]>
and subject line Bug#245991: ssh-add echoes passphrase to the terminal
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--------------------------------------
Received: (at submit) by bugs.debian.org; 26 Apr 2004 17:12:15 +0000
>From [EMAIL PROTECTED] Mon Apr 26 10:12:15 2004
Return-path: <[EMAIL PROTECTED]>
Received: from master.green-dragon.org [212.13.208.70] (mail)
by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
id 1BI9eR-0005Ck-00; Mon, 26 Apr 2004 10:12:15 -0700
Received: from [82.152.39.136] (helo=jupiter)
by master.green-dragon.org with esmtp (Exim 3.35 #1 (Debian))
id 1BI9eP-0004MS-00; Mon, 26 Apr 2004 18:12:13 +0100
Received: from stephen by jupiter with local (Exim 3.36 #1 (Debian))
id 1BI9eM-0000El-00; Mon, 26 Apr 2004 18:12:10 +0100
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: Stephen Quinney <[EMAIL PROTECTED]>
To: Debian Bug Tracking System <[EMAIL PROTECTED]>
Subject: ssh-add echoes passphrase to the terminal
X-Mailer: reportbug 2.58
Date: Mon, 26 Apr 2004 18:12:10 +0100
Message-Id: <[EMAIL PROTECTED]>
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2004_03_25
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-7.0 required=4.0 tests=BAYES_00,HAS_PACKAGE
autolearn=no version=2.60-bugs.debian.org_2004_03_25
X-Spam-Level:
X-CrossAssassin-Score: 1
Package: ssh
Version: 1:3.8p1-3
Severity: normal
I just went to use ssh-add and noticed that it is now echoing my
passphrase directly to the terminal. I'm not sure exactly when this
started occuring, it must be within the last couple of days as I
probably last used ssh-add two or three days ago, i've just rebooted
so had to use it again.
I consider this a critical bug as I couldn't use ssh-add anywhere
public and be happy I wasn't sharing my passphrase with other people
in the room.
Stephen Quinney
-- System Information:
Debian Release: testing/unstable
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 2.6.5
Locale: LANG=C, LC_CTYPE=C
Versions of packages ssh depends on:
ii adduser 3.52 Add and remove users and groups
ii debconf 1.4.22 Debian configuration management sy
ii dpkg 1.10.20 Package maintenance system for Deb
ii libc6 2.3.2.ds1-12 GNU C Library: Shared libraries an
ii libpam-modules 0.76-19 Pluggable Authentication Modules f
ii libpam-runtime 0.76-19 Runtime support for the PAM librar
ii libpam0g 0.76-19 Pluggable Authentication Modules l
ii libssl0.9.7 0.9.7d-1 SSL shared libraries
ii libwrap0 7.6-ipv6.1-3 Wietse Venema's TCP wrappers libra
ii zlib1g 1:1.2.1-5 compression library - runtime
-- debconf information:
ssh/insecure_rshd:
ssh/privsep_ask: true
* ssh/user_environment_tell:
* ssh/forward_warning:
* ssh/insecure_telnetd:
ssh/new_config: true
* ssh/use_old_init_script: true
ssh/rootlogin_warning:
* ssh/upgrade_to_openssh: true
* ssh/SUID_client: true
* ssh/protocol2_default:
* ssh/privsep_tell:
* ssh/ssh2_keys_merged:
ssh/ancient_version:
ssh/protocol2_only: true
ssh/encrypted_host_key_but_no_keygen:
* ssh/run_sshd: true
---------------------------------------
Received: (at 245991-done) by bugs.debian.org; 26 Apr 2004 19:17:01 +0000
>From [EMAIL PROTECTED] Mon Apr 26 12:17:01 2004
Return-path: <[EMAIL PROTECTED]>
Received: from chiark.greenend.org.uk [193.201.200.170] (mail)
by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
id 1BIBbB-0000K2-00; Mon, 26 Apr 2004 12:17:01 -0700
Received: from [192.168.124.112] (helo=riva.lab.dotat.at)
by chiark.greenend.org.uk (Debian Exim 3.35 #1) with esmtp
for [EMAIL PROTECTED]
id 1BIBb9-0008Ds-00; Mon, 26 Apr 2004 20:16:59 +0100
Received: from cjwatson by riva.lab.dotat.at with local (Exim 3.35 #1 (Debian))
for [EMAIL PROTECTED]
id 1BIBb9-0007UD-00; Mon, 26 Apr 2004 20:16:59 +0100
Date: Mon, 26 Apr 2004 20:16:59 +0100
From: Colin Watson <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: Re: Bug#245991: ssh-add echoes passphrase to the terminal
Message-ID: <[EMAIL PROTECTED]>
References: <[EMAIL PROTECTED]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <[EMAIL PROTECTED]>
User-Agent: Mutt/1.3.28i
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2004_03_25
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-5.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER
autolearn=no version=2.60-bugs.debian.org_2004_03_25
X-Spam-Level:
X-CrossAssassin-Score: 1
On Mon, Apr 26, 2004 at 06:12:10PM +0100, Stephen Quinney wrote:
> Package: ssh
> Version: 1:3.8p1-3
> Severity: normal
>
> I just went to use ssh-add and noticed that it is now echoing my
> passphrase directly to the terminal. I'm not sure exactly when this
> started occuring, it must be within the last couple of days as I
> probably last used ssh-add two or three days ago, i've just rebooted
> so had to use it again.
>
> I consider this a critical bug as I couldn't use ssh-add anywhere
> public and be happy I wasn't sharing my passphrase with other people
> in the room.
This was a makedev bug, namely #245718, fixed in makedev 2.3.1-68.
Cheers,
--
Colin Watson [EMAIL PROTECTED]
