Package: openssh-client Version: 1:9.2p1-2 Severity: important X-Debbugs-Cc: pra...@yahoo.com
I cannot login anymore via ssh. I have the openemediavault installed on this box to manage the setup and it set AllowGroups to "root ssh" in /etc/ssh/sshd_config. Thankfully I have a serial console to this ARM board and thus I can still open a terminal on this box. After the request from a user to rename the "ssh" group to free it for its own use, the "ssh" group was rename to "_ssh" in https://salsa.debian.org/ssh-team/openssh/-/commit/18da782ebe789d0cf107a550e474ba6352e68911 But other users as in https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990456#35 or tools to manage Debian have come to rely on this "ssh" group. This might be a mistake. Still could you document this critical item in the bookworm release notes? Cheers, Alban -- System Information: Debian Release: 12.0 APT prefers oldstable-updates APT policy: (500, 'oldstable-updates'), (500, 'oldstable-security'), (500, 'stable'), (500, 'oldstable'), (90, 'experimental') Architecture: arm64 (aarch64) Foreign Architectures: armhf Kernel: Linux 6.1.11-rockchip64 (SMP w/6 CPU threads; PREEMPT) Kernel taint flags: TAINT_CRAP Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to fr_FR.UTF-8), LANGUAGE=fr_FR.UTF-8 Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages openssh-client depends on: ii adduser 3.134 ii libc6 2.36-9 ii libedit2 3.1-20221030-2 ii libfido2-1 1.12.0-2+b1 ii libgssapi-krb5-2 1.20.1-2 ii libselinux1 3.4-1+b6 ii libssl3 3.0.9-1 ii passwd 1:4.13+dfsg1-1+b1 ii zlib1g 1:1.2.13.dfsg-1 Versions of packages openssh-client recommends: pn xauth <none> Versions of packages openssh-client suggests: pn keychain <none> pn libpam-ssh <none> pn monkeysphere <none> pn ssh-askpass <none> -- no debconf information