Your message dated Tue, 25 Jun 2024 13:37:37 +0000
with message-id <e1sm6mb-003piz...@fasolo.debian.org>
and subject line Bug#1018260: fixed in openssh 1:9.7p1-6
has caused the Debian Bug report #1018260,
regarding openssh-server: fills the log with "deprecated reading of user
environment enabled"
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
1018260: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1018260
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: openssh-server
Version: 1:9.0p1-1+b1
Severity: minor
X-Debbugs-Cc: none, Francesco Potortì <poto...@isti.cnr.it>
File: /usr/sbin/sshd
Dear Maintainer,
My log is full of these:
sshd[4180530]: pam_env(sshd:session): deprecated reading of user environment
enabled
There are two-four lines per minute
--
Francesco Potortì (ricercatore) Voice: +39.050.621.3058
ISTI - Area della ricerca CNR Mobile: +39.348.8283.107
via G. Moruzzi 1, I-56124 Pisa Skype: wnlabisti
(gate 20, 1st floor, room C71) Web: http://fly.isti.cnr.it
-- System Information:
Debian Release: bookworm/sid
APT prefers testing
APT policy: (990, 'testing'), (101, 'unstable')
merged-usr: no
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 5.15.0-3-amd64 (SMP w/4 CPU threads)
Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_WARN, TAINT_OOT_MODULE,
TAINT_UNSIGNED_MODULE
Locale: LANG=C.UTF-8, LC_CTYPE=it_IT.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages openssh-server depends on:
ii adduser 3.123
ii debconf [debconf-2.0] 1.5.79
ii dpkg 1.21.9
ii init-system-helpers 1.64
ii libaudit1 1:3.0.7-1+b1
ii libc6 2.34-4
ii libcom-err2 1.46.5-2
ii libcrypt1 1:4.4.28-2
ii libgssapi-krb5-2 1.20-1
ii libkrb5-3 1.20-1
ii libpam-modules 1.5.2-2
ii libpam-runtime 1.5.2-2
ii libpam0g 1.5.2-2
ii libselinux1 3.4-1+b1
ii libssl3 3.0.5-2
ii libsystemd0 251.3-1
ii libwrap0 7.6.q-31
ii lsb-base 11.2
ii openssh-client 1:9.0p1-1+b1
ii openssh-sftp-server 1:9.0p1-1+b1
ii procps 2:3.3.17-7+b1
ii runit-helper 2.14.1
ii ucf 3.0043
ii zlib1g 1:1.2.11.dfsg-4.1
Versions of packages openssh-server recommends:
ii libpam-systemd [logind] 251.3-1
ii ncurses-term 6.3+20220423-2
ii xauth 1:1.1.1-1
Versions of packages openssh-server suggests:
pn molly-guard <none>
pn monkeysphere <none>
ii ssh-askpass-gnome [ssh-askpass] 1:9.0p1-1+b1
pn ufw <none>
-- debconf information:
* ssh/use_old_init_script: true
* openssh-server/permit-root-login: false
ssh/disable_cr_auth: false
ssh/encrypted_host_key_but_no_keygen:
ssh/vulnerable_host_keys:
openssh-server/password-authentication: true
--- End Message ---
--- Begin Message ---
Source: openssh
Source-Version: 1:9.7p1-6
Done: Colin Watson <cjwat...@debian.org>
We believe that the bug you reported is fixed in the latest version of
openssh, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 1018...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Colin Watson <cjwat...@debian.org> (supplier of updated openssh package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Tue, 25 Jun 2024 14:20:44 +0100
Source: openssh
Architecture: source
Version: 1:9.7p1-6
Distribution: unstable
Urgency: medium
Maintainer: Debian OpenSSH Maintainers <debian-ssh@lists.debian.org>
Changed-By: Colin Watson <cjwat...@debian.org>
Closes: 1018260
Changes:
openssh (1:9.7p1-6) unstable; urgency=medium
.
* Stop reading ~/.pam_environment, which has a history of security
problems and is deprecated by PAM upstream (closes: #1018260).
Checksums-Sha1:
1b1c222d249e95d78861819bf6a3442fd6075ce7 3313 openssh_9.7p1-6.dsc
09b9202f35787ae01e042d9c42328a72d9776ccb 194124 openssh_9.7p1-6.debian.tar.xz
Checksums-Sha256:
9ac30c98e9ebec9714c75b148fc4650a1ecb6711f0031e8231843cc01e369fc4 3313
openssh_9.7p1-6.dsc
df816779613bfcb6c194e3b29ac1ad8f1685adc0b0735e05f7a5efe205f65378 194124
openssh_9.7p1-6.debian.tar.xz
Files:
32c36274041396084b7b0913fa7d7b57 3313 net standard openssh_9.7p1-6.dsc
bf7e670e9f8cc90711fd3ef81f886ea9 194124 net standard
openssh_9.7p1-6.debian.tar.xz
-----BEGIN PGP SIGNATURE-----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=eYmC
-----END PGP SIGNATURE-----
pgptY4rwU7NWg.pgp
Description: PGP signature
--- End Message ---
