Request 176 was acted upon.
This is a comment. It is not sent to the Requestor(s).
_________________________________________________________________________
URL: https://rt.openpkg.org/id/176
Ticket: [OpenPKG #176]
Subject: daemon bind/listen address
Requestors:
Queue: openpkg
Owner: thl
Status: stalled
Transaction: Comments added by thl
Time: Tue Jul 29 11:32:59 2003
_________________________________________________________________________
> [thl - Mon Jul 07 16:00:22 2003]:
>
> Verify that the default config for every daemon uses 127.0.0.1 for the
> bind/listen address with one exception: openssh should do a wildcard
> bind, otherwise it is too likely that users will lock themselfs out.
>
In a meeting today, we decided openssh should not be an exception. We prefer security
over comfort. Done with http://cvs.openpkg.org/chngview?cn=11172
Please note that the sshd_config default changed between OpenPKG v1.2 and OpenPKG v1.3
because of an application version update. So a .rpmsave file will be created anyway
and extra work needs to be done. So this decision does not make upgrade experience
worse.
Also note that in order to prevent gross damage, the rc mechanism was modified to
treat existence of .rpm(new|orig|save) as bad enough to inhibit %start and %restart
from being run. See http://cvs.openpkg.org/chngview?cn=11141
Because the %post section of a openssh upgrade will execute a %restart, modified
configuration that was saved by RPM into .rpmsave causes this %restart to be omitted.
The old sshd will continue to run and allows the administrator to clean out the
configuration and do the %restart manually.
We understand that automated upgrade procedures need to be enhanced to do this extra
work. We also know that rebooting the machine before the configuration was fixed
creates a machine which cannot be managed remotely. As said in the first paragraph, we
decided to prefer security over comfort.
--
Thomas Lotterer
OpenPKG Developer
[EMAIL PROTECTED]
