Thanks Seth for securities POV on this and essentially confirming what I
assumed.
That said, I think the bug is for now "incomplete" in the sense of breaking the
initial report into two things:
A) I see this on upgrade on one machine, which is unexpected.
B) If this file is generated by each machine, why would we ship a default?
B - is solved - it is not generated and we want to ship a default as we
do right now.
A - is incomplete - as it is not clear yet why you have got the
"Modified (by you or by a script) since installation"
Note: I test upgraded xenial to bionic and got a no notification upgrade
from 0075fd4b72a421f909af9809d0dd3bdc to
fe5be9e1b2ad5c55132a3521ecaadcdd
So I repeat my question to @Mark:
1. I'd assume you had not changed your file - if you had modified it then all
is correct.
Had you modified it?
2. If you have not modified it there are two options:
2.1. someone/something tampered with your moduli
2.2 Or we have a bug somewhere in the generic upgrade paths misdetecting old
content as unchanged.
If there still is a /etc/ssh/moduli.dpkg-old version of it what is the
checksum (Xenial was 0075fd4b72a421f909af9809d0dd3bdc)?
** Changed in: openssh (Ubuntu)
Status: New => Incomplete
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to openssh in Ubuntu.
https://bugs.launchpad.net/bugs/1748709
Title:
Upgrade from xenial to bionic wants to replace moduli
Status in openssh package in Ubuntu:
Incomplete
Bug description:
I see this on upgrade on one machine, which is unexpected. If this
file is generated by each machine, why would we ship a default?
Configuration file '/etc/ssh/moduli'
==> Modified (by you or by a script) since installation.
==> Package distributor has shipped an updated version.
What would you like to do about it ? Your options are:
Y or I : install the package maintainer's version
N or O : keep your currently-installed version
D : show the differences between the versions
Z : start a shell to examine the situation
The default action is to keep your current version.
*** moduli (Y/I/N/O/D/Z) [default=N] ?
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1748709/+subscriptions
--
Mailing list: https://launchpad.net/~touch-packages
Post to : touch-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~touch-packages
More help : https://help.launchpad.net/ListHelp
