Hmm, that would be odd and very bad. I can't immediately think of anything that would do the change.
So for now I tried to recreate: 1. get X system and create some keys -rw------- 1 root root 0 Apr 20 08:44 authorized_keys -rw------- 1 root root 1679 Apr 24 10:36 id_rsa -rw-r--r-- 1 root root 388 Apr 24 10:36 id_rsa.pub 2. do-release-upgrade -d 3. check keys again They are still ok in my example. So it is none of the base packages that caused this. @Phreed - could you report the list of installed packages on your system so one can retry with the same set installed? You can get this with: $ dpkg --get-selections ** Changed in: openssh (Ubuntu) Status: New => Incomplete -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1765844 Title: openssh private key exposed due to change in permissions To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1765844/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs