Debian Bug report logs -
#167867
openssh: support for ut_addr_v6 [PATCH]
Toggle useless messages
Report forwarded to debian-bugs-dist@lists.debian.org, Matthew Vernon <matthew@debian.org>, openssh@packages.qa.debian.org:
Bug#167867; Package openssh.
(full text, mbox, link).
Acknowledgement sent to Miquel van Smoorenburg <miquels@cistron.nl>:
New Bug report received and forwarded. Copy sent to Matthew Vernon <matthew@debian.org>, openssh@packages.qa.debian.org.
(full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
[Message part 1 (text/plain, inline)]
Package: openssh
Version: 3.5p1-1
Package: openssh
Version: 3.4p1-4
I'm running sshd with the '-6' flag, so that it listens on a IPv6
socket. Due to linux's standard 4-in-6 support, it also accepts
IPv4 connections.
However, in IPv6 mode, sshd doesn't write the utmp 'ut_addr' field.
This patch fixes that; for 4-in-6 connections, the IPv4 address
is written to ut_addr, for IPv6 connections, the IPv6 address
is written to ut_addr_v6.
This basically is a security fix, though a minor one; Linux doesn't
have the ut_addr / ut_addr_v6 field just to leave them empty !
The next sysvinit (2.85) will include a 'last' that knows how
to read ut_addr_v6 from the wtmp file (I'm the maintainer).
Patch against 3.4p1 and another patch against 3.5p1 (differs
slightly, 3.5p1 has 1 or 2 fixes already that 3.4p1 needs)
attached. Please send this to the upstream authors as well.
Thanks,
Mike.
[openssh-3.4p1-ut_addr_v6.patch (text/plain, attachment)]
[openssh-3.5p1-ut_addr_v6.patch (text/plain, attachment)]
Information forwarded to debian-bugs-dist@lists.debian.org, Matthew Vernon <matthew@debian.org>, openssh@packages.qa.debian.org:
Bug#167867; Package openssh.
(full text, mbox, link).
Acknowledgement sent to Colin Watson <cjwatson@debian.org>:
Extra info received and forwarded to list. Copy sent to Matthew Vernon <matthew@debian.org>, openssh@packages.qa.debian.org.
(full text, mbox, link).
Message #10 received at 167867@bugs.debian.org (full text, mbox, reply):
forwarded 167867 http://bugzilla.mindrot.org/show_bug.cgi?id=460
thanks
On Tue, Nov 05, 2002 at 01:53:26PM +0100, Miquel van Smoorenburg wrote:
> However, in IPv6 mode, sshd doesn't write the utmp 'ut_addr' field.
> This patch fixes that; for 4-in-6 connections, the IPv4 address
> is written to ut_addr, for IPv6 connections, the IPv6 address
> is written to ut_addr_v6.
Sorry for the delay. I've forwarded your comments and the patch against
3.5p1 to upstream's bug tracking system as bug #460.
> This basically is a security fix, though a minor one; Linux doesn't
> have the ut_addr / ut_addr_v6 field just to leave them empty !
Patch against 3.4p1 noted; assuming that upstream don't see any problems
with the approach, is it serious enough to warrant an upload to stable?
Thanks,
--
Colin Watson [cjwatson@flatline.org.uk]
Information forwarded to debian-bugs-dist@lists.debian.org, Matthew Vernon <matthew@debian.org>, openssh@packages.qa.debian.org:
Bug#167867; Package openssh.
(full text, mbox, link).
Acknowledgement sent to Colin Watson <cjwatson@debian.org>:
Extra info received and forwarded to list. Copy sent to Matthew Vernon <matthew@debian.org>, openssh@packages.qa.debian.org.
(full text, mbox, link).
Message #17 received at 167867@bugs.debian.org (full text, mbox, reply):
tags 167867 pending
thanks
On Sun, Dec 29, 2002 at 09:48:59PM +0000, Colin Watson wrote:
> On Tue, Nov 05, 2002 at 01:53:26PM +0100, Miquel van Smoorenburg wrote:
> > However, in IPv6 mode, sshd doesn't write the utmp 'ut_addr' field.
> > This patch fixes that; for 4-in-6 connections, the IPv4 address
> > is written to ut_addr, for IPv6 connections, the IPv6 address
> > is written to ut_addr_v6.
>
> Sorry for the delay. I've forwarded your comments and the patch against
> 3.5p1 to upstream's bug tracking system as bug #460.
They've now applied it, so it'll be in their next release. Thanks again.
--
Colin Watson [cjwatson@flatline.org.uk]
Tags added: pending
Request was from Colin Watson <cjwatson@debian.org>
to control@bugs.debian.org.
(full text, mbox, link).
Tags removed: pending
Request was from Colin Watson <cjwatson@debian.org>
to control@bugs.debian.org.
(full text, mbox, link).
Reply sent to Colin Watson <cjwatson@debian.org>:
You have taken responsibility.
(full text, mbox, link).
Notification sent to Miquel van Smoorenburg <miquels@cistron.nl>:
Bug acknowledged by developer.
(full text, mbox, link).
Message #26 received at 167867-close@bugs.debian.org (full text, mbox, reply):
We believe that the bug you reported is fixed in the latest version of
openssh, which is due to be installed in the Debian FTP archive:
openssh_3.6p1-1.diff.gz
to pool/main/o/openssh/openssh_3.6p1-1.diff.gz
openssh_3.6p1-1.dsc
to pool/main/o/openssh/openssh_3.6p1-1.dsc
openssh_3.6p1.orig.tar.gz
to pool/main/o/openssh/openssh_3.6p1.orig.tar.gz
ssh-askpass-gnome_3.6p1-1_i386.deb
to pool/main/o/openssh/ssh-askpass-gnome_3.6p1-1_i386.deb
ssh_3.6p1-1_i386.deb
to pool/main/o/openssh/ssh_3.6p1-1_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 167867@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Colin Watson <cjwatson@debian.org> (supplier of updated openssh package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 31 Mar 2003 23:00:59 +0100
Source: openssh
Binary: ssh-askpass-gnome ssh
Architecture: source i386
Version: 1:3.6p1-1
Distribution: unstable
Urgency: low
Maintainer: Matthew Vernon <matthew@debian.org>
Changed-By: Colin Watson <cjwatson@debian.org>
Description:
ssh - Secure rlogin/rsh/rcp replacement (OpenSSH)
ssh-askpass-gnome - under X, asks user for a passphrase for ssh-add
Closes: 71376 79861 109795 138400 155814 167867 185537
Changes:
openssh (1:3.6p1-1) unstable; urgency=low
.
* New upstream release.
- Workaround applied upstream for a bug in the interaction of glibc's
getaddrinfo() with the Linux 2.2 kernel (closes: #155814).
- As such, it should now be safe to remove --with-ipv4-default, so
starting sshd with -6 is no longer necessary (closes: #79861 and lots
of other merged bugs).
- ssh-copy-id prints usage when run without arguments (closes: #71376).
- scp exits 1 if ssh fails (closes: #138400).
- sshd writes to utmp's ut_addr_v6 field in IPv6 mode (closes: #167867).
- 'ssh-add -c' causes ssh-agent to ask the user each time a key is used
(closes: #109795).
* Install /etc/default/ssh non-executable (closes: #185537).
Files:
04e6dafafa22675324c463d1c4645440 841 net standard openssh_3.6p1-1.dsc
72ef1134d521cb6926c99256dad17fe0 875851 net standard openssh_3.6p1.orig.tar.gz
2ec437d019be6a3c510c8bc4fa41a0a5 61268 net standard openssh_3.6p1-1.diff.gz
74aafc66f9e522b05c99ff4cb9796096 621462 net standard ssh_3.6p1-1_i386.deb
59168cdd4bdf0e246bb59013a100c5c8 40250 x11 optional ssh-askpass-gnome_3.6p1-1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Colin Watson <cjwatson@debian.org> -- Debian developer
iD8DBQE+ihzx9t0zAhD6TNERAsMhAJ95S5Gh+ttrZOWyLVGLGWUqIqw33ACfZLno
2SarKSAIWKVs1djk0180XUA=
=BP5E
-----END PGP SIGNATURE-----
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Sat Mar 25 17:21:58 2023;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.