[Bug 469207] New: YaST sshd module forgets to enable ssh port in the firewall
https://bugzilla.novell.com/show_bug.cgi?id=469207 Summary: YaST sshd module forgets to enable ssh port in the firewall Classification: openSUSE Product: openSUSE 11.1 Version: Final Platform: Other OS/Version: openSUSE 11.1 Status: NEW Severity: Normal Priority: P5 - None Component: YaST2 AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: robin.listas@telefonica.net QAContact: jsrain@novell.com Found By: --- User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.0.5) Gecko/2008121300 SUSE/3.0.5-0.1 Firefox/3.0.5 System is 11.1 running as guest in vmware. I tried the YaST sshd config module, and this did not enable the port in the SuSEfirewall, nor did it remind the admin to do it manually. Also, with the tick box for "password enabled" not ticked I was able to connect using password. I assume that it should configure sshd to force key entry, generate the keys, and inform the user of which file should be placed on the client side and where. Reproducible: Always -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=469207 Marcus Meissner <meissner@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|bnc-team-screening@forge.pr |locilka@novell.com |ovo.novell.com | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=469207 User locilka@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=469207#c1 Lukas Ocilka <locilka@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO Info Provider| |anicka@novell.com --- Comment #1 from Lukas Ocilka <locilka@novell.com> 2009-01-26 04:28:33 MST --- The first "issue" is a feature request. YaST SSHD Configuration never did that see also bug #396375 The second one seems to be a bit tricky and the documentation lacks useful comments, see also: http://lists.debian.org/debian-isp/2005/11/msg00014.html Anyway, it seems I do not understand the options enough. `man sshd_config` says this: PasswordAuthentication Specifies whether password authentication is allowed. The default is “yes”. According to the same man page, other options have to be changed depending on the other system settings: KerberosAuthentication, UsePAM, ChallengeResponseAuthentication. Is there any simple explanation of that option or should I rather drop it? Anyway, by default in SUSE, it's "PasswordAuthentication no". -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=469207 User locilka@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=469207#c2 Lukas Ocilka <locilka@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |mattm3a@yahoo.com --- Comment #2 from Lukas Ocilka <locilka@novell.com> 2009-01-29 02:41:02 MST --- *** Bug 470350 has been marked as a duplicate of this bug. *** https://bugzilla.novell.com/show_bug.cgi?id=470350 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=469207 Lukas Ocilka <locilka@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Priority|P5 - None |P3 - Medium Status|NEEDINFO |ASSIGNED Info Provider|anicka@novell.com | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=469207 User locilka@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=469207#c3 Lukas Ocilka <locilka@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |RESOLVED Resolution| |FIXED --- Comment #3 from Lukas Ocilka <locilka@novell.com> 2009-01-29 02:52:57 MST --- - Dropping possibility to adjust PasswordAuthentication option as it has no or rather misleading effect (bnc #469207). - yast2-sshd-2.17.2 (resp. 2.18.0) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com