[Bug 1765844] Re: openssh private key exposed due to change in permissions

Tue Apr 24 10:57:41 UTC 2018

Hmm, that would be odd and very bad.
I can't immediately think of anything that would do the change.

So for now I tried to recreate:
1. get X system and create some keys
-rw------- 1 root root    0 Apr 20 08:44 authorized_keys
-rw------- 1 root root 1679 Apr 24 10:36 id_rsa
-rw-r--r-- 1 root root  388 Apr 24 10:36 id_rsa.pub
2. do-release-upgrade -d
3. check keys again
They are still ok in my example.

So it is none of the base packages that caused this.

@Phreed - could you report the list of installed packages on your system so one can retry with the same set installed?
You can get this with:
 $ dpkg --get-selections

** Changed in: openssh (Ubuntu)
       Status: New => Incomplete

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to openssh in Ubuntu.
https://bugs.launchpad.net/bugs/1765844

Title:
  openssh private key exposed due to change in permissions

Status in openssh package in Ubuntu:
  Incomplete

Bug description:
  Following upgrading from 16.04 to 18.04 my ability to push to github stopped working.
  I checked the permissions on my .ssh folders files and found that the permissions had changed.

  $ ls -l ~/.ssh
  total 24
  -rw-r--r-- 1 fred fred  782 Mar 29  2016 authorized_keys
  -rw-r--r-- 1 fred fred 1766 Mar 29  2016 id_rsa
  -rw-r--r-- 1 fred fred  405 Mar 29  2016 id_rsa.pub
  -rw-r--r-- 1 fred fred 9732 Jul  1  2016 known_hosts

  I do not know which package actually caused this change.
  Upon resetting the permissions

  chmod +600 ~/.ssh/*

  Normal ssh function was restored.

  $ ls -ltr ~/.ssh
  total 24
  -rw------- 1 fred fred  405 Mar 29  2016 id_rsa.pub
  -rw------- 1 fred fred 1766 Mar 29  2016 id_rsa
  -rw------- 1 fred fred  782 Mar 29  2016 authorized_keys
  -rw------- 1 fred fred 9732 Jul  1  2016 known_hosts

  ProblemType: Bug
  DistroRelease: Ubuntu 18.04
  Package: ssh (not installed)
  ProcVersionSignature: Ubuntu 4.15.0-15.16-generic 4.15.15
  Uname: Linux 4.15.0-15-generic x86_64
  ApportVersion: 2.20.9-0ubuntu5
  Architecture: amd64
  CurrentDesktop: ubuntu:GNOME
  Date: Fri Apr 20 16:10:17 2018
  InstallationDate: Installed on 2017-04-05 (380 days ago)
  InstallationMedia: Ubuntu 16.04.2 LTS "Xenial Xerus" - Release amd64 (20170215.2)
  ProcEnviron:
   TERM=xterm-256color
   PATH=(custom, no user)
   XDG_RUNTIME_DIR=<set>
   LANG=en_US.UTF-8
   SHELL=/bin/bash
  SourcePackage: openssh
  UpgradeStatus: Upgraded to bionic on 2018-04-20 (0 days ago)

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1765844/+subscriptions