| 1 |
On Wed, Feb 19, 2020 at 3:02 PM Patrick McLean <chutzpah@g.o> wrote: |
| 2 |
> |
| 3 |
> Title: OpenSSH 8.2_p1 running sshd breakage |
| 4 |
> Author: Patrick McLean <chutzpah@g.o> |
| 5 |
> Posted: 2020-02-21 |
| 6 |
> Revision: 1 |
| 7 |
> News-Item-Format: 2.0 |
| 8 |
> Display-If-Installed: <net-misc/openssh-8.2 |
| 9 |
> |
| 10 |
> If sshd is running, and a system is upgraded from <net-misc/openssh-8.2_p1 |
| 11 |
> to >=net-misc/openssh-8.2_p1, any new ssh connection will fail until sshd is |
| 12 |
> restarted. |
| 13 |
> |
| 14 |
> Before restarting sshd, it is *strongly* recommended that you test your |
| 15 |
> configuraton with the following command (as root): |
| 16 |
> sshd -t |
| 17 |
> |
| 18 |
> If your system is booted with openrc, use this command (as root) |
| 19 |
> to restart sshd: |
| 20 |
> /etc/init.d/sshd restart |
| 21 |
> |
| 22 |
> If your system is booted with systemd, use this command (as root) |
| 23 |
> to restart sshd: |
| 24 |
> systemctl restart sshd |
| 25 |
> |
| 26 |
> WARNING: On systemd booted machines, this command will terminate all currently |
| 27 |
> open ssh connections, it is *strongly* reccommended that you validate |
| 28 |
> your configuration before restarting sshd. |
| 29 |
> |
| 30 |
|
| 31 |
Existing connections are only terminated if the pam_systemd module is |
| 32 |
not enabled. This might happen if the user has disabled USE=pam on |
| 33 |
sys-apps/systemd, or if they have modified the system pam stack to |
| 34 |
exclude pam_systemd. |
| 35 |
|
| 36 |
Maybe change the warning to this: |
| 37 |
|
| 38 |
WARNING: On systemd booted machines with PAM disabled, this command |
| 39 |
will terminate all currently open ssh connections. It is *strongly* |
| 40 |
recommended that you validate your configuration before restarting |
| 41 |
sshd. |
Archives