Project

General

Profile

Actions

Bug #6031

closed

wrong group set by SSH key distribution

Added by Alexander Brunhirl about 10 years ago. Updated almost 10 years ago.

Status:
Released
Priority:
N/A
Category:
Techniques
Target version:
Severity:
UX impact:
User visibility:
Effort required:
Priority:
Name check:
Fix check:
Regression:

Description

Hi,

during the authorized key file rollout the default group is set to "users" instead of the primary group of the user.
Flush the authorized key files before updating is disabled.

Example Output:

rudder01:~ # id testuser
uid=18413(testuser) gid=33545(testgrp) groups=33545(testgrp)

rudder01:~ # ls -l /home/testuser/.ssh/authorized_keys
-rw------- 1 testuser users 609 Aug 22 15:05 /home/testuser/.ssh/authorized_keys

rudder01:~ # chgrp testgrp /home/testuser/.ssh/authorized_keys; cfsync &> /dev/null; cfapply | egrep '(R:.*sshKeyDistribution).*testuser'
R: @@sshKeyDistribution@@result_repaired@@42d47cfb-e87d-43bf-aa19-94ea96b88377@@26f4f175-48b3-4963-8cbd-e1177fff175c@@65@@SSH key@@testuser key1@@2014-12-18 14:23:17+00:00##1b724ab4-d066-467b-8aaf-c2fe2c8ca6b4@#SSH key "testuser key1" for user testuser was repaired

rudder01:~ # ls -l /home/testuser/.ssh/authorized_keys
-rw------- 1 testuser users 609 Aug 22 15:05 /home/testuser/.ssh/authorized_keys

Directive: SSH keys distribution
Directive version: 3.0
Rudder version: Rudder v.2.11.5~rc1~git201411220241

Actions #1

Updated by Benoît PECCATTE almost 10 years ago

  • Subject changed from Wrong group during SSH key distribution to wrong group during SSH key distribution
Actions #2

Updated by Benoît PECCATTE almost 10 years ago

  • Assignee set to Benoît PECCATTE
Actions #3

Updated by Benoît PECCATTE almost 10 years ago

  • Status changed from New to Pending technical review
Actions #4

Updated by Benoît PECCATTE almost 10 years ago

  • Status changed from Pending technical review to New
Actions #5

Updated by Benoît PECCATTE almost 10 years ago

  • Status changed from New to Pending technical review
  • Assignee changed from Benoît PECCATTE to Nicolas CHARLES
Actions #6

Updated by Benoît PECCATTE almost 10 years ago

  • Status changed from Pending technical review to Discussion
  • Assignee changed from Nicolas CHARLES to Benoît PECCATTE
Actions #7

Updated by Benoît PECCATTE almost 10 years ago

  • Status changed from Discussion to 8
  • Target version changed from 2.11.6 to 2.10.9
Actions #8

Updated by Benoît PECCATTE almost 10 years ago

  • Status changed from 8 to Pending technical review
  • Assignee changed from Benoît PECCATTE to Nicolas CHARLES
  • Pull Request set to https://github.com/Normation/rudder-techniques/pull/620
Actions #9

Updated by Benoît PECCATTE almost 10 years ago

  • Status changed from Pending technical review to Pending release
  • % Done changed from 0 to 100

Applied in changeset policy-templates:commit:b3ffb130182be796820e85fef0abfd667afc5c59.

Actions #10

Updated by Nicolas CHARLES almost 10 years ago

Applied in changeset policy-templates:commit:1d9fde0cef821b8cb74add54a9ee3350c9b4d108.

Actions #11

Updated by Vincent MEMBRÉ almost 10 years ago

  • Target version changed from 2.10.9 to 2.10.10
Actions #12

Updated by Vincent MEMBRÉ almost 10 years ago

  • Subject changed from wrong group during SSH key distribution to wrong group set by SSH key distribution
Actions #13

Updated by Vincent MEMBRÉ almost 10 years ago

  • Status changed from Pending release to Released

This bug has been fixed in Rudder 2.10.10 and 2.11.7, which were these days.

Actions

Also available in: Atom PDF