339366 – neatx doesn't protect custom ssh authorized_keys

Bug 339366 - neatx doesn't protect custom ssh authorized_keys

Summary: neatx doesn't protect custom ssh authorized_keys

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	New packages (show other bugs)
Hardware:	All Linux

Importance:	High normal (vote)
Assignee:	Gentoo NX Server project

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2010-10-01 16:27 UTC by David Sparks
Modified:	2011-03-14 05:22 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description David Sparks 2010-10-01 16:27:36 UTC

Neatx doesn't protect its ssh authorized_keys file so when neatx is upgraded it is replaced with the default key provided in the package.  This prevents logins that use a custom key from working until authorized_keys is restored.  


Please consider adding /var/lib/neatx/home (${NX_HOME_DIR}) to CONFIG_PROTECT.

I hope this shows what the problem is:

ca-desktop1 # ls -l ~nx/.ssh/
total 8
-rw------- 1 nx root 1899 Sep 30 14:08 authorized_keys

(re-emerge neatx)

ca-desktop1 # ls -l ~nx/.ssh/
total 8
-rw------- 1 nx root 629 Sep 30 22:09 authorized_keys

Comment 1 David Sparks 2011-03-02 20:16:40 UTC

Problem still exists in neatx-0.3.1_p59

Comment 2 Wormo (RETIRED) gentoo-dev

2011-03-14 05:22:45 UTC

authorized_keys will be protected as of neatx-0.3.1_p59-r2, just committed to CVS