Intermittently the sshd process errors with "Privilege separation user sshd does not exist"

cloudposse / bastion

🔒Secure Bastion implemented as Docker Container running Alpine Linux with Google Authenticator & DUO MFA support

https://cloudposse.com/accelerate

Apache License 2.0

640 stars 112 forks source link

Intermittently the sshd process errors with "Privilege separation user sshd does not exist" #62

Closed ben-z closed 2 years ago

ben-z commented 2 years ago

I have a health check running on my bastion host configured with this Docker container, and it every once in a while I get Privilege separation user sshd does not exist in the logs. There are no other errors surrounding this log. What might have caused this?

ben-z commented 2 years ago

Oh my bad. I have a script running that periodically updates the container passwd file with a modified version from the host. It's using shell redirection > to write to the passwd file. Apparently this is not atomic so there was probably a race condition.