UsePrivilegeSeparation deprecated since OpenSSH 7.5

imthenachoman / How-To-Secure-A-Linux-Server

An evolving how-to guide for securing a Linux server.

Creative Commons Attribution Share Alike 4.0 International

17.38k stars 1.11k forks source link

UsePrivilegeSeparation deprecated since OpenSSH 7.5 #20

Closed soupersauce closed 5 years ago

soupersauce commented 5 years ago

Checking auth.log and noticed:

sshd[58017]: rexec line 21: Deprecated option UsePrivilegeSeparation

Quick search comes up with: https://www.openssh.com/txt/release-7.5

This release deprecates the sshd_config UsePrivilegeSeparation option, thereby making privilege separation mandatory. Privilege separation has been on by default for almost 15 years and sandboxing has been on by default for almost the last five.

imthenachoman commented 5 years ago

Interesting. I am still on 7.4. Debian is always a few versions behind. I'll add a note about that to the guide. Thanks!