6 . /usr/share/debconf/confmodule
11 if [ "$action" != configure ]
18 # get rid of mistaken rsh diversion (circa 1.2.27-1)
20 if [ -L /usr/bin/rsh ] &&
21 dpkg-divert --list '/usr/bin/rsh.real/rsh' | grep -q ' ssh$' ; then
22 for cmd in rlogin rsh rcp ; do
23 [ -L /usr/bin/$cmd ] && rm /usr/bin/$cmd
24 dpkg-divert --package ssh --remove --rename \
25 --divert /usr/bin/rsh.real/$cmd /usr/bin/$cmd
27 [ -L /usr/man/man1/$cmd.1.gz ] && rm /usr/man/man1/$$cmd.1.gz
28 dpkg-divert --package ssh --remove --rename \
29 --divert /usr/man/man1/$cmd.real.1.gz /usr/man/man1/$cmd.1.gz
32 rmdir /usr/bin/rsh.real
36 create_alternatives() {
37 # Create alternatives for the various r* tools.
38 # Make sure we don't change existing alternatives that a user might have
39 # changed, but clean up after some old alternatives that mistakenly pointed
40 # rlogin and rcp to ssh.
41 update-alternatives --quiet --remove rlogin /usr/bin/ssh
42 update-alternatives --quiet --remove rcp /usr/bin/ssh
43 for cmd in rsh rlogin rcp; do
45 if ! update-alternatives --display "$cmd" 2>/dev/null | \
47 update-alternatives --quiet --install "/usr/bin/$cmd" "$cmd" "/usr/bin/$scmd" 20 \
48 --slave "/usr/share/man/man1/$cmd.1.gz" "$cmd.1.gz" "/usr/share/man/man1/$scmd.1.gz"
53 set_ssh_permissions() {
54 if dpkg --compare-versions "$oldversion" lt-nl 1:3.4p1-1 ; then
55 if [ -x /usr/sbin/dpkg-statoverride ] ; then
56 if dpkg-statoverride --list /usr/bin/ssh >/dev/null; then
57 dpkg-statoverride --remove /usr/bin/ssh >/dev/null
62 # libexecdir changed, so migrate old statoverrides.
63 if [ -x /usr/sbin/dpkg-statoverride ] &&
64 override="$(dpkg-statoverride --list /usr/lib/ssh-keysign)"; then
65 override_user="${override%% *}"
66 override="${override#* }"
67 override_group="${override%% *}"
68 override="${override#* }"
69 override_mode="${override%% *}"
70 if dpkg-statoverride --update --add \
71 "$override_user" "$override_group" "$override_mode" \
72 /usr/lib/openssh/ssh-keysign; then
73 dpkg-statoverride --remove /usr/lib/ssh-keysign || true
79 # Try to remove non-system group mistakenly created by 1:3.5p1-1.
80 # set_ssh_agent_permissions() below will re-create it properly.
81 if getent group ssh >/dev/null; then
82 delgroup --quiet ssh || true
86 set_ssh_agent_permissions() {
87 if ! getent group ssh >/dev/null; then
88 addgroup --system --quiet ssh
90 if ! [ -x /usr/sbin/dpkg-statoverride ] || \
91 ! dpkg-statoverride --list /usr/bin/ssh-agent >/dev/null ; then
92 chgrp ssh /usr/bin/ssh-agent
93 chmod 2755 /usr/bin/ssh-agent
97 commit_transfer_conffile () {
99 if [ -e "$CONFFILE.moved-by-preinst" ]; then
100 rm -f "$CONFFILE.moved-by-preinst"
108 if [ "$2" = "1:3.5p1-1" ]; then
111 set_ssh_agent_permissions
112 commit_transfer_conffile /etc/ssh/moduli
113 commit_transfer_conffile /etc/ssh/ssh_config