From nobody Thu Oct 19 23:16:08 2023 X-Original-To: stable@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4SBNrF1k48z4y0ld for ; Thu, 19 Oct 2023 23:16:13 +0000 (UTC) (envelope-from SRS0=m9XF=GB=quip.cz=000.fbsd@elsa.codelab.cz) Received: from elsa.codelab.cz (elsa.codelab.cz [94.124.105.4]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4SBNrD6QvSz4ZGx for ; Thu, 19 Oct 2023 23:16:12 +0000 (UTC) (envelope-from SRS0=m9XF=GB=quip.cz=000.fbsd@elsa.codelab.cz) Authentication-Results: mx1.freebsd.org; none Received: from elsa.codelab.cz (localhost [127.0.0.1]) by elsa.codelab.cz (Postfix) with ESMTP id AEEE6D7890; Fri, 20 Oct 2023 01:16:10 +0200 (CEST) Received: from [192.168.145.49] (ip-89-177-27-225.bb.vodafone.cz [89.177.27.225]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by elsa.codelab.cz (Postfix) with ESMTPSA id 0AE59D788B; Fri, 20 Oct 2023 01:16:09 +0200 (CEST) Message-ID: <14ed5f0c-9dbc-48d6-959c-750f2db726d4@quip.cz> Date: Thu, 19 Oct 2023 23:16:08 +0000 List-Id: Production branch of FreeBSD source code List-Archive: https://lists.freebsd.org/archives/freebsd-stable List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-stable@freebsd.org X-BeenThere: freebsd-stable@freebsd.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: FreeBSD Errata Notice FreeBSD-EN-23:09.freebsd-update [REVISED] Content-Language: cs-Cestina, en-US To: Tomoaki AOKI , stable@freebsd.org References: <20231003230335.0B92113333@freefall.freebsd.org> <765ea31d-8f07-4916-b6fd-ba220dec80dc@inoc.net> <20231020062618.9618dcfd42b083720d5dbd12@dec.sakura.ne.jp> From: Miroslav Lachman <000.fbsd@quip.cz> In-Reply-To: <20231020062618.9618dcfd42b083720d5dbd12@dec.sakura.ne.jp> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:42000, ipnet:94.124.104.0/21, country:CZ] X-Rspamd-Queue-Id: 4SBNrD6QvSz4ZGx On 19/10/2023 21:26, Tomoaki AOKI wrote: > On Thu, 19 Oct 2023 19:53:08 +0000 > Miroslav Lachman <000.fbsd@quip.cz> wrote: [..] >> It is hackery workaround. freebsd-update must not overwrite user >> modified files without safe merge of conflicts. yet it did it in the >> past, for example pf.conf and some other vital files. >> >> Kind regards >> Miroslav Lachman > > I don't think it hackery. > What should have been is that default sshf_config to be > in /etc/defaults and /etc/defaults/rc.conf points to it, and anyone > needs custom settings to create sshd_config in /etc/ssh (or in > somewhere else), like rc.conf case. I don't think /etc/ssh/sshd_config is the default not intended to be edited. I am on FreeBSD from 4.x times and it was always supposed to be modifed by users and was handled by mergemaster or etcupdate. If freebsd-update cannot deal with it then it is a bug in freebsd-update. All in all pre-installed /etc/ssh/sshd_config has almost everything commented out because defaults are built in. Kind regards Miroslav Lachman