Red Hat Bugzilla – Bug 692033
can not login to the installer unless selinux=0 is passed on the kernel bootline
Last modified: 2014-09-30 19:39:52 EDT
Description of problem:
Since the 20110216 rawhide compose it is no longer possible to login to the installer via ssh. This is the error (selinux is in permissive according to /etc/selinux/config):
[akozumpl@aklab ~]$ ssh root@ak
Warning: Permanently added 'ak,10.34.39.95' (RSA) to the list of known hosts.
Write failed: Broken pipe
Version-Release number of selected component (if applicable):
Because this still works in the 0215 compose, it can be tracked down to an update in openssh:
in 0215 the packages are:
in 0216 the packages are:
Steps to Reproduce:
1. boot into the installer with 'sshd' included on the bootline.
2. from another machine do: ssh root@<machine>
error, broken pipe, session is closed immediately
logged in, ssh session starts showing a shell
I verified that copying /usr/sbin/sshd from the 0215 to the 0216 compose fixes the problem.
it apparently doesn't matter what we set in /etc/selinux/config. permissive or disabled both result in non-working ssh login.
The only thing that workarounds this is setting selinux=0 on the kernel bootline.
please try last rawhide build and report
I've got this on my mind, however the official rawhide composes have been failing steadily the last week or so so the latest openssh (and other packages) have not propagated to the mirrors yet.
Will keep this in needinfo and retest asap.
I don't know about the installer but i've the same issue with the system already installed. Since weeks i cannot log-in with gdm or ssh unless selinux=0 is passed on the kernel bootline.
(In reply to comment #4)
> I don't know about the installer but i've the same issue with the system
> already installed. Since weeks i cannot log-in with gdm or ssh unless selinux=0
> is passed on the kernel bootline.
what is your version of openssh?
(In reply to comment #6)
this version is not buggy ...
In my case, the bug is fixed with today's update of selinux-*-3.9.16-13.
For Anaconda this seems to be fixed with openssh-5.8p1-25.fc16.1.x86_64.
closing as solved