[Base role] - Fix issue with ssh not restarted #664
Labels
No Label
administration
Akkoma
Android
Bare metal
bug
Communication
Community
Cryptpad
Discussion
Documentation
duplicate
enhancement
etherpad
Feature request
Feedback
finances
Fixed
forgejo
fun_project
Goal 2024
help wanted
Howto
In progress
🤔️ Investigate
ios
jitsi
lacre
Lacre Test
ldap
Lemmy
LibreTranslate
low prio
Lufi
macos
Mail
Merch
monitoring
movim
needs_refine
New Auth
Nextcloud
nice to have
on hold
proposal
question
Ready
refined
Roundcube
searX
spam-protection
Staging Server
Themes
TOR
Urgent!
Website
windows
wontfix
xmpp
Yearly Report
No Milestone
No project
No Assignees
2 Participants
Notifications
Due Date
No due date set.
Dependencies
No dependencies set.
Reference: Disroot/Disroot-Project#664
Loading…
Reference in New Issue
No description provided.
Delete Branch "%!s(<nil>)"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
It seems that ssh is restarted but when I try to ssh, I get
kex_exchange_identification: read: Connection reset by peer
for some CT. I then pct enter that container, check logs, I see the messageMissing privilege separation directory: /run/sshd
.I just have to restart ssh and it works.
So I did more search and tests. It could be a conflict between ssh.service and ssh.socket.
See:
BUT I've noticed that the issue is not from the base role. I get the exact same issue when I
apt upgrade
in the CT. If I exit, then I can not ssh anymore, with same error. I found that: https://forum.proxmox.com/threads/ssh-server-restart-needed-after-package-upgrades.111855/ But I didn't find anything weird in /etc/aptAnyway, I'm stocked there @muppeth
So seems like it's all about missing
/var/run/sshd
. There are two things we could do to quickly fix it.Perhaps cronjob would be better because it will check every so much to check if everything is fine though base is "cleaner". We could maybe start with role and if we run into issues after apt update, then we could replace this with cronjob.
I went at the end with cronjob way.