ubuntu-image leaving machine-id and host SSH keys in images
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
ubuntu-image (Ubuntu) |
Fix Released
|
High
|
Paul Mars |
Bug Description
The mantic pi images (both server and desktop) have pre-generated machine-id values in /etc/machine-id and /var/lib/
More seriously, the mantic pi server images also have pre-generated SSH host keys. Thankfully, the default cloud-init configuration regenerates these on first boot before SSH comes up, but again these should not be shipped in the images, and again this was taken care of previously with a live-build hook [3][4].
[1]: https:/
[3]: https:/
tags: | added: foundations-todo raspi-image |
Changed in ubuntu-image (Ubuntu): | |
assignee: | nobody → Paul Mars (upils) |
Changed in ubuntu-image (Ubuntu): | |
status: | Fix Committed → Fix Released |
I should add a note of thanks to ^AT^ on the #ubuntu-server channel who first pointed out the issue with the pre-generated machine-id, which then led me to investigate what else was not being reset by the new image build process.