Make reading to the end great again

An article about a semctl(2) bug on DragonFly, “Make DragonFlyBSD great again!“, has popped up a few times, in comments here, some online forums, and in IRC.  I’m linking to it so that I can also say: read all the way to the end and notice the date.  The bug was fixed more than 6 months ago.  This is not a current security problem, but a (enjoyable) description of how someone in Poland documented it.

Nobody reads anything but headlines, geez.

Check your sshd_config setting

The last time SSH was updated in DragonFly, a DragonFly-specific customization, “PasswordAuthentication No”, was reverted to the default.  This meant password logins through SSH worked on DragonFly – which is normal for perhaps every other UNIX-ish operating system, but DragonFly has traditionally defaulted to requiring a key out-of-the-box.

It has been fixed, and you can change the setting back.  This only affected DragonFly-master from August through March.  4.6 users are unaffected.