Microsoft has confirmed that final month’s Home windows safety updates are breaking SSH connections on some Home windows 11 22H2 and 23H2 techniques.
This newly acknowledged concern impacts enterprise, IOT, and schooling prospects, however the firm says that solely a “limited number” of units are impacted.
Microsoft can also be investigating whether or not client prospects utilizing Home windows 11 Residence or Professional editions are affected.
“Following the installation of the October 2024 security update, some customers report that the OpenSSH (Open Secure Shell) service fails to start, preventing SSH connections,” the corporate defined in up to date help paperwork for October’s Patch Tuesday KB5044285 cumulative and KB5044380 preview updates.
“The service fails with no detailed logging, and manual intervention is required to run the sshd.exe process.”
Till a repair is out there, Redmond says affected prospects can nonetheless quickly repair these SSH connection points by updating entry management listing (ACL) permissions on affected directories utilizing the next steps:
-
Open PowerShell as an Administrator.
-
Replace the permissions for the “C:ProgramDatassh and C:ProgramDatasshlogs” folder (and repeat these steps for “C:ProgramDatasshlogs”) to permit full management for SYSTEM and the Directors group whereas permitting learn entry for Authenticated Customers. If wanted, you possibly can limit learn entry to particular customers or teams by modifying the permissions string.
-
Use the next Powershell script to replace the permissions:
$directoryPath = "C:ProgramDatassh" $acl = Get-Acl -Path $directoryPath $sddlString = "O:BAD:PAI(A;OICI;FA;;;SY)(A;OICI;FA;;;BA)(A;OICI;0x1200a9;;;AU)" $securityDescriptor = New-Object System.Safety.AccessControl.RawSecurityDescriptor $sddlString $acl.SetSecurityDescriptorSddlForm($securityDescriptor.GetSddlForm("All")) Set-Acl -Path $directoryPath -AclObject $acl
Microsoft is actively on the lookout for a repair that can roll out through an upcoming Home windows replace, with additional particulars concerning this recognized concern to be offered when a decision is out there.
On Friday, Redmond additionally revealed that the October Patch Tuesday updates had resolved fingerprint sensor freeze points after affected Home windows 11 24H2 units have been locked.
A safeguard maintain blocking Home windows 11 24H2 upgrades on impacted techniques was additionally eliminated after the fingerprint points have been resolved. The replace ought to be provided over the subsequent 48 hours, however a tool restart ought to assist pace issues up.
Final month, Microsoft mounted a recognized concern within the September preview cumulative replace stopping some apps from beginning on Home windows 10 22H2 techniques when launched from non-admin accounts.
It additionally addressed one other one inflicting Home windows servers to disrupt Distant Desktop connections in enterprise networks after putting in the July safety updates.
