Microsoft has acknowledged a significant and rather frustrating issue following last month's security updates for Windows 11. Specifically, users on the 22H2 and 23H2 versions are experiencing problems with SSH connections, crucial for secure remote communications. This problem affects various sectors, including enterprise, IoT, and education customers, though the company claims the number of impacted systems is "limited."
Imagine finding yourself in a spy movie where your lifeline to the outside world suddenly goes MIA: that’s essentially what’s happening here. SSH (Secure Shell) is the go-to for secure communication between computers, and when it fails, it can throw a wrench into your IT operations, especially for sysadmins who rely heavily on this protocol for remote management and security.
Source: BleepingComputer Microsoft says recent Windows 11 updates break SSH connections
What’s Happening?
The issues stem from the October 2024 security updates, specifically the cumulative update KB5044285 and the preview update KB5044380. After installing these updates, many users reported that the OpenSSH service—integral for SSH connections—either fails to start or begins malfunctioning. According to Microsoft's documentation, users might notice a complete lack of detailed logging from the service, which only adds to the confusion. In practical terms, this error demands users to intervene manually to get the sshd.exe process running again.Imagine finding yourself in a spy movie where your lifeline to the outside world suddenly goes MIA: that’s essentially what’s happening here. SSH (Secure Shell) is the go-to for secure communication between computers, and when it fails, it can throw a wrench into your IT operations, especially for sysadmins who rely heavily on this protocol for remote management and security.
Temporary Workaround
For those currently grappling with the SSH connection woes, Microsoft has provided a temporary fix. The company recommends tweaking access control list (ACL) permissions on the affected directories. If you’re not well-versed in PowerShell, don’t worry; it’s quite manageable. Here’s a step-by-step guide:- Open PowerShell as Administrator: Make sure you're running it with administrative privileges to make necessary changes.
- Adjust Permissions:
- Navigate to the folders related to the SSH service—specifically
C:\ProgramData\sshandC:\ProgramData\ssh\logs. - You'll need to permit full control for both the SYSTEM and Administrators group while allowing read access for Authenticated Users.
- Navigate to the folders related to the SSH service—specifically
- Use the Following PowerShell Script:
Code:powershell $directoryPath = "C:\ProgramData\ssh" $acl = Get-Acl -Path $directoryPath $sddlString = "O:BAD:PAI(A;OICI;FA;;;SY)(A;OICI;FA;;;BA)(A;OICI;0x1200a9;;;AU)" $securityDescriptor = New-Object System.Security.AccessControl.RawSecurityDescriptor $sddlString $acl.SetSecurityDescriptorSddlForm($securityDescriptor.GetSddlForm("All")) Set-Acl -Path $directoryPath -AclObject $acl - Implement Changes: This should restore your SSH functionality until Microsoft rolls out a permanent fix.
Ongoing Investigation
Microsoft is actively investigating the extent of this issue, particularly regarding whether consumer users on Windows 11 Home or Pro editions are also affected. They have promised that a more permanent solution will come through a future update. Until then, users need to stay alert to developments in Microsoft's support documentation.Context of Recent Updates
Interestingly, this isn't the first security snafu for Microsoft in recent months. Just last week, the company informed users that the October Patch Tuesday updates had resolved fingerprint sensor issues that caused devices running Windows 11 24H2 to freeze—evidence that not all updates lead to immediate benefits. Previously, in September, Windows 10 users found that some apps wouldn't launch from non-admin accounts after updates, leading to a slew of complaints.Conclusion
In a world increasingly reliant on secure connections, issues like these can have real consequences for users. Microsoft’s ongoing efforts to identify and fix the underlying problems are critical in ensuring user trust. For the time being, running PowerShell scripts might not be everyone's idea of a good time, but it appears to be the best workaround until a more formal solution is released. So, users, stay tuned and keep those SSH connections healthy!For More Information
If you are experiencing SSH issues or are eager to learn more about Windows updates, feel free to explore our wide array of tutorials and guides on WindowsForum.com. We’re here to help you navigate the complexities of Windows and keep your systems running smoothly.Source: BleepingComputer Microsoft says recent Windows 11 updates break SSH connections
