From owner-freebsd-questions@FreeBSD.ORG  Sat Jun 14 20:25:22 2008
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 84DEE106564A
	for <freebsd-questions@freebsd.org>;
	Sat, 14 Jun 2008 20:25:22 +0000 (UTC)
	(envelope-from martin@dc.cis.okstate.edu)
Received: from dc.cis.okstate.edu (dc.cis.okstate.edu [139.78.103.93])
	by mx1.freebsd.org (Postfix) with ESMTP id 563A68FC28
	for <freebsd-questions@freebsd.org>;
	Sat, 14 Jun 2008 20:25:22 +0000 (UTC)
	(envelope-from martin@dc.cis.okstate.edu)
Received: from dc.cis.okstate.edu (localhost.cis.okstate.edu [127.0.0.1])
	by dc.cis.okstate.edu (8.13.8/8.13.8) with ESMTP id m5EKPLt3047611
	for <freebsd-questions@freebsd.org>;
	Sat, 14 Jun 2008 15:25:21 -0500 (CDT)
	(envelope-from martin@dc.cis.okstate.edu)
Message-Id: <200806142025.m5EKPLt3047611@dc.cis.okstate.edu>
To: freebsd-questions@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-ID: <47609.1213475121.1@dc.cis.okstate.edu>
Date: Sat, 14 Jun 2008 15:25:21 -0500
From: Martin McCormick <martin@dc.cis.okstate.edu>
Subject: Re: ssh Public Keys Suddenly Stopped working for one account. 
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 14 Jun 2008 20:25:22 -0000

Per olof Ljungmark writes:
> cat /var/log/auth.log ?

	Thank you!  This makes me feel down-right stupid. It
just slipped my mind. I've kind of gotten out of the habit of
looking at auth.log since we put the system in question behind a
firewall and it is not accessible from the general Internet any
more.

sshd[1746]: Authentication refused: bad ownership or modes for directory 
/usr/home/automation

	I said that the ownership looked okay for that
directory. It needed to be 755 so everybody on the system in
question can at least look at files in it. Somehow, yesterday or
the day before, I accidentally had it set to 775 which is not
good. I think I remember realizing I was in the wrong directory,
once, and that may have been when I did it.

	sshd and sendmail will both refuse to operate on files
that are writable by other than the owner. I had looked at those
permissions several times and the fact that it was
drwxrwxr-x instead of drwxr-xr-x
hadn't sunk in yet.

	Many thanks.

Martin