Date: Tue, 4 Nov 2008 23:43:31 +0300 From: Yuri Pankov <yuri.pankov@gmail.com> To: af300wsm@gmail.com Cc: freebsd-questions@freebsd.org Subject: Re: Re: Authentication with SSH using public keys Message-ID: <20081104204331.GB1801@darklight.homeunix.org> In-Reply-To: <001636417a85d6c0f0045ae30fbf@google.com> References: <001636417a85d6c0f0045ae30fbf@google.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Nov 04, 2008 at 12:39:36PM -0800, af300wsm@gmail.com wrote:
>>
>>
>> > Following onto the e-mail I made before, apparently that little
> permissions
>>
>> > difference for the directory, .ssh, was the problem. Changing it to
>> 644
> has,
>>
>> > apparently, fixed the problem.
>>
>>
>>
>> Cool :) . I learnt this from my first SSH public-key authentication
>>
>> configuration ;)
>>
>>
>>
>> Ashish
>>
>> --
>>
>
> Of course I meant to say that changing the perms to 755 fixed it, not
> 644. I'm still reviewing the docs but I think that this directory could
> be made 700, is that correct? Or, at the least, 750?
>From ssh(1):
~/.ssh/
This directory is the default location for all user‐specific con‐
figuration and authentication information. There is no general
requirement to keep the entire contents of this directory secret,
but the recommended permissions are read/write/execute for the
user, and not accessible by others.
So 700 is not only possible, but also recommended. :-)
Yuri
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20081104204331.GB1801>