From owner-freebsd-questions@FreeBSD.ORG Tue Jun 23 16:53:09 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C1FA2106566C for ; Tue, 23 Jun 2009 16:53:09 +0000 (UTC) (envelope-from utisoft@googlemail.com) Received: from mail-ew0-f212.google.com (mail-ew0-f212.google.com [209.85.219.212]) by mx1.freebsd.org (Postfix) with ESMTP id 51D738FC08 for ; Tue, 23 Jun 2009 16:53:09 +0000 (UTC) (envelope-from utisoft@googlemail.com) Received: by ewy8 with SMTP id 8so298579ewy.43 for ; Tue, 23 Jun 2009 09:53:08 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=gamma; h=domainkey-signature:mime-version:received:reply-to:in-reply-to :references:from:date:message-id:subject:to:cc:content-type :content-transfer-encoding; bh=ltf+k1ntRqEQiW1g5KBcJ8oRqCkdD64SAsvzhR6hQUU=; b=OaE585LaqlGzz8Fn7cV6xYb0/GVViHRPZI84D29zl5Ak1m98Qcl2A/G2TE0c1NVRZ0 QttuqkdJdxywza1sgM/ouBfv5zjN1Qpdw4q+x4Rn9GB0KUkL4pdyeTgEDqXKqMnJySRH Qar3PoezYkmGQcDVIoNlHYVf8qlgzZYON4V1E= DomainKey-Signature: a=rsa-sha1; c=nofws; d=googlemail.com; s=gamma; h=mime-version:reply-to:in-reply-to:references:from:date:message-id :subject:to:cc:content-type:content-transfer-encoding; b=NGn3uE/ZF+rcjJb1UgDtZRFP6LasTkeAjRQLdlHYxDrXwjpPQ457sQD3+NUIEeSRyt ngOW1bLW0H/SGkqZDfbDDg6GMSboIlYSeQG6Y/nMiNKGwHL3RJ3WZTni6WfS/koRh80G HK6hj01YNVib0Uk8io3CXVTzK5sAXYsqzix6I= MIME-Version: 1.0 Received: by 10.216.0.206 with SMTP id 56mr93610web.102.1245775988226; Tue, 23 Jun 2009 09:53:08 -0700 (PDT) In-Reply-To: <4B45B6F6-007E-4DDC-994F-1369FEAEBA7D@boosten.org> References: <4B45B6F6-007E-4DDC-994F-1369FEAEBA7D@boosten.org> From: Chris Rees Date: Tue, 23 Jun 2009 17:52:48 +0100 Message-ID: To: Peter Boosten Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: Daniel Underwood , "freebsd-questions@freebsd.org" Subject: Re: ~/.ssh directory permissions X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: utisoft@gmail.com List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 23 Jun 2009 16:53:10 -0000 2009/6/23 Peter Boosten : > > > On 23 jun 2009, at 16:06, Daniel Underwood wrote: > >> Looking at my ~/.ssh directory, I see the following permissions: >> >> -rw-r--r-- >> >> Which I understand to be equivalent to 644. >> >> I read here that >> ~/.ssh ought to have permissions 700. >> >> Which is preferable, and why? >> __ > > 700, you private key(s) go in there. > Interesting, I never noticed the 700 permissions on .ssh... [chris@amnesiac]~% ls -ld .ssh drwx------ 2 chris chris 512 Nov 22 2008 .ssh/ [chris@amnesiac]~% ls -l .ssh total 18 -rw-r--r-- 1 chris chris 3281 Jan 8 21:21 authorized_keys -rw------- 1 chris chris 1675 Oct 1 2008 id_rsa -rw-r--r-- 1 chris chris 409 Oct 1 2008 id_rsa.pub -rw-r--r-- 1 chris chris 8379 Jun 11 22:01 known_hosts [chris@amnesiac]~% Although I think it's not a big deal, as long as your id_?sa has permissions 600 like mine, or even 400. Chris -- A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing in a mailing list?