Date: Tue, 23 Jun 2009 17:52:48 +0100 From: Chris Rees <utisoft@googlemail.com> To: Peter Boosten <peter@boosten.org> Cc: Daniel Underwood <djuatdelta@gmail.com>, "freebsd-questions@freebsd.org" <freebsd-questions@freebsd.org> Subject: Re: ~/.ssh directory permissions Message-ID: <b79ecaef0906230952g4640e660h5faa37450fa092@mail.gmail.com> In-Reply-To: <4B45B6F6-007E-4DDC-994F-1369FEAEBA7D@boosten.org> References: <b6c05a470906230706w5154c697uedb41f2164681a0a@mail.gmail.com> <4B45B6F6-007E-4DDC-994F-1369FEAEBA7D@boosten.org>
next in thread | previous in thread | raw e-mail | index | archive | help
2009/6/23 Peter Boosten <peter@boosten.org>: > > > On 23 jun 2009, at 16:06, Daniel Underwood <djuatdelta@gmail.com> wrote: > >> Looking at my ~/.ssh directory, I see the following permissions: >> >> -rw-r--r-- >> >> Which I understand to be equivalent to 644. >> >> I read here <http://sial.org/howto/openssh/publickey-auth/>; that >> ~/.ssh ought to have permissions 700. >> >> Which is preferable, and why? >> __ > > 700, you private key(s) go in there. > Interesting, I never noticed the 700 permissions on .ssh... [chris@amnesiac]~% ls -ld .ssh drwx------ 2 chris chris 512 Nov 22 2008 .ssh/ [chris@amnesiac]~% ls -l .ssh total 18 -rw-r--r-- 1 chris chris 3281 Jan 8 21:21 authorized_keys -rw------- 1 chris chris 1675 Oct 1 2008 id_rsa -rw-r--r-- 1 chris chris 409 Oct 1 2008 id_rsa.pub -rw-r--r-- 1 chris chris 8379 Jun 11 22:01 known_hosts [chris@amnesiac]~% Although I think it's not a big deal, as long as your id_?sa has permissions 600 like mine, or even 400. Chris -- A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing in a mailing list?
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?b79ecaef0906230952g4640e660h5faa37450fa092>