ssh and default home directory permissions (revisited?)
I seems to recall this might have been discussed before, but I wasn't
sure and couldn't dig up the conversation, so here goes.
I just got around to installing ssh so I could learn about it and
start using it, and I noticed that when I set up one of my machines
with a valid authorized_keys file and try to connect from another
machine, I get refused for RSA authentication, and ssh falls back on
passwords. If I "chmod g-w ~", the problem vanishes. ssh doesn't
like group writable home directories, even though in the standard
Debian scheme this isn't a problem.
Should the default Debian home dir permissions be changed, should
ssh be modified, or what?
$ssh -v somehost
raven: Encryption type: idea
raven: Sent encrypted session key.
raven: Received encrypted confirmation.
raven: Trying rhosts or /etc/hosts.equiv with RSA host authentication.
raven: Remote: Rhosts authentication refused for rlb: bad ownership or modes for home directory.
raven: Server refused our rhosts authentication or host key.
raven: No agent.
raven: Trying RSA authentication with key 'rlb@raven'
raven: Remote: Bad file modes for /home/rlb
raven: Server refused our key.
raven: Doing password authentication.
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
Trouble? e-mail to email@example.com .