[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

ssh and default home directory permissions (revisited?)



I seems to recall this might have been discussed before, but I wasn't
sure and couldn't dig up the conversation, so here goes.

I just got around to installing ssh so I could learn about it and
start using it, and I noticed that when I set up one of my machines
with a valid authorized_keys file and try to connect from another
machine, I get refused for RSA authentication, and ssh falls back on
passwords.  If I "chmod g-w ~", the problem vanishes.  ssh doesn't
like group writable home directories, even though in the standard
Debian scheme this isn't a problem.

Should the default Debian home dir permissions be changed, should
ssh be modified, or what?

$ssh -v somehost
[...]
raven: Encryption type: idea
raven: Sent encrypted session key.
raven: Received encrypted confirmation.
raven: Trying rhosts or /etc/hosts.equiv with RSA host authentication.
raven: Remote: Rhosts authentication refused for rlb: bad ownership or modes for home directory.
raven: Server refused our rhosts authentication or host key.
raven: No agent.
raven: Trying RSA authentication with key 'rlb@raven'
raven: Remote: Bad file modes for /home/rlb
raven: Server refused our key.
raven: Doing password authentication.
[...]

-- 
Rob


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-devel-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .


Reply to: