Re: Security of Debian SuX0r?

To: debian-devel@lists.debian.org
Subject: Re: Security of Debian SuX0r?
From: Adam McKenna <adam-debian@flounder.net>
Date: Sat, 2 Sep 2000 01:25:09 -0400
Message-id: <[🔎] 20000902012509.A31693@flounder.net>
In-reply-to: <[🔎] 20000901210310.R2146@plato.local.lan>; from erbenson@alaska.net on Fri, Sep 01, 2000 at 09:03:10PM -0800
References: <20000830145720.A28811@verso.st.jyu.fi> <[🔎] 20000901174015.C1923@thinkpad.roland.eu.org> <[🔎] 20000901200620.B8973@spoon.ai.mit.edu> <[🔎] 20000901210310.R2146@plato.local.lan>

On Fri, Sep 01, 2000 at 09:03:10PM -0800, Ethan Benson wrote:
> On Fri, Sep 01, 2000 at 08:06:20PM -0400, Jonathan D. Proulx wrote:
> > 
> > Anything less than 700 breaks RSA authentication for ssh.  A point to
> > consider though I'll gladly concede that anyone using RSA keys ought
> > to know what permissions they want on their home directory and how to
> > change them.
> 
> wrong, ssh only cares if the home directory is *WRITABLE* by other
> users then the owner, not if its readable.  
> 
> my home directory is mode 710 and ssh works fine, on other systems my
> home is mode 755 and ssh still works fine (all with RSA auth and
> StrictModes yes)

Actually, sshd only cares about ~/.ssh and ~/.ssh/authorized_keys and that
they're not group or world writable.

--Adam


-- 
To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: Security of Debian SuX0r?
  - From: Ethan Benson <erbenson@alaska.net>

References:
- Re: Security of Debian SuX0r?
  - From: Roland Bauerschmidt <rb@debian.org>
- Re: Security of Debian SuX0r?
  - From: "Jonathan D. Proulx" <jon@ai.mit.edu>
- Re: Security of Debian SuX0r?
  - From: Ethan Benson <erbenson@alaska.net>

Prev by Date: Re: Security of Debian SuX0r?
Next by Date: Re: APT problem
Previous by thread: Re: Security of Debian SuX0r?
Next by thread: Re: Security of Debian SuX0r?
Index(es):
- Date
- Thread