Re: Security of Debian SuX0r?

To: "Jonathan D. Proulx" <jon@ai.mit.edu>
Cc: debian-devel@lists.debian.org
Subject: Re: Security of Debian SuX0r?
From: Ethan Benson <erbenson@alaska.net>
Date: Fri, 1 Sep 2000 21:03:10 -0800
Message-id: <[🔎] 20000901210310.R2146@plato.local.lan>
In-reply-to: <[🔎] 20000901200620.B8973@spoon.ai.mit.edu>; from jon@ai.mit.edu on Fri, Sep 01, 2000 at 08:06:20PM -0400
References: <20000830145720.A28811@verso.st.jyu.fi> <[🔎] 20000901174015.C1923@thinkpad.roland.eu.org> <[🔎] 20000901200620.B8973@spoon.ai.mit.edu>

On Fri, Sep 01, 2000 at 08:06:20PM -0400, Jonathan D. Proulx wrote:
> 
> Anything less than 700 breaks RSA authentication for ssh.  A point to
> consider though I'll gladly concede that anyone using RSA keys ought
> to know what permissions they want on their home directory and how to
> change them.

wrong, ssh only cares if the home directory is *WRITABLE* by other
users then the owner, not if its readable.  

my home directory is mode 710 and ssh works fine, on other systems my
home is mode 755 and ssh still works fine (all with RSA auth and
StrictModes yes)

-- 
Ethan Benson
http://www.alaska.net/~erbenson/

Attachment: pgpWKNQFJhhUM.pgp
Description: PGP signature

Reply to:

Follow-Ups:
- Re: Security of Debian SuX0r?
  - From: Adam McKenna <adam-debian@flounder.net>

References:
- Re: Security of Debian SuX0r?
  - From: Roland Bauerschmidt <rb@debian.org>
- Re: Security of Debian SuX0r?
  - From: "Jonathan D. Proulx" <jon@ai.mit.edu>

Prev by Date: ITP: hanzim
Next by Date: Re: Security of Debian SuX0r?
Previous by thread: Re: Security of Debian SuX0r?
Next by thread: Re: Security of Debian SuX0r?
Index(es):
- Date
- Thread