assistant: Ensure that .ssh/config and .ssh/authorized_keys are not group or world writable when writing to those files, as that can make ssh refuse to use them, if it allows another user to write to them.

2014-01-03 17:44:12 -04:00 · 2014-01-03 17:44:12 -04:00 · fdcc04096c
commit fdcc04096c
parent 18331b7235
4 changed files with 30 additions and 3 deletions
--- a/doc/bugs/file_permissions_on_12647.ssh47config_40windows41.mdwn
+++ b/doc/bugs/file_permissions_on_12647.ssh47config_40windows41.mdwn
@ -9,3 +9,12 @@ Windows 7, git-annex version 5.20131230-g192d991

 ### Please provide any additional information below.
 I have no daemon.log, and the console log isn't particularly detailed today; it had just created an ssh key and shown it's fingerprint.
+
+> Ok, I guess this is ssh refusing to use a file that has a group
+> write bit set (when the owner is not the only member of its group),
+> or perhaps that has the world write bit set.
+>
+> I have made the assistant unset those modes when creating and modifying
+> ssh config files. Hopefully that is enough for Windows too.. I can't
+> really test it there, but am calling this provisionally [[done]].
+> --[[Joey]]