sshd & permissions on home directories
Saurabh Bathe
sbathe at gmail.com
Thu Jan 22 11:03:03 UTC 2009
2009/1/22 <kim.desmaele at bayercropscience.com>
>
> Hi all,
>
> I'm have a few users on my systems here, who're using RSA authentication keys with an empy passphrase when connecting from a remote unix or linux box.
> Apparently, ssh refuses this authentication if the users home directory's permissions are not set to 0755 or less.
Yes, SSH likes secure directories. If any file/directory upto
$HOME/.ssh/authorised_keys is writeable except for the user, SSHD is
bound to complain. No way out of it.
>
> The users would prefer to set the permissions 0775 on their home directories, but when doing so sshd requests the user password in any way...
>
> Any idea how to avoid this or a workaround?
There are other more secure and elegant ways of sharing files than
having the user home directory group writeable. You can have $HOME
0755 and maybe some other directory inside it writeable by the groups.
---
Thanks
Saurabh Bathe
+91 9422785635
More information about the redhat-sysadmin-list
mailing list