On Fri, May 09, 2014 at 03:42:52PM -0700, Greg Bailey wrote:
> I think you're missing:
>
> chmod 600 ~dan/.ssh/authorized_keys
>
> Without it, sshd won't use the authorized_keys file if it's readable by
> other users. (I think that's related to "StrictMode"; consult sshd man
> page)
No. Public keys are public and are happy to be readable.
What can _not_ be allowed is group/world writeable... ANYWHERE in the
path.
eg if ~dan is /home then
/ must be owned by root and permission 755
/home must be owned by root and permission 755
/home/dan must be owned by dan and not be group/world writeable
/home/dan/.ssh must be owned by dan and not be group/world writeable
/home/dan/.ssh/authorized_keys must be owned by dan and
not be group/world writeable
Also permissions of /etc /etc/ssh /etc/ssh/sshd_config and so on.
--
rgds
Stephen
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
Re: CentOS 6.5 fresh install, public ssh keys cannot authenticate
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: CentOS 6.5 fresh install, public ssh keys cannot authenticate
- From: Stephen Harris <lists@xxxxxxxxxx>
- Date: Fri, 9 May 2014 18:50:55 -0400
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <536D59EC.2090604@lxpro.com>
- User-agent: Mutt/1.4.2.2i
- Follow-Ups:
- References:
- CentOS 6.5 fresh install, public ssh keys cannot authenticate
- From: Dan Bikle
- Re: CentOS 6.5 fresh install, public ssh keys cannot authenticate
- From: Greg Bailey
- CentOS 6.5 fresh install, public ssh keys cannot authenticate
- Prev by Date: Re: CentOS 6.5 fresh install, public ssh keys cannot authenticate
- Next by Date: Re: Mail Merge data to a pdf file by overlaying the data on the image
- Previous by thread: Re: CentOS 6.5 fresh install, public ssh keys cannot authenticate
- Next by thread: Re: CentOS 6.5 fresh install, public ssh keys cannot authenticate
- Index(es):
 |