~/.ssh directory permissions
Chris Rees
utisoft at googlemail.com
Tue Jun 23 16:53:10 UTC 2009
2009/6/23 Peter Boosten <peter at boosten.org>:
>
>
> On 23 jun 2009, at 16:06, Daniel Underwood <djuatdelta at gmail.com> wrote:
>
>> Looking at my ~/.ssh directory, I see the following permissions:
>>
>> -rw-r--r--
>>
>> Which I understand to be equivalent to 644.
>>
>> I read here <http://sial.org/howto/openssh/publickey-auth/> that
>> ~/.ssh ought to have permissions 700.
>>
>> Which is preferable, and why?
>> __
>
> 700, you private key(s) go in there.
>
Interesting, I never noticed the 700 permissions on .ssh...
[chris at amnesiac]~% ls -ld .ssh
drwx------ 2 chris chris 512 Nov 22 2008 .ssh/
[chris at amnesiac]~% ls -l .ssh
total 18
-rw-r--r-- 1 chris chris 3281 Jan 8 21:21 authorized_keys
-rw------- 1 chris chris 1675 Oct 1 2008 id_rsa
-rw-r--r-- 1 chris chris 409 Oct 1 2008 id_rsa.pub
-rw-r--r-- 1 chris chris 8379 Jun 11 22:01 known_hosts
[chris at amnesiac]~%
Although I think it's not a big deal, as long as your id_?sa has
permissions 600 like mine, or even 400.
Chris
--
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
A: Top-posting.
Q: What is the most annoying thing in a mailing list?
More information about the freebsd-questions
mailing list