On Fri, May 02, 2025 at 12:54:28PM +0200, Clemens Lang wrote: > Hi, > > > On 30. Apr 2025, at 19:54, Peter Pentchev <r...@ringlet.net> wrote: > > > > Is there a chance that there is some kind of mistake in your ~/.ssh/config > > file > > saying something like "IdentityFile /path/to/id_rsa.pub" so that OpenSSH > > would think that id_rsa.pub is a private keyfile and not a public one? > > Note that this is actually a valid configuration for cases where > the private key is in an HSM or other security module.
Ah, that actually makes sense, thank you! I don't have much experience with HSMs. > I guess OpenSSH just doesn’t know whether the file is a private or > public key by the time it checks the permissions, so in this case also > the public key needs to have limited permissions. Sounds like a reasonable consequence. G'luck, Peter -- Peter Pentchev r...@ringlet.net r...@debian.org pe...@morpheusly.com PGP key: https://www.ringlet.net/roam/roam.key.asc Key fingerprint 2EE7 A7A5 17FC 124C F115 C354 651E EFB0 2527 DF13
signature.asc
Description: PGP signature
-- _______________________________________________ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
