Bugs item #631190, was opened at 2002-10-30 14:12 Message generated for change (Comment added) made by muglerj You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=109368&aid=631190&group_id=9368
Category: Installation >Group: Future Status: Open Resolution: None Priority: 6 Submitted By: Benoit des Ligneris (bligneri) Assigned to: Nobody/Anonymous (nobody) Summary: Check permission of $HOME, $HOME/.ssh, . Initial Comment: A recent user doesn't understand why certain users were not able to use OSCAR. This happened because some permission of $HOME, $HOME/.ssh and files inside were not correct [ Jeff Squyres : FWIW, I believe that the directories $HOME and $HOME/.ssh must not be group or other writable. Specific files in $HOME/.ssh must also have specific permissions (some are 600, some 644) ] Should we check that when installing ? Should we adjust permission, display a message about that ? ---------------------------------------------------------------------- >Comment By: John (muglerj) Date: 2005-02-15 13:44 Message: Logged In: YES user_id=505737 Ok, pushed to future. ---------------------------------------------------------------------- Comment By: John (muglerj) Date: 2005-02-15 13:29 Message: Logged In: YES user_id=505737 My inclination is to ditch this bug as my inclination is not to mess with user file permissions, especially .ssh stuff. If someone wants this fixed, speak up! ---------------------------------------------------------------------- Comment By: John (muglerj) Date: 2005-01-25 14:22 Message: Logged In: YES user_id=505737 Is this installing on an already built machine? Can someone hit me with a cluebat here? ---------------------------------------------------------------------- Comment By: Thomas Naughton (naughtont) Date: 2004-11-01 16:28 Message: Logged In: YES user_id=288102 Punt to after sc'04. ---------------------------------------------------------------------- Comment By: Jeff Squyres (jsquyres) Date: 2003-12-04 15:16 Message: Logged In: YES user_id=11722 I'm 99.99% sure that $HOME and $HOME/.ssh must not be group or other writeable. On a system where $HOME is local, I do not believe that the rx bits on group/other matter because sshd is either root or chmod'ed to the user before it tries to look in there. I don't remember offhand is this is true for NFS-mounted $HOMEs (i.e., if sshd is root when it looks in there, it may matter because local root may not have permissions to get in there. But if sshd has already changed ID to the user, then the rx bits don't matter). I *seem to recall* that it's the latter -- the perms on $HOME and $HOME/.ssh can be 0700 and it'll work. But I haven't tried this recently to confirm. ---------------------------------------------------------------------- Comment By: Jason Brechin (brechin) Date: 2003-12-04 14:02 Message: Logged In: YES user_id=274641 Can anyone dig up a list of the appropriate permissions for these files? I think this should at least be checked by the wizard... Jeff maybe? ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=109368&aid=631190&group_id=9368 ------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click _______________________________________________ Oscar-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/oscar-devel
